Ga naar inhoud

spyware op laptop


Aanbevolen berichten

Hey,

 

Ik heb een laptop overgekocht van men schoonmoeder, die laptop zou eens wat opgekuisd mogen worden, denk dat er wel wat spyware ofzo op kan staan. Hoe kan ik deze verwijderen en mij er tegen  beschermen, ik heb alleen maar avg free als anti-virus erop staan. Zal ook een logje van Rsit bijvoegen.

 

alvast Bedankt.

 

 

 

 

 

Logfile of random's system information tool 1.10 (written by random/random)
Run by Nancy at 2015-11-29 14:45:05
Microsoft Windows 7 Home Premium  Service Pack 1
System drive C: has 100 GB (66%) free of 153 GB
Total RAM: 4061 MB (48% free)
 
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:45:07, on 29/11/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18098)
Boot mode: Normal
 
Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
C:\Program Files (x86)\AVG\Av\avgui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Nancy\AppData\Roaming\uTorrent\uTorrent.exe
C:\Users\Nancy\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
C:\Users\Nancy\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
C:\Program Files\trend micro\Nancy.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [updateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [updateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" /fmw.trayonly
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [settings Manager] "C:\Users\Nancy\AppData\Roaming\Settings Manager\SettingsManager.EXE" /autostart /restart
O4 - HKCU\..\Run: [uM] C:\Users\Nancy\AppData\Roaming\Update Manager\UM.EXE
O4 - HKCU\..\Run: [Advanced SystemCare 9] "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" (User 'Default user')
O4 - Global Startup: FancyStart daemon.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 9 (AdvancedSystemCareService9) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: FastBootAgent - ASUSTeK Computer Inc. - C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 
--
End of file - 12241 bytes
 
======Listing Processes======
 
 
 
\SystemRoot\System32\smss.exe
c:\PROGRA~2\AVG\Av\avgrsa.exe /boot
C:\Program Files (x86)\AVG\Av\avgcsrva.exe /pipeName=44800c66-0200-0000-e9cb-fe12e3998c31 /binaryPath="C:\Program Files (x86)\AVG\Av\\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"taskhost.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\AVG\Av\avgidsagent.exe"
taskeng.exe {A148B046-665C-4A38-B036-E26D1127747D}
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe"
Atouch64.exe
"C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" 
"C:\Program Files\Elantech\ETDCtrl.exe" 
"C:\Windows\System32\igfxtray.exe" 
"C:\Windows\System32\hkcmd.exe" 
"C:\Windows\System32\igfxpers.exe" 
"C:\Program Files\iTunes\iTunesHelper.exe" 
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
C:\Windows\system32\svchost.exe -k imgsvc
taskeng.exe {9AD52B73-334D-47E7-BF5C-C6EDF5B1D8BF}
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe" 
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe" 
"C:\Program Files\P4G\BatteryLife.exe" 
"C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe" 
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe" 
"C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe" 
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDECK.EXE" -r
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe" 
"C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" 
"C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe" 
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe" 
"C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" /fmw.trayonly
"C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task
"C:\Program Files (x86)\AVG\Av\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 
"C:\Program Files (x86)\AVG\Av\avgnsa.exe"
"C:\Program Files (x86)\AVG\Av\avgemca.exe"
"C:\Windows\system32\GWX\GWX.exe" 
ATKOSD.exe
KBFiltr.exe
WDC.exe
ctfmon.exe
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
C:\ProgramData\Avg_Update_0615piz\AVG-Secure-Search-Update_0615piz.exe --TASK_START_SYS --RUNBY=AV --CMPID=0615piz --mid=809879b5876c47cca67e41affca995ac-4f3c07e410b8454bd606aab0e3f319cef484f6af
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\AsScrPro.exe" 
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" 
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe" 
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe" 
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4560.0.1036625949\1952469129" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,20,45 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x2a42 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2302 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Conservative/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group12 pct:1c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/PP_Ethersuggest_A8_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4560.2.1014599198\1917470312" --font-cache-shared-handle=2600 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Conservative/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group12 pct:1c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/PP_Ethersuggest_A8_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4560.3.655526137\1785911337" --font-cache-shared-handle=2756 /prefetch:673131151
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Conservative/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group12 pct:1c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/PP_Ethersuggest_A8_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4560.7.27735116\1271468348" --font-cache-shared-handle=3096 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Conservative/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group12 pct:1c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/PP_Ethersuggest_A8_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4560.9.488286163\870195373" --font-cache-shared-handle=740 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4560.10.1846564710\1090686221" --ppapi-flash-args=enable_hw_video_decode=1 --lang=nl --ignored=" --type=renderer " /prefetch:-632637702
C:\Windows\system32\AUDIODG.EXE 0x61c
"C:\Users\Nancy\AppData\Roaming\uTorrent\uTorrent.exe" 
"C:\Users\Nancy\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe" uTorrent_1392_0036D078_1553505128 µTorrent4823DF041B09 uTorrent
"C:\Users\Nancy\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe" uTorrent_1392_0036D128_1803938850 µTorrent4823DF041B09 uTorrent
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe" /manual
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Nancy\Downloads\RSITx64.exe" 
 
======Scheduled tasks folder======
 
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  
C:\Windows\tasks\AVG_SYS_TASK_0615piz.job - C:\ProgramData\Avg_Update_0615piz\AVG-Secure-Search-Update_0615piz.exe   --TASK_START_SYS --RUNBY=AV --CMPID=0615piz --mid=809879b5876c47cca67e41affca995ac-4f3c07e410b8454bd606aab0e3f319cef484f6af 
C:\Windows\tasks\AVG_SYS_TASK_0615piz_DELETE.job - C:\ProgramData\Avg_Update_0615piz\AVG-Secure-Search-Update_0615piz.exe   /CMPID=0615piz /CMPN_DELETE_ALL /RUNBY=AV 
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 
 
======Registry dump======
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-27 256456]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2008-12-04 92504]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-29 460384]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Aanmelden - Help - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2008-11-18 408952]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-27 194504]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-29 172640]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-27 256456]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-27 194504]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-04-09 320000]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2009-06-12 619392]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 162328]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 386584]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-11 417304]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-09-23 170256]
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Settings Manager"=C:\Users\Nancy\AppData\Roaming\Settings Manager\SettingsManager.EXE /autostart /restart []
"UM"=C:\Users\Nancy\AppData\Roaming\Update Manager\UM.EXE []
"Advanced SystemCare 9"=C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2015-11-06 2010912]
 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2008-12-04 218408]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-07-13 2244096]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [2009-07-07 8493624]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [2009-04-20 159744]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [2015-11-12 1136552]
"AVG_UI"=C:\Program Files (x86)\AVG\Av\avgui.exe [2015-10-30 3826600]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09 596528]
 
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe []
 
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\ASUS Camera ScreenSaver]
C:\Windows\AsScrProlog.exe [2009-09-22 72248]
 
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2009-09-22 3054136]
 
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2008-07-19 104936]
 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
FancyStart daemon.lnk - C:\Windows\Installer\{60D6618B-153F-4353-8185-908E676E5888}\_DCE9A4DB2A5F2786140FA3.exe
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-02-11 272896]
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
 
======File associations======
 
.inf - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.ini - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "C:\Windows\System32\WScript.exe" "%1" %*
.txt - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
 
======List of files/folders created in the last 1 month======
 
2015-11-29 14:02:07 ----D---- C:\Program Files\trend micro
2015-11-29 14:02:06 ----D---- C:\rsit
2015-11-29 13:59:33 ----D---- C:\zoek_backup
2015-11-29 13:58:47 ----D---- C:\Windows\Sun
2015-11-29 13:50:59 ----D---- C:\Users\Nancy\AppData\Roaming\Sun
2015-11-29 13:50:28 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-64.dll
2015-11-29 13:49:57 ----D---- C:\ProgramData\Oracle
2015-11-29 12:56:12 ----D---- C:\Program Files (x86)\RAR Password Unlocker
2015-11-29 12:44:15 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-11-29 12:43:35 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-11-29 12:43:35 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-11-29 12:43:35 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-11-29 12:43:34 ----D---- C:\ProgramData\Malwarebytes
2015-11-29 12:43:34 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-29 12:31:41 ----D---- C:\AdwCleaner
2015-11-29 12:12:06 ----D---- C:\Users\Nancy\AppData\Roaming\uTorrent
2015-11-29 11:04:15 ----D---- C:\Users\Nancy\AppData\Roaming\ProductData
2015-11-29 11:04:07 ----D---- C:\ProgramData\ProductData
2015-11-29 11:03:52 ----D---- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2015-11-29 11:01:57 ----D---- C:\Users\Nancy\AppData\Roaming\IObit
2015-11-29 11:01:53 ----D---- C:\ProgramData\IObit
2015-11-29 11:01:53 ----D---- C:\Program Files (x86)\IObit
2015-11-29 10:43:45 ----A---- C:\autoexec.bat
2015-11-22 21:19:47 ----D---- C:\ProgramData\Avg_Update_0615piz
2015-11-22 21:17:32 ----D---- C:\Users\Nancy\AppData\Roaming\AVG
2015-11-22 21:16:52 ----D---- C:\Users\Nancy\AppData\Roaming\TuneUp Software
2015-11-22 21:16:26 ----HD---- C:\$AVG
2015-11-22 21:13:55 ----D---- C:\ProgramData\MFAData
2015-11-22 21:12:18 ----HD---- C:\ProgramData\Common Files
2015-11-22 21:12:18 ----D---- C:\Program Files (x86)\AVG
2015-11-22 21:12:17 ----D---- C:\ProgramData\Avg
2015-11-22 14:34:39 ----D---- C:\Program Files (x86)\NirSoft
2015-11-22 14:24:53 ----D---- C:\Program Files (x86)\Hewlett-Packard
2015-11-22 14:24:49 ----D---- C:\ProgramData\Visan
2015-11-22 14:24:49 ----D---- C:\ProgramData\HP Photo Creations
2015-11-22 14:24:49 ----D---- C:\Program Files (x86)\HP Photo Creations
2015-11-22 14:24:23 ----D---- C:\Users\Nancy\AppData\Roaming\HpUpdate
2015-11-22 14:24:03 ----N---- C:\Windows\system32\HPDiscoPMC211.dll
2015-11-22 14:23:34 ----D---- C:\ProgramData\HP
2015-11-22 14:23:32 ----D---- C:\Program Files (x86)\HP
2015-11-22 14:23:30 ----D---- C:\Program Files\HP
2015-11-22 14:22:41 ----A---- C:\ProgramData\Ament.ini
2015-11-22 11:42:20 ----A---- C:\Windows\system32\wuaueng.dll
2015-11-22 11:42:19 ----A---- C:\Windows\system32\wucltux.dll
2015-11-22 11:42:18 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-11-22 11:42:18 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-11-22 11:42:18 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-11-22 11:42:18 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-11-22 11:42:18 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-11-22 11:42:18 ----A---- C:\Windows\system32\wuwebv.dll
2015-11-22 11:42:18 ----A---- C:\Windows\system32\wups2.dll
2015-11-22 11:42:18 ----A---- C:\Windows\system32\wups.dll
2015-11-22 11:42:18 ----A---- C:\Windows\system32\wudriver.dll
2015-11-22 11:42:18 ----A---- C:\Windows\system32\wuauclt.exe
2015-11-22 11:42:18 ----A---- C:\Windows\system32\wuapp.exe
2015-11-22 11:42:18 ----A---- C:\Windows\system32\wuapi.dll
2015-11-22 11:42:18 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-11-22 11:42:18 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-11-22 11:41:52 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-11-22 11:41:52 ----A---- C:\Windows\system32\drivers\afd.sys
2015-11-22 11:41:22 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-11-22 11:41:22 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-11-22 11:41:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-11-22 11:41:21 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-11-22 11:41:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-11-22 11:41:21 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-11-22 11:41:21 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-11-22 11:41:21 ----A---- C:\Windows\system32\iernonce.dll
2015-11-22 11:41:21 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-11-22 11:41:21 ----A---- C:\Windows\system32\ie4uinit.exe
2015-11-22 11:41:20 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-11-22 11:41:20 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-11-22 11:41:20 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-11-22 11:41:20 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-11-22 11:41:20 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-11-22 11:41:20 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-22 11:41:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-11-22 11:41:18 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-11-22 11:41:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-11-22 11:41:18 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-11-22 11:41:18 ----A---- C:\Windows\system32\urlmon.dll
2015-11-22 11:41:18 ----A---- C:\Windows\system32\occache.dll
2015-11-22 11:41:18 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-11-22 11:41:18 ----A---- C:\Windows\system32\iedkcs32.dll
2015-11-22 11:41:17 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-11-22 11:41:17 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-11-22 11:41:17 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-11-22 11:41:17 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-11-22 11:41:17 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-11-22 11:41:17 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-11-22 11:41:17 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-22 11:41:17 ----A---- C:\Windows\system32\msfeeds.dll
2015-11-22 11:41:17 ----A---- C:\Windows\system32\dxtrans.dll
2015-11-22 11:41:16 ----A---- C:\Windows\system32\iesetup.dll
2015-11-22 11:41:16 ----A---- C:\Windows\system32\ieapfltr.dll
2015-11-22 11:41:15 ----A---- C:\Windows\system32\iertutil.dll
2015-11-22 11:41:14 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-11-22 11:41:14 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-11-22 11:41:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-11-22 11:41:14 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-11-22 11:41:14 ----A---- C:\Windows\system32\vbscript.dll
2015-11-22 11:41:13 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-11-22 11:41:13 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-11-22 11:41:13 ----A---- C:\Windows\system32\jsproxy.dll
2015-11-22 11:41:13 ----A---- C:\Windows\system32\dxtmsft.dll
2015-11-22 11:41:12 ----A---- C:\Windows\system32\mshtmled.dll
2015-11-22 11:41:12 ----A---- C:\Windows\system32\ieui.dll
2015-11-22 11:41:12 ----A---- C:\Windows\system32\ieframe.dll
2015-11-22 11:41:11 ----A---- C:\Windows\system32\webcheck.dll
2015-11-22 11:41:11 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-11-22 11:41:11 ----A---- C:\Windows\system32\jscript9diag.dll
2015-11-22 11:41:11 ----A---- C:\Windows\system32\jscript.dll
2015-11-22 11:41:11 ----A---- C:\Windows\system32\ieUnatt.exe
2015-11-22 11:41:10 ----A---- C:\Windows\system32\wininet.dll
2015-11-22 11:41:10 ----A---- C:\Windows\system32\jscript9.dll
2015-11-22 11:41:09 ----A---- C:\Windows\system32\msrating.dll
2015-11-22 11:41:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-11-22 11:41:08 ----A---- C:\Windows\system32\mshtml.dll
2015-11-22 11:40:10 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-11-22 11:40:09 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-11-22 11:40:09 ----A---- C:\Windows\system32\schannel.dll
2015-11-22 11:40:09 ----A---- C:\Windows\system32\kerberos.dll
2015-11-22 11:40:08 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-11-22 11:40:07 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-11-22 11:40:07 ----A---- C:\Windows\system32\ncrypt.dll
2015-11-22 11:40:07 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-11-22 11:40:07 ----A---- C:\Windows\system32\drivers\cng.sys
2015-11-22 11:40:06 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-11-22 11:40:05 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-11-22 11:40:05 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2015-11-22 11:40:05 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-11-22 11:40:04 ----A---- C:\Windows\system32\kernel32.dll
2015-11-22 11:40:01 ----A---- C:\Windows\system32\lsasrv.dll
2015-11-22 11:39:59 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-11-22 11:39:59 ----A---- C:\Windows\system32\ntdll.dll
2015-11-22 11:39:57 ----A---- C:\Windows\system32\wow64.dll
2015-11-22 11:39:57 ----A---- C:\Windows\system32\rpcrt4.dll
2015-11-22 11:39:57 ----A---- C:\Windows\system32\KernelBase.dll
2015-11-22 11:39:57 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-11-22 11:39:57 ----A---- C:\Windows\system32\conhost.exe
2015-11-22 11:39:56 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-11-22 11:39:56 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-11-22 11:39:56 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-11-22 11:39:56 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-11-22 11:39:56 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-11-22 11:39:56 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-11-22 11:39:56 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-11-22 11:39:56 ----A---- C:\Windows\system32\winsrv.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\wdigest.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\TSpkg.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\sspisrv.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\sspicli.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\srcore.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\srclient.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\smss.exe
2015-11-22 11:39:56 ----A---- C:\Windows\system32\rstrui.exe
2015-11-22 11:39:56 ----A---- C:\Windows\system32\ntvdm64.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\msv1_0.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\lsass.exe
2015-11-22 11:39:56 ----A---- C:\Windows\system32\csrsrv.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\cryptbase.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\credssp.dll
2015-11-22 11:39:56 ----A---- C:\Windows\system32\auditpol.exe
2015-11-22 11:39:55 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-11-22 11:39:55 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-11-22 11:39:55 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-11-22 11:39:55 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-11-22 11:39:55 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-11-22 11:39:55 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-11-22 11:39:55 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-11-22 11:39:55 ----A---- C:\Windows\system32\wow64win.dll
2015-11-22 11:39:55 ----A---- C:\Windows\system32\wow64cpu.dll
2015-11-22 11:39:55 ----A---- C:\Windows\system32\secur32.dll
2015-11-22 11:39:55 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-11-22 11:39:55 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-11-22 11:39:55 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-22 11:39:54 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-22 11:39:54 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-22 11:39:53 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-22 11:39:53 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-11-22 11:39:53 ----A---- C:\Windows\system32\apisetschema.dll
2015-11-22 11:39:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-22 11:39:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-22 11:39:51 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-22 11:39:51 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-22 11:39:51 ----A---- C:\Windows\SYSWOW64\user.exe
2015-11-22 11:39:51 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-11-22 11:39:51 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-11-22 11:39:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-11-22 11:39:51 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-11-22 11:39:51 ----A---- C:\Windows\system32\msobjs.dll
2015-11-22 11:39:51 ----A---- C:\Windows\system32\msaudite.dll
2015-11-22 11:39:51 ----A---- C:\Windows\system32\adtschema.dll
2015-11-22 11:39:30 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-11-22 11:39:30 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-11-22 11:39:30 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-11-22 11:39:30 ----A---- C:\Windows\system32\shimeng.dll
2015-11-22 11:39:30 ----A---- C:\Windows\system32\sdbinst.exe
2015-11-22 11:39:30 ----A---- C:\Windows\system32\apphelp.dll
2015-11-22 11:39:30 ----A---- C:\Windows\system32\aelupsvc.dll
2015-11-22 11:39:29 ----A---- C:\Windows\system32\win32k.sys
2015-11-22 11:39:27 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-11-22 11:39:13 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-11-22 11:39:13 ----A---- C:\Windows\system32\jnwmon.dll
2015-11-22 11:39:13 ----A---- C:\Windows\system32\InkEd.dll
2015-11-19 21:55:18 ----D---- C:\Program Files (x86)\MSECache
2015-11-03 17:53:37 ----D---- C:\Users\Nancy\AppData\Roaming\stremio
2015-11-03 16:44:51 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-11-03 16:44:51 ----A---- C:\Windows\system32\wdi.dll
2015-11-03 16:44:51 ----A---- C:\Windows\system32\powertracker.dll
2015-11-03 16:44:51 ----A---- C:\Windows\system32\perftrack.dll
2015-11-03 16:42:39 ----A---- C:\Windows\system32\shell32.dll
2015-11-03 16:42:37 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-11-03 16:42:37 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-11-03 16:42:34 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-11-03 16:42:10 ----A---- C:\Windows\system32\invagent.dll
2015-11-03 16:42:10 ----A---- C:\Windows\system32\generaltel.dll
2015-11-03 16:42:10 ----A---- C:\Windows\system32\devinv.dll
2015-11-03 16:42:10 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-11-03 16:42:10 ----A---- C:\Windows\system32\appraiser.dll
2015-11-03 16:42:10 ----A---- C:\Windows\system32\acmigration.dll
2015-11-03 16:42:09 ----A---- C:\Windows\system32\aepic.dll
2015-11-03 16:42:09 ----A---- C:\Windows\system32\aeinv.dll
2015-11-03 16:37:42 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-11-03 16:37:42 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-11-03 16:37:42 ----A---- C:\Windows\system32\drivers\appid.sys
2015-11-03 16:37:42 ----A---- C:\Windows\system32\appidsvc.dll
2015-11-03 16:37:42 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-11-03 16:37:42 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-11-03 16:37:42 ----A---- C:\Windows\system32\appidapi.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\ucrtbase.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-11-03 16:37:29 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-11-03 16:37:28 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-11-03 15:35:56 ----SD---- C:\Windows\SYSWOW64\GWX
2015-11-03 15:35:56 ----SD---- C:\Windows\system32\GWX
2015-11-03 15:33:00 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-11-03 15:33:00 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-11-03 15:07:55 ----A---- C:\Windows\system32\sysmain.dll
2015-11-03 15:07:55 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-11-03 15:07:53 ----A---- C:\Windows\system32\msmmsp.dll
2015-11-03 15:06:20 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-11-03 15:06:20 ----A---- C:\Windows\system32\tracerpt.exe
2015-11-03 15:06:19 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-11-03 15:06:19 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-11-03 15:06:19 ----A---- C:\Windows\system32\sechost.dll
2015-11-03 15:06:19 ----A---- C:\Windows\system32\logman.exe
2015-11-03 15:06:17 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-11-03 15:06:17 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-11-03 15:06:17 ----A---- C:\Windows\system32\typeperf.exe
2015-11-03 15:06:17 ----A---- C:\Windows\system32\relog.exe
2015-11-03 15:06:15 ----A---- C:\Windows\system32\diskperf.exe
2015-11-03 15:06:12 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-11-03 15:03:34 ----A---- C:\Windows\system32\wmp.dll
2015-11-03 15:03:29 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-11-03 15:03:22 ----A---- C:\Windows\system32\spwmp.dll
2015-11-03 15:03:21 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-11-03 15:03:20 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-11-03 15:03:20 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-11-03 15:03:20 ----A---- C:\Windows\system32\wmploc.DLL
2015-11-03 15:03:20 ----A---- C:\Windows\system32\dxmasf.dll
2015-11-03 15:03:04 ----A---- C:\Windows\system32\certcli.dll
2015-11-03 15:03:03 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-11-03 15:02:51 ----A---- C:\Windows\system32\cewmdm.dll
2015-11-03 15:02:50 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-11-03 15:01:15 ----A---- C:\Windows\system32\services.exe
2015-11-03 15:01:11 ----A---- C:\Windows\system32\schedsvc.dll
2015-11-03 15:01:05 ----A---- C:\Windows\system32\rdpcorets.dll
2015-11-03 15:01:04 ----A---- C:\Windows\system32\rdpudd.dll
2015-11-03 15:01:04 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-11-03 15:00:45 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-11-03 15:00:29 ----A---- C:\Windows\system32\mf.dll
2015-11-03 15:00:26 ----A---- C:\Windows\system32\drmv2clt.dll
2015-11-03 15:00:25 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-11-03 15:00:25 ----A---- C:\Windows\system32\quartz.dll
2015-11-03 15:00:24 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-11-03 15:00:24 ----A---- C:\Windows\system32\msscp.dll
2015-11-03 15:00:23 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-11-03 15:00:23 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-11-03 15:00:23 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-11-03 15:00:23 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-11-03 15:00:23 ----A---- C:\Windows\system32\pcasvc.dll
2015-11-03 15:00:23 ----A---- C:\Windows\system32\cryptui.dll
2015-11-03 15:00:23 ----A---- C:\Windows\system32\audiosrv.dll
2015-11-03 15:00:22 ----A---- C:\Windows\system32\blackbox.dll
2015-11-03 15:00:19 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-11-03 15:00:18 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-11-03 15:00:16 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-11-03 15:00:15 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-11-03 15:00:14 ----A---- C:\Windows\system32\mfplat.dll
2015-11-03 15:00:13 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-11-03 15:00:13 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-11-03 15:00:13 ----A---- C:\Windows\system32\evr.dll
2015-11-03 15:00:12 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-11-03 15:00:11 ----A---- C:\Windows\system32\qdvd.dll
2015-11-03 15:00:11 ----A---- C:\Windows\system32\AudioSes.dll
2015-11-03 15:00:11 ----A---- C:\Windows\system32\audiodg.exe
2015-11-03 15:00:08 ----A---- C:\Windows\system32\msnetobj.dll
2015-11-03 15:00:05 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-11-03 15:00:05 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-11-03 15:00:05 ----A---- C:\Windows\system32\pcadm.dll
2015-11-03 15:00:05 ----A---- C:\Windows\system32\AudioEng.dll
2015-11-03 15:00:04 ----A---- C:\Windows\system32\rrinstaller.exe
2015-11-03 15:00:03 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-11-03 15:00:03 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-11-03 15:00:01 ----A---- C:\Windows\system32\mfps.dll
2015-11-03 15:00:00 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-11-03 14:59:58 ----A---- C:\Windows\system32\pcawrk.exe
2015-11-03 14:59:58 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-11-03 14:59:57 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-11-03 14:59:57 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-11-03 14:59:57 ----A---- C:\Windows\system32\pcalua.exe
2015-11-03 14:59:57 ----A---- C:\Windows\system32\mfpmp.exe
2015-11-03 14:59:57 ----A---- C:\Windows\system32\cryptsp.dll
2015-11-03 14:59:56 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-11-03 14:59:56 ----A---- C:\Windows\system32\EncDump.dll
2015-11-03 14:59:51 ----A---- C:\Windows\system32\pcaevts.dll
2015-11-03 14:59:42 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-11-03 14:59:42 ----A---- C:\Windows\system32\mferror.dll
2015-11-01 12:51:08 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-11-01 12:51:08 ----A---- C:\Windows\system32\tzres.dll
2015-11-01 12:50:23 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-11-01 12:50:23 ----A---- C:\Windows\system32\dwmcore.dll
2015-11-01 12:50:23 ----A---- C:\Windows\system32\dwmapi.dll
2015-11-01 12:50:22 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-11-01 12:49:17 ----A---- C:\Windows\system32\basesrv.dll
2015-11-01 12:48:04 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-11-01 12:48:04 ----A---- C:\Windows\system32\ubpm.dll
2015-11-01 12:48:02 ----A---- C:\Windows\system32\wpdshext.dll
2015-11-01 12:48:01 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-11-01 12:47:59 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-11-01 12:47:59 ----A---- C:\Windows\system32\WebClnt.dll
2015-11-01 12:47:58 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-11-01 12:47:58 ----A---- C:\Windows\system32\davclnt.dll
2015-11-01 12:47:49 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-11-01 12:47:49 ----A---- C:\Windows\system32\gdi32.dll
2015-11-01 12:47:19 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-11-01 12:47:19 ----A---- C:\Windows\system32\comctl32.dll
2015-11-01 12:47:16 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-11-01 12:47:16 ----A---- C:\Windows\system32\ole32.dll
2015-11-01 12:47:07 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-11-01 12:47:07 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-11-01 12:47:07 ----A---- C:\Windows\system32\cryptsvc.dll
2015-11-01 12:47:06 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-11-01 12:47:06 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-11-01 12:47:06 ----A---- C:\Windows\system32\wintrust.dll
2015-11-01 12:47:06 ----A---- C:\Windows\system32\cryptnet.dll
2015-11-01 12:47:06 ----A---- C:\Windows\system32\crypt32.dll
2015-11-01 12:45:31 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-11-01 12:45:31 ----A---- C:\Windows\system32\msi.dll
2015-11-01 12:45:30 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-11-01 12:45:30 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-11-01 12:45:30 ----A---- C:\Windows\system32\msihnd.dll
2015-11-01 12:45:30 ----A---- C:\Windows\system32\msiexec.exe
2015-11-01 12:45:29 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-11-01 12:45:29 ----A---- C:\Windows\system32\msimsg.dll
2015-11-01 12:45:10 ----A---- C:\Windows\system32\FntCache.dll
2015-11-01 12:45:10 ----A---- C:\Windows\system32\DWrite.dll
2015-11-01 12:45:09 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-11-01 12:44:49 ----A---- C:\Windows\system32\d3d10warp.dll
2015-11-01 12:44:48 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-11-01 12:44:37 ----A---- C:\Windows\system32\UtcResources.dll
2015-11-01 12:44:37 ----A---- C:\Windows\system32\diagtrack.dll
2015-11-01 12:44:32 ----A---- C:\Windows\system32\tdh.dll
2015-11-01 12:44:32 ----A---- C:\Windows\system32\advapi32.dll
2015-11-01 12:44:30 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-11-01 12:44:28 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-11-01 12:43:13 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-11-01 12:43:13 ----A---- C:\Windows\system32\notepad.exe
2015-11-01 12:43:13 ----A---- C:\Windows\notepad.exe
2015-11-01 12:43:10 ----A---- C:\Windows\system32\mstscax.dll
2015-11-01 12:43:09 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-11-01 12:43:08 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-11-01 12:43:08 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-11-01 12:43:08 ----A---- C:\Windows\system32\tsgqec.dll
2015-11-01 12:43:08 ----A---- C:\Windows\system32\aaclient.dll
2015-11-01 12:43:03 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-11-01 12:43:03 ----A---- C:\Windows\system32\consent.exe
2015-11-01 12:43:03 ----A---- C:\Windows\system32\authui.dll
2015-11-01 12:43:02 ----A---- C:\Windows\system32\appinfo.dll
2015-11-01 12:42:28 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-11-01 12:42:27 ----A---- C:\Windows\system32\poqexec.exe
2015-11-01 12:42:26 ----A---- C:\Windows\system32\drivers\stream.sys
2015-11-01 12:42:25 ----A---- C:\Windows\system32\drivers\http.sys
2015-11-01 12:42:24 ----A---- C:\Windows\system32\msxml3.dll
2015-11-01 12:42:23 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-11-01 12:42:23 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-11-01 12:42:23 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-11-01 12:42:23 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-11-01 12:42:23 ----A---- C:\Windows\system32\msxml6r.dll
2015-11-01 12:42:23 ----A---- C:\Windows\system32\msxml6.dll
2015-11-01 12:42:23 ----A---- C:\Windows\system32\msxml3r.dll
2015-11-01 12:42:08 ----A---- C:\Windows\system32\winload.exe
2015-11-01 12:41:04 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-11-01 12:41:04 ----A---- C:\Windows\system32\msctf.dll
2015-11-01 12:41:01 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-11-01 12:41:01 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-11-01 12:39:51 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-11-01 12:39:51 ----A---- C:\Windows\system32\clfsw32.dll
2015-11-01 12:39:51 ----A---- C:\Windows\system32\clfs.sys
2015-11-01 12:39:46 ----A---- C:\Windows\system32\atmfd.dll
2015-11-01 12:39:45 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-11-01 12:39:44 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-11-01 12:39:44 ----A---- C:\Windows\system32\lpk.dll
2015-11-01 12:39:44 ----A---- C:\Windows\system32\dciman32.dll
2015-11-01 12:39:44 ----A---- C:\Windows\system32\atmlib.dll
2015-11-01 12:39:29 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-11-01 12:39:27 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-11-01 12:39:27 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-11-01 12:39:27 ----A---- C:\Windows\system32\fontsub.dll
2015-11-01 12:39:25 ----A---- C:\Windows\system32\WMPhoto.dll
2015-11-01 12:39:24 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
 
======List of files/folders modified in the last 1 month======
 
2015-11-29 14:37:16 ----D---- C:\Windows\system32\Tasks
2015-11-29 14:36:48 ----D---- C:\Windows\Temp
2015-11-29 14:22:48 ----D---- C:\Windows\System32
2015-11-29 14:22:48 ----D---- C:\Windows\inf
2015-11-29 14:22:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-29 14:20:38 ----D---- C:\Windows\system32\config
2015-11-29 14:14:14 ----RD---- C:\Program Files
2015-11-29 14:14:13 ----D---- C:\Windows\system32\drivers
2015-11-29 13:59:40 ----D---- C:\Windows\SysWOW64
2015-11-29 13:58:47 ----D---- C:\Windows
2015-11-29 13:53:18 ----SHD---- C:\Windows\Installer
2015-11-29 13:52:46 ----D---- C:\Program Files (x86)\Java
2015-11-29 13:51:41 ----D---- C:\Program Files (x86)\Common Files
2015-11-29 13:50:17 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-11-29 13:50:17 ----A---- C:\Windows\SYSWOW64\javaws.exe
2015-11-29 13:49:57 ----HD---- C:\ProgramData
2015-11-29 13:35:02 ----A---- C:\Windows\system32\ServiceFilter.ini
2015-11-29 12:56:12 ----RD---- C:\Program Files (x86)
2015-11-29 12:32:10 ----D---- C:\Windows\SoftwareDistribution
2015-11-29 12:24:51 ----D---- C:\Windows\system32\catroot2
2015-11-29 12:24:29 ----A---- C:\Windows\system32\AutoRunFilter.ini
2015-11-29 12:23:39 ----D---- C:\Windows\debug
2015-11-29 12:17:51 ----D---- C:\Windows\Panther
2015-11-29 11:44:10 ----D---- C:\Windows\Microsoft.NET
2015-11-29 11:04:20 ----SHD---- C:\System Volume Information
2015-11-29 11:04:03 ----D---- C:\Users\Nancy\AppData\Roaming\Apple Computer
2015-11-29 11:03:21 ----D---- C:\Windows\Tasks
2015-11-22 21:17:07 ----D---- C:\Program Files\Common Files\AV
2015-11-22 16:20:57 ----D---- C:\Program Files\Bitdefender
2015-11-22 16:18:57 ----D---- C:\ProgramData\Bitdefender
2015-11-22 16:18:56 ----D---- C:\Program Files\Common Files\Bitdefender
2015-11-22 16:18:01 ----A---- C:\bdlog.txt
2015-11-22 16:11:51 ----D---- C:\Windows\system32\drivers\etc
2015-11-22 14:23:59 ----D---- C:\Windows\system32\DriverStore
2015-11-22 14:23:32 ----D---- C:\Windows\twain_32
2015-11-22 14:19:15 ----D---- C:\Windows\winsxs
2015-11-22 14:15:02 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-11-22 14:15:01 ----D---- C:\Windows\system32\nl-NL
2015-11-22 14:15:01 ----D---- C:\Program Files\Internet Explorer
2015-11-22 14:15:00 ----D---- C:\Windows\SYSWOW64\en-US
2015-11-22 14:14:58 ----D---- C:\Windows\system32\en-US
2015-11-22 14:14:56 ----D---- C:\Program Files (x86)\Internet Explorer
2015-11-22 14:14:47 ----D---- C:\Windows\AppPatch
2015-11-22 14:14:42 ----D---- C:\Windows\system32\migration
2015-11-22 13:58:45 ----D---- C:\Windows\system32\MRT
2015-11-22 13:53:14 ----A---- C:\Windows\system32\MRT.exe
2015-11-22 13:52:44 ----RSD---- C:\Windows\assembly
2015-11-22 13:42:25 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-11-22 13:41:03 ----D---- C:\Program Files\Windows Journal
2015-11-19 21:40:19 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-11-19 21:31:52 ----SD---- C:\Users\Nancy\AppData\Roaming\Microsoft
2015-11-19 21:07:21 ----D---- C:\Windows\AppCompat
2015-11-07 13:06:38 ----D---- C:\Windows\tracing
2015-11-07 13:06:28 ----SD---- C:\Windows\system32\CompatTel
2015-11-07 13:06:28 ----D---- C:\Windows\system32\wbem
2015-11-07 13:06:28 ----D---- C:\Windows\system32\appraiser
2015-11-07 13:06:25 ----D---- C:\Windows\system32\CodeIntegrity
2015-11-07 13:06:25 ----D---- C:\Windows\system32\Boot
2015-11-03 17:31:05 ----SHD---- C:\Boot
2015-11-03 17:27:47 ----D---- C:\Windows\system32\drivers\nl-NL
2015-11-03 17:27:47 ----D---- C:\Program Files\Windows Media Player
2015-11-03 17:27:47 ----D---- C:\Program Files (x86)\Windows Media Player
2015-11-03 17:27:44 ----D---- C:\Windows\SYSWOW64\Dism
2015-11-03 17:27:43 ----D---- C:\Windows\system32\Dism
2015-11-03 16:08:17 ----D---- C:\Windows\Logs
2015-11-03 15:35:56 ----D---- C:\Windows\ehome
2015-11-03 15:35:55 ----D---- C:\Windows\system32\AdvancedInstallers
2015-11-03 15:35:53 ----D---- C:\Windows\PolicyDefinitions
2015-11-03 15:35:26 ----D---- C:\Windows\system32\drivers\UMDF
 
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2015-08-20 298416]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2015-08-14 398256]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2015-10-21 255408]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2015-08-10 42416]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 408600]
R0 lullaby;lullaby; C:\Windows\system32\DRIVERS\lullaby.sys [2009-06-18 15928]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2015-08-10 197040]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2015-10-19 313776]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2015-10-21 284080]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2015-10-08 302000]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-06-12 112128]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-02-11 10628640]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-05 1806400]
R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-07-09 1222144]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-05-26 40448]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-11-29 192216]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-10-05 63704]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb-stuurprogramma; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]
 
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AdvancedSystemCareService9;Advanced SystemCare Service 9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [2015-11-04 827680]
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-09-15 359552]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-09-02 77104]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [2015-10-30 3815648]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2015-11-12 1046952]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [2015-10-30 579776]
R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FastBootAgent;FastBootAgent; C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe [2009-07-24 306232]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640]
R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2015-09-23 644880]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-19 144200]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-10-09 2934048]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-19 269000]
S3 AvgAMPS;AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [2015-10-30 595376]
S3 fsssvc;Windows Live Family Safety; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-19 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-02-06 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-10-31 114688]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-11-10 1255736]
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
 
-----------------EOF-----------------
 

log.txt

Link naar reactie
Delen op andere sites

Hoi kevotjeuh !

 

welkom op PCH !

 

Als er alleen nog maar AVG op staat en je wil hem helemaal clean hebben, waarom overweeg je dan geen clean install? Windows 7- schijf erin, formateren en windows er nieuw op zetten... ?

 

Hoe dan ook, 'k verwittig toch even de malwareontleders van je Rsit-logje en als er een van hen op het forum komt, wandelt hij wel eens langs je topic hier.

 

(ondertussen kan je eens nadenken over al dan niet een clean install - want dan is een ontleding van je logje mogelijk niet meer nodig)

 

en als je toch opteert voor een ontleding van je logje, verplaats ik je vraag wel naar Malware-ontleding

aangepast door Passer
Link naar reactie
Delen op andere sites

Staat wel wat meer op dan AVG alleen, ik bedoelde dat ik van anti-virus en anti-spyware programma's alleen maar AVG heb maar blijkbaar heb ik ook nog adw en malwarebytes, is dat genoeg om u te kunnen beschermen?

 

Aan een clean install heb ik ook nog aan gedacht maar staat een office programma op dat ik wel wil behouden

Link naar reactie
Delen op andere sites

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

 

Download Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
 C:\Program Files (x86)\IObit\Advanced SystemCare;fs
{5C255C8A-E604-49b4-9D64-90988571CECB};c
Advanced SystemCare 9;s
C:\Program Files\Bitdefender;fs
C:\ProgramData\Bitdefender;fs
C:\Program Files\Common Files\Bitdefender;fs
Bitdefender Wallet Agent;s
LiveUpdateSvc;s
CHRdefaults;
C:\Windows\tasks\AVG_SYS_TASK_0615piz.job;f
C:\ProgramData\Avg_Update_0615piz\AVG-Secure-Search-Update_0615piz.exe;f
C:\Windows\tasks\AVG_SYS_TASK_0615piz_DELETE.job;f
[font=times new roman,serif][size=12][-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}];r64[/size][/font]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r64
"Advanced SystemCare 9"=-;r64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r64
""=-;r64
C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98};fs
C:\ProgramData\IObit;fs
C:\Users\Nancy\AppData\Roaming\IObit;fs
 
  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Deep Scan
  • Installed Programs
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.
Zoek.exe logbestand plaatsen
  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar reactie
Delen op andere sites

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
 C:\Program Files (x86)\IObit:fs

C:\ProgramData\IObit;fs

C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\IObit;fs

C:\autoexec.bat;f

C:\Users\Nancy\AppData\Locallow\IObit;fs

C:\Users\Nancy\AppData\Local\PopcornTimeDesktop;fs

C:\Users\Nancy\Downloads\SpyHunter-Installer (1).exe;f

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run];r64

"Bitdefender Wallet Agent"=-;r64

"Bitdefender Wallet"=-;r64

"Bitdefender Agent Wallet-toepassing"=-;r64

[HKEY_USERS\S-1-5-21-571625239-635233866-229951279-1000\Software\Microsoft\Windows\CurrentVersion\Run];r64

"Settings Manager"=-;r64

"UM"=-;r64

"Advanced SystemCare 9"=-;r64

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run];r64

"Bitdefender Wallet Agent"=-;r64

"Bitdefender Wallet"=-;r64

"Bitdefender Agent Wallet-toepassing"=-;r64

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r64

"Settings Manager"=-;r64

"UM"=-;r64

"Advanced SystemCare 9"=-;r64

C:\Windows\SysNative\tasks\ASC9_PerformanceMonitor;s

C:\Windows\SysNative\tasks\ASC9_SkipUac_Nancy;s

C:\Windows\SysNative\tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8;r64

C:\Windows\SysNative\tasks\Uninstaller_SkipUac_Nancy;fs

Settings Manager;s

UM;s

Advanced SystemCare 9;s

Bitdefender Wallet Agent;s

AdvancedSystemCareService9;s

CHRdefaults;

  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.
Zoek.exe logbestand plaatsen
  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar reactie
Delen op andere sites

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.