rickske
24 April 2016, 11:16
Hallo ,
Na gisteren een systeemherstel te hebben uitgevoerd en mijn antivirus had uitgeschakeld kreeg ik deze niet meer opgestart , toen heb ik deze maar volledig verwijderd van de PC en probeerde ikk deze terug te herinstaleren , maar hier loopt het steeds fout en krijg ik volgende mededeling ,
Runtime error Program:c:\Windows\syswow64\Msi Exec.exe R6025 pure virtual runtime
Waarschijnlijk ergens een virus dat zich in de PC heeft genesteld , kan je daarom volgend HijackThis logje eens nakijken .
Met dank .
Logfile of random's system information tool 1.10 (written by random/random)
Run by Aspire at 2016-04-24 10:53:04
Microsoft Windows 8.1
System drive C: has 204 GB (59%) free of 348 GB
Total RAM: 5962 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:53:09, on 24/04/2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Users\Aspire\AppData\Roaming\BitTorrent\BitTorr ent.exe
C:\Program Files (x86)\Fuji Fotoservice\Fuji Fotoservice\dd.exe
C:\Users\Aspire\AppData\Local\Akamai\netsession_wi n.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Aspire\AppData\Local\Akamai\netsession_wi n.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe
C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe
C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Aspire.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.2link.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: (no name) - {0d159187-1dde-426d-8d17-74b6cef7d9e3} - (no file)
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O2 - BHO: (no name) - {a235e1e3-6296-4710-af39-104a7faa6c7c} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: (no name) - {c66a678d-5e6c-4af9-8f57-c6192f42cf74} - (no file)
O3 - Toolbar: (no name) - {4e8a04a7-e70b-4391-9af3-1c0cc98ae8da} - (no file)
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.ex e" -launchedbylogin
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe" C:\Program Files (x86)\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Aspire\AppData\Roaming\BitTorrent\BitTorr ent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Device Detection] C:\Program Files (x86)\Fuji Fotoservice\Fuji Fotoservice\dd.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Aspire\AppData\Local\Akamai\netsession_wi n.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_16E557C8A4C6743F992F625A838 7149E] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-21-1941012337-847055493-2445312372-1001\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.1.0.0/GarminAxControl_32.CAB
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater18.4.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 16924 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe"
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdate Svc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {8a3d9f83-3bd4-4819-83801f338b07b8e5}
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
taskhostex.exe
"C:\Program Files (x86)\Launch Manager\LManager.exe"
ClassicStartMenu.exe -startup
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsa pps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.ex e" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
"C:\windows\system32\mfevtps.exe"
"C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
C:\Windows\RfBtnSvc64.exe
"C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe"
"C:\WINDOWS\system32\GWX\GWX.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\Pres entationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtTray.exe"
"C:\Users\Aspire\AppData\Roaming\BitTorrent\BitTorr ent.exe" /MINIMIZED
"C:\Program Files (x86)\Fuji Fotoservice\Fuji Fotoservice\dd.exe"
"C:\Users\Aspire\AppData\Local\Akamai\netsession_wi n.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:/Users/Aspire/AppData/Local/Akamai/netsession_win.exe" --client
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Aspire\AppData\Local\Google\Chro me\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=49.0.2623.112 --handshake-handle=0x148
"C:\Dolby PCEE4\pcee4.exe" -autostart
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6652.0.1603261300\1134553918" --supports-dual-gpus=false --gpu-driver-bug-workarounds=3,11,16,25,54 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3621 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe"
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
/fmw.trayonly
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,WebFontsIntervention<WebFontsIntervention --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=nl --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_85/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,355 3,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6652.1.930856763\480781866" /prefetch:1
"C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe" BitTorrent_6196_0265CB68_1559281281 BT4823DF041B09 BitTorrent
"C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe" BitTorrent_6196_0265CE28_607071560 BT4823DF041B09 BitTorrent
"C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe" BitTorrent_6196_0265CF30_1837412314 BT4823DF041B09 BitTorrent
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\WINDOWS\System32\Taskmgr.exe" /3
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\system32\msiexec.exe /V
"C:\Program Files\EgisTec IPS\PMMUpdate.exe"
"C:\Program Files\EgisTec IPS\EgisUpdate.exe"
"C:\Program Files\Internet Explorer\iexplore.exe" http://www.avg.com/support
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5884 CREDAT:267521 /prefetch:2
"C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" --type=renderer --disable-gpu-compositing --disable-pinch --force-device-scale-factor=1.250000 --no-sandbox --disable-direct-write --enable-deferred-image-decoding --lang=en-US --lang=en-US --log-file="C:\Users\Aspire\AppData\Local\Avg\log\fmw1\chromiu m_dbg.log" --device-scale-factor=1.25 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="6608.6.407969587\213261730" /prefetch:673131151
"C:\WINDOWS\System32\Macromed\Flash\FlashUtil_Activ eX.exe" -Embedding
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5884 CREDAT:3413326 /prefetch:2
"C:\Users\Aspire\AppData\Local\Microsoft\Windows\IN etCache\IE\GT985OVZ\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\0814avUpdateInfo.job - C:\ProgramData\Avg_Update_0814av\0814av_AVG-Secure-Search-Update.exe /SETINFO /CMPID=0814av /INFORETRY=3
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Aspire\AppData\Roaming\Mozilla\Firefox\Pr ofiles\vww4vy0s.default
prefs.js - "browser.startup.homepage" - "https://mysearch.avg.com/?cid={AEFC76A3-6303-4CFA-85C7-F9A2371A1E05}&mid=2d96f89107ee47d2a1eafd991cb05951-2e61d18c073195f198ddf13649f6b1ea60c26fe6&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0215av&pr=fr&d=2015-03-03 16:44:33&v=4.1.0.411&pid=wtu&sg=&sap=hp"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.4.0\\npsitesafety.dl l
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@photodex.com/PhotodexPresenter]
"Description"=Photodex Presenter Plugin
"Path"=C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp .dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe. com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_1_1 02.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin .com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Micros oft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@micros oft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll
C:\Users\Aspire\AppData\Roaming\Mozilla\Firefox\Pr ofiles\vww4vy0s.default\extensions\
{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
C:\Users\Aspire\AppData\Roaming\Mozilla\Firefox\Pr ofiles\vww4vy0s.default\searchplugins\
amazon.xml
yahoo.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-02-09 228552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28 66688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08 2134656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20 483520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25 728840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{0d159187-1dde-426d-8d17-74b6cef7d9e3}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{a235e1e3-6296-4710-af39-104a7faa6c7c}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08 1725056]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2016-03-15 1741104]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25 617736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
{c66a678d-5e6c-4af9-8f57-c6192f42cf74}
{4e8a04a7-e70b-4391-9af3-1c0cc98ae8da}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-07-27 12937872]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-07-10 1214608]
"BtPreLoad"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe [2013-01-28 64640]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-01-28 132736]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run]
"BitTorrent"=C:\Users\Aspire\AppData\Roaming\BitTorrent\BitTor rent.exe [2016-04-07 1963016]
"Device Detection"=C:\Program Files (x86)\Fuji Fotoservice\Fuji Fotoservice\dd.exe [2013-10-22 867216]
"Akamai NetSession Interface"=C:\Users\Aspire\AppData\Local\Akamai\netsession_w in.exe [2015-09-10 4691384]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2016-01-28 1403304]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
"GoogleChromeAutoLaunch_16E557C8A4C6743F992F625A838 7149E"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-04-06 874648]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\ Windows\CurrentVersion\Run]
"Dolby Home Theater v4"=C:\Dolby PCEE4\pcee4.exe [2012-07-26 508656]
"Nikon Message Center 2"=C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [2011-10-30 571392]
"AdobeCS4ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.ex e [2008-08-14 611712]
"AVG_UI"=C:\Program Files (x86)\AVG\Av\avuirunnerx.exe [2016-04-06 32528]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-04-14 186640]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\ Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-01-28 132736]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\System]
"DisableTaskMgr"=0
"DisableCAD"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\standard profile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\domainpr ofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-24 10:53:05 ----D---- C:\Program Files\trend micro
2016-04-24 10:53:04 ----D---- C:\rsit
2016-04-22 20:59:45 ----D---- C:\Users\Aspire\AppData\Roaming\tiger-k
2016-04-22 20:59:36 ----D---- C:\Users\Aspire\AppData\Roaming\Leawo
2016-04-22 20:59:25 ----D---- C:\ProgramData\Leawo
2016-04-22 20:59:17 ----D---- C:\Program Files (x86)\Leawo
2016-04-22 20:57:16 ----D---- C:\ProgramData\eafbbeaf-39b3-0
2016-04-22 20:57:15 ----D---- C:\ProgramData\eafbbeaf-1105-1
2016-04-22 20:57:01 ----D---- C:\Users\Aspire\AppData\Roaming\One System Care
2016-04-22 20:57:00 ----D---- C:\Program Files (x86)\OneSystemCare
2016-04-22 20:56:49 ----D---- C:\Users\Aspire\AppData\Roaming\Opera Software
2016-04-22 20:55:44 ----D---- C:\Program Files (x86)\Opera
2016-04-22 20:55:40 ----D---- C:\ProgramData\219d5106-5a99-41fd-b942-db6b503b0178
2016-04-22 20:55:40 ----D---- C:\Program Files (x86)\Search Web Know
2016-04-13 16:08:14 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-04-13 16:08:14 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-04-13 16:08:12 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-04-13 16:08:03 ----A---- C:\WINDOWS\system32\rpcss.dll
2016-04-13 16:08:01 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2016-04-13 16:08:00 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-04-13 16:07:59 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-04-13 16:07:59 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-04-13 16:07:59 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-13 16:07:59 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-04-13 16:07:58 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-04-13 16:07:57 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2016-04-13 16:07:56 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2016-04-13 16:07:55 ----A---- C:\WINDOWS\system32\VSSVC.exe
2016-04-13 16:07:35 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-04-13 16:07:33 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2016-04-13 16:07:33 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-04-13 16:07:33 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-04-13 16:07:33 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2016-04-13 16:07:32 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2016-04-13 16:07:32 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2016-04-13 16:07:32 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2016-04-13 16:07:32 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2016-04-13 16:07:30 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2016-04-13 16:07:28 ----A---- C:\WINDOWS\SYSWOW64\dhcpsapi.dll
2016-04-13 16:07:28 ----A---- C:\WINDOWS\system32\dhcpsapi.dll
2016-04-13 16:07:15 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-04-13 16:07:14 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-04-13 16:07:12 ----A---- C:\WINDOWS\system32\twinui.dll
2016-04-13 16:07:10 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2016-04-13 16:07:06 ----A---- C:\WINDOWS\system32\shell32.dll
2016-04-13 16:07:04 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-04-13 16:07:04 ----A---- C:\WINDOWS\explorer.exe
2016-04-13 16:07:03 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-04-13 16:07:03 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-13 16:07:03 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-04-13 16:07:02 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-04-13 16:07:02 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-04-13 16:07:02 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-04-13 16:07:01 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\system32\stobject.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-04-13 16:06:58 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-13 16:06:52 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-04-13 16:06:52 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-04-13 16:06:01 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-04-13 16:06:00 ----A---- C:\WINDOWS\system32\invagent.dll
2016-04-13 16:06:00 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-04-13 16:06:00 ----A---- C:\WINDOWS\system32\aepic.dll
2016-04-13 16:06:00 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-04-13 16:05:59 ----A---- C:\WINDOWS\system32\devinv.dll
2016-04-13 16:05:59 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-04-13 16:05:59 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-04-13 16:05:53 ----A---- C:\WINDOWS\system32\wbengine.exe
2016-04-13 16:05:52 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2016-04-13 16:05:51 ----AC---- C:\WINDOWS\system32\drivers\disk.sys
2016-04-13 16:05:49 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2016-04-13 16:05:45 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-04-13 16:05:44 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-04-13 16:05:43 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-04-13 16:05:43 ----A---- C:\WINDOWS\system32\winresume.exe
2016-04-13 16:05:43 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-04-13 16:05:43 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-04-13 16:05:43 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-04-13 16:05:42 ----A---- C:\WINDOWS\system32\winload.exe
2016-04-13 16:03:25 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2016-04-13 14:52:01 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-04-13 14:52:00 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-04-13 14:51:58 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-04-13 14:51:56 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-04-13 14:51:55 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-04-13 14:51:55 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-04-13 14:51:54 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-04-13 14:51:54 ----A---- C:\WINDOWS\system32\wininet.dll
2016-04-13 14:51:54 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-04-13 14:51:53 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-04-13 14:51:53 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-04-13 14:51:53 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-04-13 14:51:53 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-04-13 14:51:52 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-04-13 14:51:52 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-04-13 14:51:51 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-04-13 14:51:51 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-04-13 14:51:51 ----A---- C:\WINDOWS\system32\iepeers.dll
2016-04-13 14:51:51 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-04-13 14:51:50 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-04-13 14:51:50 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-04-13 14:51:50 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2016-04-13 14:51:50 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-04-13 14:51:50 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\system32\jscript.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\samlib.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\certcli.dll
2016-04-13 14:49:54 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-04-13 14:49:54 ----A---- C:\WINDOWS\system32\ole32.dll
2016-04-13 14:49:51 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-04-13 14:49:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-04-13 14:49:49 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-04-13 14:49:48 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-04-07 15:19:32 ----D---- C:\Program Files (x86)\Amazon Browser Settings
2016-04-03 13:29:58 ----D---- C:\Program Files (x86)\GUMA21A.tmp
2016-04-03 12:43:24 ----D---- C:\WINDOWS\en
======List of files/folders modified in the last 1 month======
2016-04-24 10:53:09 ----D---- C:\WINDOWS\Prefetch
2016-04-24 10:53:09 ----D---- C:\Users\Aspire\AppData\Roaming\BitTorrent
2016-04-24 10:53:05 ----RD---- C:\Program Files
2016-04-24 10:51:32 ----D---- C:\WINDOWS\Temp
2016-04-24 10:44:25 ----SHD---- C:\WINDOWS\Installer
2016-04-24 10:44:25 ----SHD---- C:\Config.Msi
2016-04-24 10:42:16 ----D---- C:\Users\Aspire\AppData\Roaming\ClassicShell
2016-04-24 10:42:04 ----D---- C:\ProgramData\MFAData
2016-04-24 10:24:43 ----D---- C:\Program Files (x86)\AVG Web TuneUp
2016-04-24 10:12:03 ----D---- C:\Program Files (x86)\ALDI Foto bestelsoftware
2016-04-24 10:07:25 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-04-24 10:05:42 ----D---- C:\WINDOWS\system32\Tasks
2016-04-24 10:03:32 ----D---- C:\Program Files (x86)\GAMESVOORIEDEREEN.NL
2016-04-24 10:00:03 ----D---- C:\WINDOWS\system32\sru
2016-04-24 09:59:03 ----D---- C:\Program Files (x86)\CDBurnerXP
2016-04-24 09:56:54 ----D---- C:\Program Files (x86)
2016-04-24 09:56:53 ----D---- C:\WINDOWS\system32\drivers
2016-04-24 09:56:53 ----D---- C:\ProgramData\NortonInstaller
2016-04-24 09:56:10 ----AD---- C:\ProgramData\Temp
2016-04-24 09:54:51 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-04-24 09:34:14 ----HD---- C:\ProgramData
2016-04-24 09:34:07 ----D---- C:\WINDOWS\SysWOW64
2016-04-23 23:34:18 ----D---- C:\Program Files\SUPERAntiSpyware
2016-04-23 23:07:46 ----D---- C:\WINDOWS\Inf
2016-04-23 21:08:44 ----D---- C:\ProgramData\AVG
2016-04-23 21:08:43 ----D---- C:\Program Files (x86)\AVG
2016-04-23 21:01:06 ----D---- C:\WINDOWS\system32\config
2016-04-23 20:55:45 ----RD---- C:\WINDOWS\System32
2016-04-23 20:54:53 ----D---- C:\Windows
2016-04-23 20:54:52 ----D---- C:\WINDOWS\system32\wbem
2016-04-23 20:51:34 ----SD---- C:\WINDOWS\system32\CompatTel
2016-04-23 20:51:34 ----RSD---- C:\WINDOWS\Media
2016-04-23 20:51:34 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-04-23 20:51:34 ----D---- C:\WINDOWS\system32\nl-NL
2016-04-23 20:51:34 ----D---- C:\WINDOWS\system32\migration
2016-04-23 20:51:34 ----D---- C:\WINDOWS\apppatch
2016-04-23 20:51:34 ----D---- C:\Program Files\Internet Explorer
2016-04-23 20:51:34 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-23 20:51:33 ----RD---- C:\WINDOWS\ToastData
2016-04-23 20:51:33 ----D---- C:\WINDOWS\WinSxS
2016-04-23 20:51:33 ----D---- C:\WINDOWS\Tasks
2016-04-23 20:51:33 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2016-04-23 20:51:33 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-04-23 20:51:33 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-04-23 20:51:33 ----D---- C:\WINDOWS\system32\catroot2
2016-04-23 20:51:33 ----D---- C:\WINDOWS\system32\Boot
2016-04-23 20:51:33 ----D---- C:\WINDOWS\system32\appraiser
2016-04-23 20:51:33 ----D---- C:\WINDOWS\rescache
2016-04-23 20:51:33 ----D---- C:\WINDOWS\PolicyDefinitions
2016-04-23 20:51:33 ----D---- C:\Program Files\Windows Defender
2016-04-23 20:50:43 ----D---- C:\WINDOWS\SYSWOW64\config
2016-04-23 20:50:43 ----D---- C:\WINDOWS\SystemResources
2016-04-23 20:50:42 ----D---- C:\WINDOWS\system32\Sysprep
2016-04-23 20:50:37 ----SD---- C:\WINDOWS\system32\GWX
2016-04-23 20:50:37 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-04-23 20:50:28 ----HD---- C:\WINDOWS\ELAMBKUP
2016-04-23 20:50:28 ----D---- C:\WINDOWS\Globalization
2016-04-23 20:50:28 ----D---- C:\WINDOWS\Boot
2016-04-23 20:50:04 ----D---- C:\Users\Aspire\AppData\Roaming\WildTangent
2016-04-23 20:50:04 ----D---- C:\Users\Aspire\AppData\Roaming\vlc
2016-04-23 20:50:03 ----D---- C:\Users\Aspire\AppData\Roaming\dvdcss
2016-04-23 20:49:07 ----D---- C:\Program Files\Common Files\microsoft shared
2016-04-23 20:49:06 ----D---- C:\Program Files\Common Files\AV
2016-04-23 20:49:06 ----D---- C:\Program Files (x86)\WildTangent Games
2016-04-23 20:49:05 ----D---- C:\Program Files (x86)\Java
2016-04-23 20:44:19 ----HD---- C:\Program Files\WindowsApps
2016-04-23 20:28:04 ----D---- C:\WINDOWS\registration
2016-04-23 20:23:23 ----D---- C:\WINDOWS\system32\DriverStore
2016-04-23 20:22:08 ----D---- C:\WINDOWS\Microsoft.NET
2016-04-23 20:21:36 ----RSD---- C:\WINDOWS\assembly
2016-04-23 20:19:40 ----D---- C:\Users\Aspire\AppData\Roaming\Canon
2016-04-23 20:17:00 ----D---- C:\ProgramData\Oracle
2016-04-23 20:13:47 ----D---- C:\Program Files\Microsoft Office
2016-04-23 20:13:08 ----D---- C:\Program Files (x86)\Common Files
2016-04-23 20:12:43 ----RHD---- C:\MSOCache
2016-04-23 15:10:47 ----D---- C:\WINDOWS\system32\MRT
2016-04-23 15:01:06 ----D---- C:\ProgramData\Microsoft Help
2016-04-23 13:56:22 ----SHD---- C:\System Volume Information
2016-04-23 12:35:07 ----D---- C:\WINDOWS\system32\GroupPolicy
2016-04-21 19:56:37 ----D---- C:\Users\Aspire\AppData\Roaming\Skype
2016-04-20 16:22:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-20 04:37:14 ----D---- C:\WINDOWS\system32\NDF
2016-04-14 14:42:45 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-13 16:39:09 ----D---- C:\WINDOWS\CbsTemp
2016-04-13 16:29:06 ----A---- C:\WINDOWS\system32\MRT.exe
2016-04-13 15:50:47 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-04-13 15:50:45 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-04-13 15:50:43 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-04-10 11:26:55 ----A---- C:\WINDOWS\win.ini
2016-04-10 11:01:42 ----D---- C:\WINDOWS\AppReadiness
2016-04-07 19:47:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-04-05 23:53:01 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-04-03 13:29:57 ----D---- C:\ProgramData\Package Cache
2016-04-03 12:43:17 ----D---- C:\Program Files (x86)\Windows Live
2016-04-03 12:42:45 ----D---- C:\WINDOWS\Logs
2016-04-03 12:20:26 ----D---- C:\Program Files\Recuva
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHA;AVGIDSHA; C:\WINDOWS\system32\DRIVERS\avgidsha.sys [2016-01-26 272304]
R0 Avgloga;AVG Logging Driver; C:\WINDOWS\system32\DRIVERS\avgloga.sys [2016-02-16 360736]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx64.sys [2016-03-07 246560]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx64.sys [2015-12-04 42416]
R0 Avguniva;AVG Universal Driver; C:\WINDOWS\system32\DRIVERS\avguniva.sys [2016-03-08 71456]
R0 gfibto;gfibto; C:\WINDOWS\system32\drivers\gfibto.sys [2013-06-16 14456]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2013-02-19 771536]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2013-02-19 340216]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-09-05 30496]
R1 Avgdiska;AVG Disk Driver; C:\WINDOWS\system32\DRIVERS\avgdiska.sys [2016-02-16 162592]
R1 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\avgidsdrivera.sys [2016-03-08 306976]
R1 Avgwfpa;AVG Firewall Driver; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [2015-12-16 315840]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2012-12-20 22648]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2012-12-20 20520]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2012-12-20 62776]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-06-27 88632]
R3 AthBTPort;@oem10.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-28 89168]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 BTATH_A2DP;@oem9.inf,%BTATH_A2DP.SvcDesc%;Bluetoot h A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-28 346192]
R3 btath_avdt;@oem9.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-28 115280]
R3 BTATH_BUS;@oem6.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-01-28 34384]
R3 BTATH_HCRP;@oem14.inf,%BTATH_HCRP.SvcDesc%;Bluetoo th HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-28 179432]
R3 BTATH_LWFLT;@oem24.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-28 77464]
R3 BTATH_RCP;@oem22.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-28 136424]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2013-01-28 581200]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluet ooth Low Energy-stuurprogramma; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 ETD;@oem3.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-11-20 331152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-05-21 3791872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-07-31 4102928]
R3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS-minipoortstuurprogramma voor Qualcomm Atheros AR81xx PCI-E Ethernet-controller; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MEIx64;@oem68.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\WINDOWS\system32\drivers\mfeapfk.sys [2013-02-19 179280]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2013-02-19 309840]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2013-02-19 515968]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2010-04-20 18432]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-09-05 11273504]
R3 Ps2Kb2Hid;@oem89.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-03-16 26736]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2010-07-09 17408]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R4 ccSet_NARA;NARA Settings Manager; C:\WINDOWS\system32\drivers\NARAx64\0401000.00E\cc Setx64.sys []
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\WINDOWS\system32\DRIVERS\avgboota.sys [2016-01-07 21632]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2013-02-19 69168]
S1 Avgldx64;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx64.sys [2015-10-21 284080]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2013-02-19 70112]
S3 dg_ssudbus;@oem98.inf,%ssud.Service.DeviceDesc%;SA MSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-12-08 122160]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2015-06-18 64216]
S3 mferkdet;McAfee Inc. mferkdet; C:\WINDOWS\system32\drivers\mferkdet.sys [2013-02-19 106552]
S3 RSPCIESTOR;@oem2.inf,%Rts5208%;Realtek PCIE CardReader Driver; C:\WINDOWS\system32\DRIVERS\RtsPStor.sys [2012-08-03 340112]
S3 ssudmdm;@oem99.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-12-08 214832]
S3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispNa me%;USB RNDIS-adapter; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2015-04-25 20992]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\WINDOWS\System32\drivers\usbscan.sys [2014-10-29 44544]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2013-01-28 227456]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-04-14 1074448]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdate Svc.exe [2016-01-08 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-01-08 1773696]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-10-26 2449552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-03-20 2135232]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 GamesAppIntegrationService;GamesAppIntegrationServ ice; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-24 227904]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-24 2457232]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-05-21 314696]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-17 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 276864]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2013-02-19 241456]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2013-02-19 218760]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2013-02-19 182752]
R2 NovaPdfServer;novaPDF Server; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [2015-07-14 41760]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-11-03 259136]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-08-30 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-03-16 93296]
R2 ScsiAccess;ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe [2014-05-30 186760]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 364416]
R3 AvgAMPS;AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [2016-04-06 638456]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-10-23 658064]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\Presentati onHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\Pres entationFontCache.exe [2013-08-03 43696]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [2016-04-06 3993088]
S2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [2016-04-06 593880]
S2 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2016-01-28 803856]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-26 144200]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2013-12-11 1050904]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-05-21 278344]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-11-17 469648]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-07-12 174160]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-11-25 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-11-25 655624]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-04-24 203344]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-26 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-07 147624]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]
-----------------EOF-----------------
Na gisteren een systeemherstel te hebben uitgevoerd en mijn antivirus had uitgeschakeld kreeg ik deze niet meer opgestart , toen heb ik deze maar volledig verwijderd van de PC en probeerde ikk deze terug te herinstaleren , maar hier loopt het steeds fout en krijg ik volgende mededeling ,
Runtime error Program:c:\Windows\syswow64\Msi Exec.exe R6025 pure virtual runtime
Waarschijnlijk ergens een virus dat zich in de PC heeft genesteld , kan je daarom volgend HijackThis logje eens nakijken .
Met dank .
Logfile of random's system information tool 1.10 (written by random/random)
Run by Aspire at 2016-04-24 10:53:04
Microsoft Windows 8.1
System drive C: has 204 GB (59%) free of 348 GB
Total RAM: 5962 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:53:09, on 24/04/2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Users\Aspire\AppData\Roaming\BitTorrent\BitTorr ent.exe
C:\Program Files (x86)\Fuji Fotoservice\Fuji Fotoservice\dd.exe
C:\Users\Aspire\AppData\Local\Akamai\netsession_wi n.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Aspire\AppData\Local\Akamai\netsession_wi n.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe
C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe
C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Aspire.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.2link.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: (no name) - {0d159187-1dde-426d-8d17-74b6cef7d9e3} - (no file)
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O2 - BHO: (no name) - {a235e1e3-6296-4710-af39-104a7faa6c7c} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: (no name) - {c66a678d-5e6c-4af9-8f57-c6192f42cf74} - (no file)
O3 - Toolbar: (no name) - {4e8a04a7-e70b-4391-9af3-1c0cc98ae8da} - (no file)
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.ex e" -launchedbylogin
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe" C:\Program Files (x86)\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Aspire\AppData\Roaming\BitTorrent\BitTorr ent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Device Detection] C:\Program Files (x86)\Fuji Fotoservice\Fuji Fotoservice\dd.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Aspire\AppData\Local\Akamai\netsession_wi n.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_16E557C8A4C6743F992F625A838 7149E] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-21-1941012337-847055493-2445312372-1001\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.1.0.0/GarminAxControl_32.CAB
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater18.4.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 16924 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe"
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdate Svc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {8a3d9f83-3bd4-4819-83801f338b07b8e5}
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
taskhostex.exe
"C:\Program Files (x86)\Launch Manager\LManager.exe"
ClassicStartMenu.exe -startup
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsa pps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.ex e" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
"C:\windows\system32\mfevtps.exe"
"C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
C:\Windows\RfBtnSvc64.exe
"C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe"
"C:\WINDOWS\system32\GWX\GWX.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\Pres entationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtTray.exe"
"C:\Users\Aspire\AppData\Roaming\BitTorrent\BitTorr ent.exe" /MINIMIZED
"C:\Program Files (x86)\Fuji Fotoservice\Fuji Fotoservice\dd.exe"
"C:\Users\Aspire\AppData\Local\Akamai\netsession_wi n.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:/Users/Aspire/AppData/Local/Akamai/netsession_win.exe" --client
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Aspire\AppData\Local\Google\Chro me\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=49.0.2623.112 --handshake-handle=0x148
"C:\Dolby PCEE4\pcee4.exe" -autostart
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6652.0.1603261300\1134553918" --supports-dual-gpus=false --gpu-driver-bug-workarounds=3,11,16,25,54 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3621 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe"
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
/fmw.trayonly
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,WebFontsIntervention<WebFontsIntervention --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=nl --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_85/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,355 3,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6652.1.930856763\480781866" /prefetch:1
"C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe" BitTorrent_6196_0265CB68_1559281281 BT4823DF041B09 BitTorrent
"C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe" BitTorrent_6196_0265CE28_607071560 BT4823DF041B09 BitTorrent
"C:\Users\Aspire\AppData\Roaming\BitTorrent\updates \7.9.6_42095\utorrentie.exe" BitTorrent_6196_0265CF30_1837412314 BT4823DF041B09 BitTorrent
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\WINDOWS\System32\Taskmgr.exe" /3
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\system32\msiexec.exe /V
"C:\Program Files\EgisTec IPS\PMMUpdate.exe"
"C:\Program Files\EgisTec IPS\EgisUpdate.exe"
"C:\Program Files\Internet Explorer\iexplore.exe" http://www.avg.com/support
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5884 CREDAT:267521 /prefetch:2
"C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" --type=renderer --disable-gpu-compositing --disable-pinch --force-device-scale-factor=1.250000 --no-sandbox --disable-direct-write --enable-deferred-image-decoding --lang=en-US --lang=en-US --log-file="C:\Users\Aspire\AppData\Local\Avg\log\fmw1\chromiu m_dbg.log" --device-scale-factor=1.25 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="6608.6.407969587\213261730" /prefetch:673131151
"C:\WINDOWS\System32\Macromed\Flash\FlashUtil_Activ eX.exe" -Embedding
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5884 CREDAT:3413326 /prefetch:2
"C:\Users\Aspire\AppData\Local\Microsoft\Windows\IN etCache\IE\GT985OVZ\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\0814avUpdateInfo.job - C:\ProgramData\Avg_Update_0814av\0814av_AVG-Secure-Search-Update.exe /SETINFO /CMPID=0814av /INFORETRY=3
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Aspire\AppData\Roaming\Mozilla\Firefox\Pr ofiles\vww4vy0s.default
prefs.js - "browser.startup.homepage" - "https://mysearch.avg.com/?cid={AEFC76A3-6303-4CFA-85C7-F9A2371A1E05}&mid=2d96f89107ee47d2a1eafd991cb05951-2e61d18c073195f198ddf13649f6b1ea60c26fe6&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0215av&pr=fr&d=2015-03-03 16:44:33&v=4.1.0.411&pid=wtu&sg=&sap=hp"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.4.0\\npsitesafety.dl l
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@photodex.com/PhotodexPresenter]
"Description"=Photodex Presenter Plugin
"Path"=C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp .dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlu gins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe. com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_1_1 02.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin .com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Micros oft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@micros oft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll
C:\Users\Aspire\AppData\Roaming\Mozilla\Firefox\Pr ofiles\vww4vy0s.default\extensions\
{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
C:\Users\Aspire\AppData\Roaming\Mozilla\Firefox\Pr ofiles\vww4vy0s.default\searchplugins\
amazon.xml
yahoo.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-02-09 228552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28 66688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08 2134656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20 483520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25 728840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{0d159187-1dde-426d-8d17-74b6cef7d9e3}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{a235e1e3-6296-4710-af39-104a7faa6c7c}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08 1725056]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2016-03-15 1741104]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25 617736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\ Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
{c66a678d-5e6c-4af9-8f57-c6192f42cf74}
{4e8a04a7-e70b-4391-9af3-1c0cc98ae8da}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-07-27 12937872]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-07-10 1214608]
"BtPreLoad"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe [2013-01-28 64640]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-01-28 132736]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run]
"BitTorrent"=C:\Users\Aspire\AppData\Roaming\BitTorrent\BitTor rent.exe [2016-04-07 1963016]
"Device Detection"=C:\Program Files (x86)\Fuji Fotoservice\Fuji Fotoservice\dd.exe [2013-10-22 867216]
"Akamai NetSession Interface"=C:\Users\Aspire\AppData\Local\Akamai\netsession_w in.exe [2015-09-10 4691384]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2016-01-28 1403304]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
"GoogleChromeAutoLaunch_16E557C8A4C6743F992F625A838 7149E"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-04-06 874648]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\ Windows\CurrentVersion\Run]
"Dolby Home Theater v4"=C:\Dolby PCEE4\pcee4.exe [2012-07-26 508656]
"Nikon Message Center 2"=C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [2011-10-30 571392]
"AdobeCS4ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.ex e [2008-08-14 611712]
"AVG_UI"=C:\Program Files (x86)\AVG\Av\avuirunnerx.exe [2016-04-06 32528]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-04-14 186640]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\ Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-01-28 132736]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\System]
"DisableTaskMgr"=0
"DisableCAD"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\standard profile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\domainpr ofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-24 10:53:05 ----D---- C:\Program Files\trend micro
2016-04-24 10:53:04 ----D---- C:\rsit
2016-04-22 20:59:45 ----D---- C:\Users\Aspire\AppData\Roaming\tiger-k
2016-04-22 20:59:36 ----D---- C:\Users\Aspire\AppData\Roaming\Leawo
2016-04-22 20:59:25 ----D---- C:\ProgramData\Leawo
2016-04-22 20:59:17 ----D---- C:\Program Files (x86)\Leawo
2016-04-22 20:57:16 ----D---- C:\ProgramData\eafbbeaf-39b3-0
2016-04-22 20:57:15 ----D---- C:\ProgramData\eafbbeaf-1105-1
2016-04-22 20:57:01 ----D---- C:\Users\Aspire\AppData\Roaming\One System Care
2016-04-22 20:57:00 ----D---- C:\Program Files (x86)\OneSystemCare
2016-04-22 20:56:49 ----D---- C:\Users\Aspire\AppData\Roaming\Opera Software
2016-04-22 20:55:44 ----D---- C:\Program Files (x86)\Opera
2016-04-22 20:55:40 ----D---- C:\ProgramData\219d5106-5a99-41fd-b942-db6b503b0178
2016-04-22 20:55:40 ----D---- C:\Program Files (x86)\Search Web Know
2016-04-13 16:08:14 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-04-13 16:08:14 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-04-13 16:08:12 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-04-13 16:08:03 ----A---- C:\WINDOWS\system32\rpcss.dll
2016-04-13 16:08:01 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2016-04-13 16:08:00 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-04-13 16:07:59 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-04-13 16:07:59 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-04-13 16:07:59 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-13 16:07:59 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-04-13 16:07:58 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-04-13 16:07:57 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2016-04-13 16:07:56 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2016-04-13 16:07:55 ----A---- C:\WINDOWS\system32\VSSVC.exe
2016-04-13 16:07:35 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-04-13 16:07:33 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2016-04-13 16:07:33 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-04-13 16:07:33 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-04-13 16:07:33 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2016-04-13 16:07:32 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2016-04-13 16:07:32 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2016-04-13 16:07:32 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2016-04-13 16:07:32 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2016-04-13 16:07:30 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2016-04-13 16:07:28 ----A---- C:\WINDOWS\SYSWOW64\dhcpsapi.dll
2016-04-13 16:07:28 ----A---- C:\WINDOWS\system32\dhcpsapi.dll
2016-04-13 16:07:15 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-04-13 16:07:14 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-04-13 16:07:12 ----A---- C:\WINDOWS\system32\twinui.dll
2016-04-13 16:07:10 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2016-04-13 16:07:06 ----A---- C:\WINDOWS\system32\shell32.dll
2016-04-13 16:07:04 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-04-13 16:07:04 ----A---- C:\WINDOWS\explorer.exe
2016-04-13 16:07:03 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-04-13 16:07:03 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-13 16:07:03 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-04-13 16:07:02 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-04-13 16:07:02 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-04-13 16:07:02 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-04-13 16:07:01 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-04-13 16:07:01 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\system32\stobject.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2016-04-13 16:07:00 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2016-04-13 16:06:59 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-04-13 16:06:58 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-13 16:06:52 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-04-13 16:06:52 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-04-13 16:06:01 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-04-13 16:06:00 ----A---- C:\WINDOWS\system32\invagent.dll
2016-04-13 16:06:00 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-04-13 16:06:00 ----A---- C:\WINDOWS\system32\aepic.dll
2016-04-13 16:06:00 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-04-13 16:05:59 ----A---- C:\WINDOWS\system32\devinv.dll
2016-04-13 16:05:59 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-04-13 16:05:59 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-04-13 16:05:53 ----A---- C:\WINDOWS\system32\wbengine.exe
2016-04-13 16:05:52 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2016-04-13 16:05:51 ----AC---- C:\WINDOWS\system32\drivers\disk.sys
2016-04-13 16:05:49 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2016-04-13 16:05:45 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-04-13 16:05:44 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-04-13 16:05:43 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-04-13 16:05:43 ----A---- C:\WINDOWS\system32\winresume.exe
2016-04-13 16:05:43 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-04-13 16:05:43 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-04-13 16:05:43 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-04-13 16:05:42 ----A---- C:\WINDOWS\system32\winload.exe
2016-04-13 16:03:25 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2016-04-13 14:52:01 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-04-13 14:52:00 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-04-13 14:51:58 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-04-13 14:51:56 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-04-13 14:51:55 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-04-13 14:51:55 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-04-13 14:51:54 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-04-13 14:51:54 ----A---- C:\WINDOWS\system32\wininet.dll
2016-04-13 14:51:54 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-04-13 14:51:53 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-04-13 14:51:53 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-04-13 14:51:53 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-04-13 14:51:53 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-04-13 14:51:52 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-04-13 14:51:52 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-04-13 14:51:51 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-04-13 14:51:51 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-04-13 14:51:51 ----A---- C:\WINDOWS\system32\iepeers.dll
2016-04-13 14:51:51 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-04-13 14:51:50 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-04-13 14:51:50 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-04-13 14:51:50 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2016-04-13 14:51:50 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-04-13 14:51:50 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\system32\jscript.dll
2016-04-13 14:51:49 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\samlib.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-04-13 14:49:56 ----A---- C:\WINDOWS\system32\certcli.dll
2016-04-13 14:49:54 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-04-13 14:49:54 ----A---- C:\WINDOWS\system32\ole32.dll
2016-04-13 14:49:51 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-04-13 14:49:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-04-13 14:49:49 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-04-13 14:49:48 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-04-07 15:19:32 ----D---- C:\Program Files (x86)\Amazon Browser Settings
2016-04-03 13:29:58 ----D---- C:\Program Files (x86)\GUMA21A.tmp
2016-04-03 12:43:24 ----D---- C:\WINDOWS\en
======List of files/folders modified in the last 1 month======
2016-04-24 10:53:09 ----D---- C:\WINDOWS\Prefetch
2016-04-24 10:53:09 ----D---- C:\Users\Aspire\AppData\Roaming\BitTorrent
2016-04-24 10:53:05 ----RD---- C:\Program Files
2016-04-24 10:51:32 ----D---- C:\WINDOWS\Temp
2016-04-24 10:44:25 ----SHD---- C:\WINDOWS\Installer
2016-04-24 10:44:25 ----SHD---- C:\Config.Msi
2016-04-24 10:42:16 ----D---- C:\Users\Aspire\AppData\Roaming\ClassicShell
2016-04-24 10:42:04 ----D---- C:\ProgramData\MFAData
2016-04-24 10:24:43 ----D---- C:\Program Files (x86)\AVG Web TuneUp
2016-04-24 10:12:03 ----D---- C:\Program Files (x86)\ALDI Foto bestelsoftware
2016-04-24 10:07:25 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-04-24 10:05:42 ----D---- C:\WINDOWS\system32\Tasks
2016-04-24 10:03:32 ----D---- C:\Program Files (x86)\GAMESVOORIEDEREEN.NL
2016-04-24 10:00:03 ----D---- C:\WINDOWS\system32\sru
2016-04-24 09:59:03 ----D---- C:\Program Files (x86)\CDBurnerXP
2016-04-24 09:56:54 ----D---- C:\Program Files (x86)
2016-04-24 09:56:53 ----D---- C:\WINDOWS\system32\drivers
2016-04-24 09:56:53 ----D---- C:\ProgramData\NortonInstaller
2016-04-24 09:56:10 ----AD---- C:\ProgramData\Temp
2016-04-24 09:54:51 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-04-24 09:34:14 ----HD---- C:\ProgramData
2016-04-24 09:34:07 ----D---- C:\WINDOWS\SysWOW64
2016-04-23 23:34:18 ----D---- C:\Program Files\SUPERAntiSpyware
2016-04-23 23:07:46 ----D---- C:\WINDOWS\Inf
2016-04-23 21:08:44 ----D---- C:\ProgramData\AVG
2016-04-23 21:08:43 ----D---- C:\Program Files (x86)\AVG
2016-04-23 21:01:06 ----D---- C:\WINDOWS\system32\config
2016-04-23 20:55:45 ----RD---- C:\WINDOWS\System32
2016-04-23 20:54:53 ----D---- C:\Windows
2016-04-23 20:54:52 ----D---- C:\WINDOWS\system32\wbem
2016-04-23 20:51:34 ----SD---- C:\WINDOWS\system32\CompatTel
2016-04-23 20:51:34 ----RSD---- C:\WINDOWS\Media
2016-04-23 20:51:34 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-04-23 20:51:34 ----D---- C:\WINDOWS\system32\nl-NL
2016-04-23 20:51:34 ----D---- C:\WINDOWS\system32\migration
2016-04-23 20:51:34 ----D---- C:\WINDOWS\apppatch
2016-04-23 20:51:34 ----D---- C:\Program Files\Internet Explorer
2016-04-23 20:51:34 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-23 20:51:33 ----RD---- C:\WINDOWS\ToastData
2016-04-23 20:51:33 ----D---- C:\WINDOWS\WinSxS
2016-04-23 20:51:33 ----D---- C:\WINDOWS\Tasks
2016-04-23 20:51:33 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2016-04-23 20:51:33 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-04-23 20:51:33 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-04-23 20:51:33 ----D---- C:\WINDOWS\system32\catroot2
2016-04-23 20:51:33 ----D---- C:\WINDOWS\system32\Boot
2016-04-23 20:51:33 ----D---- C:\WINDOWS\system32\appraiser
2016-04-23 20:51:33 ----D---- C:\WINDOWS\rescache
2016-04-23 20:51:33 ----D---- C:\WINDOWS\PolicyDefinitions
2016-04-23 20:51:33 ----D---- C:\Program Files\Windows Defender
2016-04-23 20:50:43 ----D---- C:\WINDOWS\SYSWOW64\config
2016-04-23 20:50:43 ----D---- C:\WINDOWS\SystemResources
2016-04-23 20:50:42 ----D---- C:\WINDOWS\system32\Sysprep
2016-04-23 20:50:37 ----SD---- C:\WINDOWS\system32\GWX
2016-04-23 20:50:37 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-04-23 20:50:28 ----HD---- C:\WINDOWS\ELAMBKUP
2016-04-23 20:50:28 ----D---- C:\WINDOWS\Globalization
2016-04-23 20:50:28 ----D---- C:\WINDOWS\Boot
2016-04-23 20:50:04 ----D---- C:\Users\Aspire\AppData\Roaming\WildTangent
2016-04-23 20:50:04 ----D---- C:\Users\Aspire\AppData\Roaming\vlc
2016-04-23 20:50:03 ----D---- C:\Users\Aspire\AppData\Roaming\dvdcss
2016-04-23 20:49:07 ----D---- C:\Program Files\Common Files\microsoft shared
2016-04-23 20:49:06 ----D---- C:\Program Files\Common Files\AV
2016-04-23 20:49:06 ----D---- C:\Program Files (x86)\WildTangent Games
2016-04-23 20:49:05 ----D---- C:\Program Files (x86)\Java
2016-04-23 20:44:19 ----HD---- C:\Program Files\WindowsApps
2016-04-23 20:28:04 ----D---- C:\WINDOWS\registration
2016-04-23 20:23:23 ----D---- C:\WINDOWS\system32\DriverStore
2016-04-23 20:22:08 ----D---- C:\WINDOWS\Microsoft.NET
2016-04-23 20:21:36 ----RSD---- C:\WINDOWS\assembly
2016-04-23 20:19:40 ----D---- C:\Users\Aspire\AppData\Roaming\Canon
2016-04-23 20:17:00 ----D---- C:\ProgramData\Oracle
2016-04-23 20:13:47 ----D---- C:\Program Files\Microsoft Office
2016-04-23 20:13:08 ----D---- C:\Program Files (x86)\Common Files
2016-04-23 20:12:43 ----RHD---- C:\MSOCache
2016-04-23 15:10:47 ----D---- C:\WINDOWS\system32\MRT
2016-04-23 15:01:06 ----D---- C:\ProgramData\Microsoft Help
2016-04-23 13:56:22 ----SHD---- C:\System Volume Information
2016-04-23 12:35:07 ----D---- C:\WINDOWS\system32\GroupPolicy
2016-04-21 19:56:37 ----D---- C:\Users\Aspire\AppData\Roaming\Skype
2016-04-20 16:22:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-20 04:37:14 ----D---- C:\WINDOWS\system32\NDF
2016-04-14 14:42:45 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-13 16:39:09 ----D---- C:\WINDOWS\CbsTemp
2016-04-13 16:29:06 ----A---- C:\WINDOWS\system32\MRT.exe
2016-04-13 15:50:47 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-04-13 15:50:45 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-04-13 15:50:43 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-04-10 11:26:55 ----A---- C:\WINDOWS\win.ini
2016-04-10 11:01:42 ----D---- C:\WINDOWS\AppReadiness
2016-04-07 19:47:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-04-05 23:53:01 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-04-03 13:29:57 ----D---- C:\ProgramData\Package Cache
2016-04-03 12:43:17 ----D---- C:\Program Files (x86)\Windows Live
2016-04-03 12:42:45 ----D---- C:\WINDOWS\Logs
2016-04-03 12:20:26 ----D---- C:\Program Files\Recuva
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHA;AVGIDSHA; C:\WINDOWS\system32\DRIVERS\avgidsha.sys [2016-01-26 272304]
R0 Avgloga;AVG Logging Driver; C:\WINDOWS\system32\DRIVERS\avgloga.sys [2016-02-16 360736]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx64.sys [2016-03-07 246560]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx64.sys [2015-12-04 42416]
R0 Avguniva;AVG Universal Driver; C:\WINDOWS\system32\DRIVERS\avguniva.sys [2016-03-08 71456]
R0 gfibto;gfibto; C:\WINDOWS\system32\drivers\gfibto.sys [2013-06-16 14456]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2013-02-19 771536]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2013-02-19 340216]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-09-05 30496]
R1 Avgdiska;AVG Disk Driver; C:\WINDOWS\system32\DRIVERS\avgdiska.sys [2016-02-16 162592]
R1 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\avgidsdrivera.sys [2016-03-08 306976]
R1 Avgwfpa;AVG Firewall Driver; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [2015-12-16 315840]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2012-12-20 22648]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2012-12-20 20520]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2012-12-20 62776]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-06-27 88632]
R3 AthBTPort;@oem10.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-28 89168]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 BTATH_A2DP;@oem9.inf,%BTATH_A2DP.SvcDesc%;Bluetoot h A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-28 346192]
R3 btath_avdt;@oem9.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-28 115280]
R3 BTATH_BUS;@oem6.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-01-28 34384]
R3 BTATH_HCRP;@oem14.inf,%BTATH_HCRP.SvcDesc%;Bluetoo th HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-28 179432]
R3 BTATH_LWFLT;@oem24.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-28 77464]
R3 BTATH_RCP;@oem22.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-28 136424]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2013-01-28 581200]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluet ooth Low Energy-stuurprogramma; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 ETD;@oem3.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-11-20 331152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-05-21 3791872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-07-31 4102928]
R3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS-minipoortstuurprogramma voor Qualcomm Atheros AR81xx PCI-E Ethernet-controller; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MEIx64;@oem68.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\WINDOWS\system32\drivers\mfeapfk.sys [2013-02-19 179280]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2013-02-19 309840]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2013-02-19 515968]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2010-04-20 18432]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-09-05 11273504]
R3 Ps2Kb2Hid;@oem89.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-03-16 26736]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2010-07-09 17408]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R4 ccSet_NARA;NARA Settings Manager; C:\WINDOWS\system32\drivers\NARAx64\0401000.00E\cc Setx64.sys []
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\WINDOWS\system32\DRIVERS\avgboota.sys [2016-01-07 21632]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2013-02-19 69168]
S1 Avgldx64;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx64.sys [2015-10-21 284080]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2013-02-19 70112]
S3 dg_ssudbus;@oem98.inf,%ssud.Service.DeviceDesc%;SA MSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-12-08 122160]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2015-06-18 64216]
S3 mferkdet;McAfee Inc. mferkdet; C:\WINDOWS\system32\drivers\mferkdet.sys [2013-02-19 106552]
S3 RSPCIESTOR;@oem2.inf,%Rts5208%;Realtek PCIE CardReader Driver; C:\WINDOWS\system32\DRIVERS\RtsPStor.sys [2012-08-03 340112]
S3 ssudmdm;@oem99.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-12-08 214832]
S3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispNa me%;USB RNDIS-adapter; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2015-04-25 20992]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\WINDOWS\System32\drivers\usbscan.sys [2014-10-29 44544]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2013-01-28 227456]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-04-14 1074448]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdate Svc.exe [2016-01-08 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-01-08 1773696]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-10-26 2449552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-03-20 2135232]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 GamesAppIntegrationService;GamesAppIntegrationServ ice; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-24 227904]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-24 2457232]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-05-21 314696]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-17 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 276864]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2013-02-19 241456]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2013-02-19 218760]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2013-02-19 182752]
R2 NovaPdfServer;novaPDF Server; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [2015-07-14 41760]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-11-03 259136]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-08-30 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-03-16 93296]
R2 ScsiAccess;ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe [2014-05-30 186760]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 364416]
R3 AvgAMPS;AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [2016-04-06 638456]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-10-23 658064]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\Presentati onHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\Pres entationFontCache.exe [2013-08-03 43696]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [2016-04-06 3993088]
S2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [2016-04-06 593880]
S2 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2016-01-28 803856]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-26 144200]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2013-12-11 1050904]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-05-21 278344]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-11-17 469648]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-07-12 174160]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-11-25 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-11-25 655624]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-04-24 203344]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-26 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-07 147624]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]
-----------------EOF-----------------