bm.silverlake

Logje no1. Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie:05-06-2016 02 Gestart door bm.silverlake (Beheerder) op DESKTOP-SN725PG (06-06-2016 11:10:33) Gestart vanaf C:\Users\bm.silverlake\Desktop Geladen Profielen: bm.silverlake (Beschikbare Profielen: bm.silverlake) Platform: Windows 10 Home Versie 1511 (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: Edge) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe (Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.20961.0_x64__8wekyb3d8bbwe\Video.UI.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_21_0_0_242.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_21_0_0_242.exe ==================== Register (gefilterd) =========================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor) HKLM\...\Run: [iAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795728 2015-06-17] (NVIDIA Corporation) HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [110008 2015-05-26] (CyberLink) HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [499128 2015-05-26] (CyberLink Corp.) HKLM-x32\...\Run: [PowerDVD12Agent] => "C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe" HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7400064 2016-06-03] (AVAST Software) HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1 HKU\S-1-5-21-775628570-3588427518-1694689872-1003\...\RunOnce: [uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64" HKU\S-1-5-21-775628570-3588427518-1694689872-1003\...\RunOnce: [uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1" ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-05-26] (AVAST Software) ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{62f6614d-a86d-4340-991c-12e7f29db8cf}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKU\S-1-5-21-775628570-3588427518-1694689872-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.com./ HKU\S-1-5-21-775628570-3588427518-1694689872-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-775628570-3588427518-1694689872-1003 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2016-02-24] (Oracle Corporation) BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2016-02-24] (Oracle Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\bm.silverlake\AppData\Roaming\Mozilla\Firefox\Profiles\petb5utx.default FF NewTab: about:newtab FF Homepage: google.com FF NetworkProxy: "type", 0 FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-13] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2016-02-24] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2016-02-24] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-07-23] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-07-23] (NVIDIA Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-26] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-26] Chrome: ======= CHR Profile: C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Presentaties) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-07] CHR Extension: (Google Documenten) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-07] CHR Extension: (Google Drive) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-07] CHR Extension: (YouTube) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-07] CHR Extension: (Google Spreadsheets) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-07] CHR Extension: (Offline Documenten) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-07] CHR Extension: (Avast Online Security) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-03-07] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-03-07] CHR Extension: (Gmail) - C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-07] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-05-26] ==================== Services (gefilterd) ======================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-05-26] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [370656 2016-05-26] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5570272 2016-05-26] (Avast Software) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation) S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation) R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [bestand niet getekend] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [bestand niet getekend] R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) ===================== Drivers (gefilterd) ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-05-26] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-05-26] (AVAST Software) R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [536312 2016-05-26] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-05-26] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-05-26] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-05-26] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-05-26] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-05-26] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-05-26] (AVAST Software) R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.) R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216 2016-06-03] (Malwarebytes) R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [183584 2015-06-12] (Intel Corporation) R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [161760 2016-05-26] (AVAST Software) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek ) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.) R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [323392 2016-05-26] (Avast Software) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) S3 mfeaack01; \Device\mfeaack01.sys [X] ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2016-06-06 11:10 - 2016-06-06 11:10 - 00014134 _____ C:\Users\bm.silverlake\Desktop\FRST.txt 2016-06-06 11:10 - 2016-06-06 11:10 - 00000000 ____D C:\FRST 2016-06-06 11:09 - 2016-06-06 11:09 - 02384896 _____ (Farbar) C:\Users\bm.silverlake\Desktop\FRST64.exe 2016-06-06 07:56 - 2016-06-06 07:56 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\ActiveSync 2016-06-06 07:53 - 2016-06-06 07:42 - 00024064 _____ C:\WINDOWS\zoek-delete.exe 2016-06-06 07:42 - 2016-06-06 07:50 - 00000000 ____D C:\zoek_backup 2016-06-04 21:53 - 2016-06-04 21:53 - 00000279 _____ C:\Users\bm.silverlake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prullenbak.lnk 2016-06-04 09:39 - 2016-06-06 08:22 - 00000000 ____D C:\Users\bm.silverlake\AppData\LocalLow\uTorrent 2016-06-03 23:19 - 2016-06-03 23:19 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-06-03 23:18 - 2016-06-03 23:18 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-06-03 22:31 - 2016-06-03 22:31 - 00002212 _____ C:\Users\bm.silverlake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\prullenbak (2).lnk 2016-06-03 21:15 - 2016-06-03 21:15 - 00000218 _____ C:\Users\bm.silverlake\AppData\Local\recently-used.xbel 2016-06-03 19:02 - 2016-06-03 19:02 - 00000000 ____D C:\Users\bm.silverlake\.thumbnails 2016-06-03 18:46 - 2016-06-03 21:14 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\gtk-2.0 2016-06-03 18:40 - 2016-06-03 18:40 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\gegl-0.2 2016-06-03 18:40 - 2016-06-03 18:40 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\fontconfig 2016-05-26 17:28 - 2016-05-26 17:28 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox 2016-05-26 17:28 - 2016-05-26 17:28 - 00000000 ____D C:\WINDOWS\system32\vbox 2016-05-26 16:41 - 2016-05-26 16:41 - 00536312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys 2016-05-26 16:41 - 2016-05-26 16:41 - 00398152 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2016-05-26 16:41 - 2016-05-26 16:41 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2016-05-26 16:41 - 2016-05-26 16:41 - 00001983 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Internet Security.lnk 2016-05-26 06:53 - 2016-05-26 06:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-05-26 06:52 - 2016-05-26 06:52 - 00242200 _____ C:\Users\bm.silverlake\Downloads\Firefox Setup Stub 46.0.1.exe 2016-05-22 11:30 - 2016-05-22 11:30 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2016-05-11 07:28 - 2016-05-06 06:53 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys 2016-05-11 07:28 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2016-05-11 07:28 - 2016-05-06 06:03 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2016-05-11 07:28 - 2016-05-06 05:53 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll 2016-05-11 07:28 - 2016-05-06 05:49 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll 2016-05-11 07:28 - 2016-05-06 05:44 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2016-05-11 07:28 - 2016-05-06 05:43 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2016-05-11 07:28 - 2016-05-06 05:23 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll 2016-05-11 07:28 - 2016-04-30 08:42 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-05-11 07:28 - 2016-04-30 08:31 - 03591168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-05-11 07:28 - 2016-04-23 08:12 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-05-11 07:28 - 2016-04-23 08:12 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2016-05-11 07:28 - 2016-04-23 08:12 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-05-11 07:28 - 2016-04-23 08:12 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2016-05-11 07:28 - 2016-04-23 08:12 - 00294592 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2016-05-11 07:28 - 2016-04-23 08:12 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2016-05-11 07:28 - 2016-04-23 08:12 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-05-11 07:28 - 2016-04-23 08:12 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2016-05-11 07:28 - 2016-04-23 07:28 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2016-05-11 07:28 - 2016-04-23 07:28 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2016-05-11 07:28 - 2016-04-23 07:26 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2016-05-11 07:28 - 2016-04-23 07:24 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-05-11 07:28 - 2016-04-23 07:24 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2016-05-11 07:28 - 2016-04-23 07:24 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2016-05-11 07:28 - 2016-04-23 07:24 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2016-05-11 07:28 - 2016-04-23 07:24 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2016-05-11 07:28 - 2016-04-23 07:24 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2016-05-11 07:28 - 2016-04-23 07:24 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2016-05-11 07:28 - 2016-04-23 07:22 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2016-05-11 07:28 - 2016-04-23 07:18 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2016-05-11 07:28 - 2016-04-23 07:13 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll 2016-05-11 07:28 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll 2016-05-11 07:28 - 2016-04-23 07:13 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll 2016-05-11 07:28 - 2016-04-23 07:12 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2016-05-11 07:28 - 2016-04-23 07:12 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2016-05-11 07:28 - 2016-04-23 07:12 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe 2016-05-11 07:28 - 2016-04-23 07:11 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2016-05-11 07:28 - 2016-04-23 07:11 - 00696672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll 2016-05-11 07:28 - 2016-04-23 07:11 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2016-05-11 07:28 - 2016-04-23 07:11 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2016-05-11 07:28 - 2016-04-23 07:11 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys 2016-05-11 07:28 - 2016-04-23 07:11 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll 2016-05-11 07:28 - 2016-04-23 07:10 - 03673424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-05-11 07:28 - 2016-04-23 07:10 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-05-11 07:28 - 2016-04-23 07:10 - 00330072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2016-05-11 07:28 - 2016-04-23 07:09 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-05-11 07:28 - 2016-04-23 07:09 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2016-05-11 07:28 - 2016-04-23 07:09 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2016-05-11 07:28 - 2016-04-23 07:09 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2016-05-11 07:28 - 2016-04-23 07:09 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2016-05-11 07:28 - 2016-04-23 07:09 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2016-05-11 07:28 - 2016-04-23 07:09 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2016-05-11 07:28 - 2016-04-23 07:09 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe 2016-05-11 07:28 - 2016-04-23 07:09 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe 2016-05-11 07:28 - 2016-04-23 07:08 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2016-05-11 07:28 - 2016-04-23 07:08 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2016-05-11 07:28 - 2016-04-23 07:08 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2016-05-11 07:28 - 2016-04-23 07:07 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2016-05-11 07:28 - 2016-04-23 07:07 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2016-05-11 07:28 - 2016-04-23 07:07 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll 2016-05-11 07:28 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll 2016-05-11 07:28 - 2016-04-23 07:06 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe 2016-05-11 07:28 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2016-05-11 07:28 - 2016-04-23 07:01 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-05-11 07:28 - 2016-04-23 07:01 - 00650304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2016-05-11 07:28 - 2016-04-23 07:01 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll 2016-05-11 07:28 - 2016-04-23 07:01 - 00577368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-05-11 07:28 - 2016-04-23 07:01 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2016-05-11 07:28 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll 2016-05-11 07:28 - 2016-04-23 07:01 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2016-05-11 07:28 - 2016-04-23 07:01 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2016-05-11 07:28 - 2016-04-23 07:00 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2016-05-11 07:28 - 2016-04-23 07:00 - 01594920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2016-05-11 07:28 - 2016-04-23 07:00 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2016-05-11 07:28 - 2016-04-23 07:00 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-05-11 07:28 - 2016-04-23 07:00 - 01372304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2016-05-11 07:28 - 2016-04-23 07:00 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2016-05-11 07:28 - 2016-04-23 07:00 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2016-05-11 07:28 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll 2016-05-11 07:28 - 2016-04-23 07:00 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll 2016-05-11 07:28 - 2016-04-23 06:56 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2016-05-11 07:28 - 2016-04-23 06:39 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2016-05-11 07:28 - 2016-04-23 06:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2016-05-11 07:28 - 2016-04-23 06:34 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys 2016-05-11 07:28 - 2016-04-23 06:34 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll 2016-05-11 07:28 - 2016-04-23 06:34 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2016-05-11 07:28 - 2016-04-23 06:33 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2016-05-11 07:28 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll 2016-05-11 07:28 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys 2016-05-11 07:28 - 2016-04-23 06:33 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe 2016-05-11 07:28 - 2016-04-23 06:32 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll 2016-05-11 07:28 - 2016-04-23 06:32 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2016-05-11 07:28 - 2016-04-23 06:32 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2016-05-11 07:28 - 2016-04-23 06:31 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-05-11 07:28 - 2016-04-23 06:31 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2016-05-11 07:28 - 2016-04-23 06:30 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-05-11 07:28 - 2016-04-23 06:30 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2016-05-11 07:28 - 2016-04-23 06:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll 2016-05-11 07:28 - 2016-04-23 06:29 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2016-05-11 07:28 - 2016-04-23 06:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2016-05-11 07:28 - 2016-04-23 06:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys 2016-05-11 07:28 - 2016-04-23 06:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2016-05-11 07:28 - 2016-04-23 06:29 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2016-05-11 07:28 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll 2016-05-11 07:28 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe 2016-05-11 07:28 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll 2016-05-11 07:28 - 2016-04-23 06:28 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2016-05-11 07:28 - 2016-04-23 06:28 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll 2016-05-11 07:28 - 2016-04-23 06:28 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll 2016-05-11 07:28 - 2016-04-23 06:28 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll 2016-05-11 07:28 - 2016-04-23 06:28 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2016-05-11 07:28 - 2016-04-23 06:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll 2016-05-11 07:28 - 2016-04-23 06:27 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2016-05-11 07:28 - 2016-04-23 06:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll 2016-05-11 07:28 - 2016-04-23 06:26 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2016-05-11 07:28 - 2016-04-23 06:26 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll 2016-05-11 07:28 - 2016-04-23 06:26 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll 2016-05-11 07:28 - 2016-04-23 06:25 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2016-05-11 07:28 - 2016-04-23 06:25 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2016-05-11 07:28 - 2016-04-23 06:25 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2016-05-11 07:28 - 2016-04-23 06:25 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll 2016-05-11 07:28 - 2016-04-23 06:25 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2016-05-11 07:28 - 2016-04-23 06:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-05-11 07:28 - 2016-04-23 06:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2016-05-11 07:28 - 2016-04-23 06:24 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2016-05-11 07:28 - 2016-04-23 06:24 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2016-05-11 07:28 - 2016-04-23 06:24 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll 2016-05-11 07:28 - 2016-04-23 06:24 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll 2016-05-11 07:28 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll 2016-05-11 07:28 - 2016-04-23 06:23 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-05-11 07:28 - 2016-04-23 06:23 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2016-05-11 07:28 - 2016-04-23 06:23 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll 2016-05-11 07:28 - 2016-04-23 06:23 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll 2016-05-11 07:28 - 2016-04-23 06:23 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll 2016-05-11 07:28 - 2016-04-23 06:22 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-05-11 07:28 - 2016-04-23 06:22 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2016-05-11 07:28 - 2016-04-23 06:22 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2016-05-11 07:28 - 2016-04-23 06:21 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2016-05-11 07:28 - 2016-04-23 06:21 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll 2016-05-11 07:28 - 2016-04-23 06:20 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-05-11 07:28 - 2016-04-23 06:20 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-05-11 07:28 - 2016-04-23 06:20 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2016-05-11 07:28 - 2016-04-23 06:20 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2016-05-11 07:28 - 2016-04-23 06:20 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2016-05-11 07:28 - 2016-04-23 06:20 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2016-05-11 07:28 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2016-05-11 07:28 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll 2016-05-11 07:28 - 2016-04-23 06:19 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2016-05-11 07:28 - 2016-04-23 06:19 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2016-05-11 07:28 - 2016-04-23 06:19 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2016-05-11 07:28 - 2016-04-23 06:19 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2016-05-11 07:28 - 2016-04-23 06:19 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2016-05-11 07:28 - 2016-04-23 06:19 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll 2016-05-11 07:28 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2016-05-11 07:28 - 2016-04-23 06:18 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2016-05-11 07:28 - 2016-04-23 06:18 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2016-05-11 07:28 - 2016-04-23 06:17 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2016-05-11 07:28 - 2016-04-23 06:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2016-05-11 07:28 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2016-05-11 07:28 - 2016-04-23 06:17 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll 2016-05-11 07:28 - 2016-04-23 06:16 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2016-05-11 07:28 - 2016-04-23 06:16 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2016-05-11 07:28 - 2016-04-23 06:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2016-05-11 07:28 - 2016-04-23 06:15 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2016-05-11 07:28 - 2016-04-23 06:15 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2016-05-11 07:28 - 2016-04-23 06:15 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2016-05-11 07:28 - 2016-04-23 06:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2016-05-11 07:28 - 2016-04-23 06:15 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2016-05-11 07:28 - 2016-04-23 06:15 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2016-05-11 07:28 - 2016-04-23 06:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2016-05-11 07:28 - 2016-04-23 06:14 - 13383168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-05-11 07:28 - 2016-04-23 06:14 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2016-05-11 07:28 - 2016-04-23 06:14 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2016-05-11 07:28 - 2016-04-23 06:14 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2016-05-11 07:28 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2016-05-11 07:28 - 2016-04-23 06:14 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2016-05-11 07:28 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll 2016-05-11 07:28 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2016-05-11 07:28 - 2016-04-23 06:13 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2016-05-11 07:28 - 2016-04-23 06:13 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2016-05-11 07:28 - 2016-04-23 06:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2016-05-11 07:28 - 2016-04-23 06:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2016-05-11 07:28 - 2016-04-23 06:13 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2016-05-11 07:28 - 2016-04-23 06:12 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2016-05-11 07:28 - 2016-04-23 06:10 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-05-11 07:28 - 2016-04-23 06:10 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2016-05-11 07:28 - 2016-04-23 06:09 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-05-11 07:28 - 2016-04-23 06:09 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2016-05-11 07:28 - 2016-04-23 06:08 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-05-11 07:28 - 2016-04-23 06:08 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-05-11 07:28 - 2016-04-23 06:07 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2016-05-11 07:28 - 2016-04-23 06:07 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2016-05-11 07:28 - 2016-04-23 06:07 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-05-11 07:28 - 2016-04-23 06:07 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2016-05-11 07:28 - 2016-04-23 06:06 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-05-11 07:28 - 2016-04-23 06:05 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2016-05-11 07:28 - 2016-04-23 06:05 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-05-11 07:28 - 2016-04-23 06:05 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2016-05-11 07:28 - 2016-04-23 06:05 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2016-05-11 07:28 - 2016-04-23 06:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2016-05-11 07:28 - 2016-04-23 06:05 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2016-05-11 07:28 - 2016-04-23 06:05 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll 2016-05-11 07:28 - 2016-04-23 06:05 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll 2016-05-11 07:28 - 2016-04-23 06:04 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2016-05-11 07:28 - 2016-04-23 06:04 - 01731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-05-11 07:28 - 2016-04-23 06:03 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-05-11 07:28 - 2016-04-23 06:03 - 04894208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-05-11 07:28 - 2016-04-23 06:03 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-05-11 07:28 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2016-05-11 07:28 - 2016-04-23 06:03 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2016-05-11 07:28 - 2016-04-23 06:03 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2016-05-11 07:28 - 2016-04-23 06:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2016-05-11 07:28 - 2016-04-23 06:02 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-05-11 07:28 - 2016-04-23 06:02 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2016-05-11 07:28 - 2016-04-23 06:01 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2016-05-11 07:28 - 2016-04-23 06:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-05-11 07:28 - 2016-04-23 06:00 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2016-05-11 07:28 - 2016-04-23 05:45 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2016-05-11 07:28 - 2016-04-23 04:10 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2016-05-11 07:28 - 2016-04-23 04:10 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml 2016-05-11 07:28 - 2016-04-19 00:30 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2016-06-06 10:12 - 2015-12-26 14:16 - 00000940 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2016-06-06 08:42 - 2015-10-30 20:05 - 00818654 _____ C:\WINDOWS\system32\perfh013.dat 2016-06-06 08:42 - 2015-10-30 20:05 - 00159802 _____ C:\WINDOWS\system32\perfc013.dat 2016-06-06 08:42 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF 2016-06-06 08:42 - 2015-07-25 19:00 - 01850926 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-06-06 08:37 - 2016-01-22 09:11 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-06-06 08:37 - 2016-01-22 09:08 - 00000000 ____D C:\ProgramData\NVIDIA 2016-06-06 08:37 - 2015-10-30 08:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2016-06-06 08:26 - 2015-12-26 23:59 - 00000000 ____D C:\Users\bm.silverlake\AppData\Roaming\uTorrent 2016-06-06 08:24 - 2015-12-26 16:42 - 00000000 ____D C:\Users\bm.silverlake\AppData\Roaming\vlc 2016-06-06 07:54 - 2016-02-24 10:57 - 00000008 __RSH C:\ProgramData\ntuser.pol 2016-06-06 07:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2016-06-06 07:50 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy 2016-06-06 07:06 - 2015-12-27 21:07 - 00004214 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CF317D64-B4FF-4468-BB4C-3F124728ADEF} 2016-06-05 12:19 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-06-04 08:47 - 2016-01-22 09:09 - 00000000 ____D C:\Users\bm.silverlake 2016-06-04 08:40 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps 2016-05-29 09:59 - 2015-12-31 12:56 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2016-05-28 08:07 - 2015-07-10 11:05 - 00000000 ____D C:\Users\Default.migrated 2016-05-28 08:05 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-05-26 22:16 - 2016-01-07 22:32 - 00000000 ____D C:\Users\bm.silverlake\AppData\Roaming\dvdcss 2016-05-26 16:41 - 2015-12-31 12:57 - 00161760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\ngvss.sys 2016-05-26 16:41 - 2015-12-31 12:56 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2016-05-26 16:41 - 2015-12-31 12:56 - 00465792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2016-05-26 16:41 - 2015-12-31 12:56 - 00287528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2016-05-26 16:41 - 2015-12-31 12:56 - 00166432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2016-05-26 16:41 - 2015-12-31 12:56 - 00107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2016-05-26 16:41 - 2015-12-31 12:56 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2016-05-26 16:41 - 2015-12-31 12:56 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2016-05-26 16:41 - 2015-12-31 12:56 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2016-05-26 06:57 - 2016-05-04 01:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-05-26 06:17 - 2015-12-26 13:21 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\VirtualStore 2016-05-23 10:54 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache 2016-05-23 00:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\setup 2016-05-23 00:37 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-05-19 05:23 - 2015-12-26 13:21 - 00000000 ____D C:\Users\bm.silverlake\AppData\Local\Packages 2016-05-12 08:32 - 2015-07-25 10:53 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-05-12 00:17 - 2015-10-30 20:08 - 00000000 ____D C:\Program Files\Windows Journal 2016-05-12 00:17 - 2015-10-30 09:24 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2016-05-12 00:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe 2016-05-12 00:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser 2016-05-12 00:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning 2016-05-12 00:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr 2016-05-11 21:57 - 2015-10-30 09:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-05-11 21:57 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2016-05-11 07:51 - 2015-12-26 15:39 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-05-11 07:49 - 2015-12-26 15:39 - 139319312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Bestanden in de root van sommige mappen ======= 2016-02-24 20:07 - 2016-02-24 20:07 - 0000042 _____ () C:\Users\bm.silverlake\AppData\Roaming\WB.CFG 2016-06-03 21:15 - 2016-06-03 21:15 - 0000218 _____ () C:\Users\bm.silverlake\AppData\Local\recently-used.xbel 2016-01-22 09:08 - 2016-01-22 09:08 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2015-08-19 15:17 - 2015-08-19 15:17 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log 2015-08-19 15:16 - 2015-08-19 15:17 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log 2015-08-19 15:17 - 2015-08-19 15:17 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log 2015-08-19 15:16 - 2015-08-19 15:16 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log 2015-08-19 15:17 - 2015-08-19 15:17 - 0000110 _____ () C:\ProgramData\{E3D04529-6EDB-11D8-A372-0050BAE317E1}.log ==================== Bamital & volsnap ================= (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\WINDOWS\system32\winlogon.exe => Bestand is getekend C:\WINDOWS\system32\wininit.exe => Bestand is getekend C:\WINDOWS\explorer.exe => Bestand is getekend C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend C:\WINDOWS\system32\svchost.exe => Bestand is getekend C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend C:\WINDOWS\system32\services.exe => Bestand is getekend C:\WINDOWS\system32\User32.dll => Bestand is getekend C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend C:\WINDOWS\system32\userinit.exe => Bestand is getekend C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend C:\WINDOWS\system32\rpcss.dll => Bestand is getekend C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2016-06-03 10:12 ==================== Eind van FRST.txt ============================

En die verdwenen 3 gb uit mn eerste bericht,..is ook nog niet terug

Oh= kan je je bericht niet bewerken-aanpassen? Wat betreft die firefox bufferinhoud wissen...dat gaat nu , nu die VPN "uit"is,ook weer. Afwachten of dat zo blijft. Blijft de vraag wie of wat VPN "aangeschakeld"heeft. (nee,ik niet, ik weet niet altijd wat ik doe,maar onthoud wel de naam van de knoppen die ik aanvink)

Dat is het logje. Wat betreft dat bleutooth ding had ik te vroeg gejuigd, savonds zat t er alweer op...Maar ik zit ook niet stil en klik soms gewoon maar wat aan,en probeer zaken uit, en zo kwam ik bij `VPN`,dat aangeschakeld was. Ik dacht dat al die zaken gewoon standaard met Windows meegeleverd waren,..maar je kan VPN uitschakelen. Bij ùit`is bleutooth weg, bij àan`is bleutooth na een tijdje pas , terug. Het lijkt dus verband met elkaar te houden.

Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by bm.silverlake on ma 06-06-2016 at 7:42:22,56. Microsoft Windows 10 Home 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\bm.silverlake\Desktop\zoek.exe [scan all users] [script inserted] ==== System Restore Info ====================== 6-6-2016 07:43:17 Zoek.exe System Restore Point Created Successfully. ==== Torpig Check ====================== HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll ==== Empty Folders Check ====================== C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\Manuals deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\PROGRA~3\SUPPORTDIR deleted successfully C:\Users\bm.silverlake\AppData\Local\ActiveSync deleted successfully C:\Users\bm.silverlake\AppData\Local\Adobe deleted successfully C:\Users\bm.silverlake\AppData\Local\MediaShow deleted successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files\AVAST Software\Avast\afwServ.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\WINDOWS\SysWOW64\ctfmon.exe C:\Users\bm.silverlake\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe ==== Services(whitelist) ====================== Powered by E Dev R2 - [iAStorDataMgrSvc] - Intel® Rapid Storage Technology - c:\program files\intel\intel® rapid storage technology\iastordatamgrsvc.exe R2 - [jhi_service] - Intel® Dynamic Application Loader Host Interface Service - c:\program files (x86)\intel\intel® management engine components\dal\jhi_service.exe R2 - [LMS] - Intel® Management and Security Application Local Management Service - c:\program files (x86)\intel\intel® management engine components\lms\lms.exe R2 - [nvsvc] - NVIDIA Display Driver Service - c:\windows\system32\nvvsvc.exe R2 - [stereo Service] - NVIDIA Stereoscopic 3D Driver Service - c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe R2 - [WSearch] - Windows Search - c:\windows\system32\searchindexer.exe R3 - [AvastVBoxSvc] - AvastVBox COM Service - c:\program files\avast software\avast\ng\vbox\avastvboxsvc.exe R3 - [intel® Security Assist] - Intel® Security Assist - c:\program files (x86)\intel\intel® security assist\isa.exe S2 - [isaHelperSvc] - Intel® Security Assist Helper - c:\program files (x86)\intel\intel® security assist\isahelperservice.exe S2 - [sppsvc] - Software Protection - c:\windows\system32\sppsvc.exe S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe S3 - [ALG] - Application Layer Gateway Service - c:\windows\system32\alg.exe S3 - [COMSysApp] - COM+ System Application - c:\windows\system32\dllhost.exe S3 - [diagnosticshub.standardcollector.service] - Microsoft® Diagnostics Hub Standard Collector-service - c:\windows\system32\diagsvcs\diagnosticshub.standardcollector.service.exe S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe S3 - [iEEtwCollectorService] - Internet Explorer ETW Collector Service - c:\windows\system32\ieetwcollector.exe S3 - [intel® Capability Licensing Service TCP IP Interface] - Intel® Capability Licensing Service TCP IP Interface - c:\program files\intel\icls client\socketheciserver.exe S3 - [MozillaMaintenance] - Mozilla Maintenance Service - c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe S3 - [MSDTC] - Distributed Transaction Coordinator - c:\windows\system32\msdtc.exe S3 - [msiserver] - Windows Installer - c:\windows\system32\msiexec.exe S3 - [PerfHost] - Performance Counter DLL Host - c:\windows\syswow64\perfhost.exe S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - c:\windows\system32\locator.exe S3 - [sensorDataService] - Sensor Data Service - c:\windows\system32\sensordataservice.exe S3 - [sNMPTRAP] - SNMP Trap - c:\windows\system32\snmptrap.exe S3 - [TieringEngineService] - Storage Tiers Management - c:\windows\system32\tieringengineservice.exe S3 - [TrustedInstaller] - Windows Modules Installer - c:\windows\servicing\trustedinstaller.exe S3 - [vds] - Virtual Disk - c:\windows\system32\vds.exe S3 - [VSS] - Volume Shadow Copy - c:\windows\system32\vssvc.exe S3 - [wbengine] - Block Level Backup Engine Service - c:\windows\system32\wbengine.exe S3 - [WdNisSvc] - Windows Defender Network Inspection Service - c:\program files\windows defender\nissrv.exe S3 - [WinDefend] - Windows Defender Service - c:\program files\windows defender\msmpeng.exe S3 - [wmiApSrv] - WMI Performance Adapter - c:\windows\system32\wbem\wmiapsrv.exe S3 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - c:\program files\windows media player\wmpnetwk.exe ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\BM42A9~1.SIL\AppData\Roaming\Mozilla\Firefox\Profiles\petb5utx.default user.js not found ---- Lines browser.startup.page removed from prefs.js ---- user_pref("browser.startup.page", 0); ---- FireFox user.js and prefs.js backups ---- prefs_06-06-2016_0750_.backup ==== Deleting Files \ Folders ====================== C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\windows\SysNative\GroupPolicy\Machine deleted C:\windows\SysNative\GroupPolicy\User deleted C:\windows\SysNative\GroupPolicy\GPT.INI deleted C:\WINDOWS\Syswow64\GroupPolicy\gpt.ini deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 12226 MB CPU Info: Intel® Core i7-4790 CPU @ 3.60GHz CPU Speed: 3598,0 MHz Sound Card: Speakers (Realtek High Definiti | 27MP35-4 (NVIDIA High Definitio | Display Adapters: NVIDIA GeForce GTX 745 | NVIDIA GeForce GTX 745 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (G: | ) G: TSSTcorpCDDVDW SH-216DB Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 117,5GB | D: 1803,0GB | E: 60,0GB Hard Disks - Free: C: 79,7GB | D: 1800,9GB | E: 41,6GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | MEDION - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: MEDION H81H3-EM2 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Default Browser: Firefox 46.0.1 Internet Explorer Version: 11.306.10586.0 Mozilla Firefox version: 46.0.1 (x86 nl) Sun Java version: 1.8.0_31 (32-bit) Sun Java version: 1.8.0_31 (64-bit) Flash Player version: 21.0.0.242 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2016-05-26 14:41:41 8D26DAE92B9995B082AE5B6BC2FB70DB 52184 ----a-w- C:\WINDOWS\avastSS.scr 2016-05-11 05:28:23 2617877C5761B8A696FD0368861EE6E4 4515256 ----a-w- C:\WINDOWS\explorer.exe ====== C:\Users\BM42A9~1.SIL\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2016-05-26 14:41:43 7E8152C231FF349CEEEB12146D90E952 398152 ----a-w- C:\WINDOWS\Sysnative\aswBoot.exe ====== C:\WINDOWS\Sysnative\drivers ===== 2016-06-03 21:19:00 78488AF2AB2111D67B3C4044707A519B 192216 ----a-w- C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys 2016-05-26 14:41:44 5261F0E21A21027CDED0CD47D20E16F2 536312 ----a-w- C:\WINDOWS\Sysnative\drivers\aswNetSec.sys 2016-05-22 09:30:09 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2016-05-11 05:28:22 48D8729FACC784900B831212AE56F824 1996640 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2016-05-11 05:28:19 E7463CE8579A0418A98BE9BE42C647D7 534872 ----a-w- C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS 2016-05-11 05:28:19 01C01ED15ED56B98088CE1D5A0965E6A 577368 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms2.sys 2016-05-11 05:28:18 CFFE69B6C276A3418687109EA8AC9E7D 330072 ----a-w- C:\WINDOWS\Sysnative\drivers\pci.sys 2016-05-11 05:28:18 B880BE37452AB1D4AA93845F58EF7960 95072 ----a-w- C:\WINDOWS\Sysnative\drivers\sdport.sys 2016-05-11 05:28:18 357910142E9285B978689B1DB4EFA00A 393568 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2016-05-11 05:28:17 C330883C06E2D4CE4F6982F048265D37 335712 ----a-w- C:\WINDOWS\Sysnative\drivers\fastfat.sys 2016-05-11 05:28:17 C0752D58193603B6ED762B4027C65E1B 155136 ----a-w- C:\WINDOWS\Sysnative\drivers\hidclass.sys 2016-05-11 05:28:17 8F2523C9D8F1448FF2156452AF60FA00 87552 ----a-w- C:\WINDOWS\Sysnative\drivers\filecrypt.sys 2016-05-11 05:28:17 82D3B1F4D80057826AA649D78147DE36 63488 ----a-w- C:\WINDOWS\Sysnative\drivers\UcmCx.sys 2016-05-11 05:28:17 67B9684B8272D5EBD1CCBB1DBD425EC8 99680 ----a-w- C:\WINDOWS\Sysnative\drivers\pdc.sys 2016-05-11 05:28:17 50DFE05C698E9B0A63D95E3D669A105C 638816 ----a-w- C:\WINDOWS\Sysnative\drivers\fvevol.sys 2016-05-11 05:28:17 4AAD6547953D373A1EB5B2DF583D868B 67072 ----a-w- C:\WINDOWS\Sysnative\drivers\usbser.sys 2016-05-11 05:28:17 2A87EA182EA333D79AA0B03833EA67F2 131424 ----a-w- C:\WINDOWS\Sysnative\drivers\ufxsynopsys.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-06-04 00:30:38 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2016-05-26 04:53:44 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service ======= C: ===== ====== C:\Users\bm.silverlake\AppData\Roaming ====== 2016-06-03 19:15:22 8DE9F588DFB1641F2C0EA05BD4B60605 218 ----a-w- C:\Users\BM42A9~1.SIL\AppData\Local\recently-used.xbel 2016-06-03 19:15:22 8DE9F588DFB1641F2C0EA05BD4B60605 218 ----a-w- C:\Users\bm.silverlake\AppData\Local\recently-used.xbel 2016-06-03 16:46:46 -------- d-----w- C:\Users\BM42A9~1.SIL\AppData\Local\gtk-2.0 2016-06-03 16:46:46 -------- d-----w- C:\Users\bm.silverlake\AppData\Local\gtk-2.0 2016-06-03 16:40:34 -------- d-----w- C:\Users\BM42A9~1.SIL\AppData\Local\fontconfig 2016-06-03 16:40:34 -------- d-----w- C:\Users\bm.silverlake\AppData\Local\fontconfig 2016-06-03 16:40:33 -------- d-----w- C:\Users\BM42A9~1.SIL\AppData\Local\gegl-0.2 2016-06-03 16:40:33 -------- d-----w- C:\Users\bm.silverlake\AppData\Local\gegl-0.2 2016-06-03 16:35:54 -------- d-----w- C:\Users\BM42A9~1.SIL\AppData\Local\Programs 2016-06-03 16:35:54 -------- d-----w- C:\Users\bm.silverlake\AppData\Local\Programs ====== C:\Users\bm.silverlake ====== 2016-06-06 05:41:52 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp 2016-06-04 06:42:34 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\BM42A9~1.SIL\Desktop\RSITx64.exe 2016-06-04 06:42:34 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\bm.silverlake\Desktop\RSITx64.exe 2016-06-04 00:30:07 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\BM42A9~1.SIL\Downloads\RSITx64.exe 2016-06-04 00:30:07 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\bm.silverlake\Downloads\RSITx64.exe 2016-06-03 21:17:39 52F4695C53B02ADA7D648F95F2E2F8B4 22851472 ----a-w- C:\Users\BM42A9~1.SIL\Downloads\mbam-setup-2.2.1.1043.exe 2016-06-03 21:17:39 52F4695C53B02ADA7D648F95F2E2F8B4 22851472 ----a-w- C:\Users\bm.silverlake\Downloads\mbam-setup-2.2.1.1043.exe 2016-06-03 17:02:33 -------- d-----w- C:\Users\BM42A9~1.SIL\.thumbnails 2016-06-03 17:02:33 -------- d-----w- C:\Users\bm.silverlake\.thumbnails 2016-05-26 04:52:02 1F14A3768CB568E4AA89C568903F5CC4 242200 ----a-w- C:\Users\BM42A9~1.SIL\Downloads\Firefox Setup Stub 46.0.1.exe 2016-05-26 04:52:02 1F14A3768CB568E4AA89C568903F5CC4 242200 ----a-w- C:\Users\bm.silverlake\Downloads\Firefox Setup Stub 46.0.1.exe ====== C: exe-files == 2016-06-04 06:42:34 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\bm.silverlake\Desktop\RSITx64.exe 2016-06-04 00:30:39 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\bm.silverlake.exe 2016-06-04 00:30:07 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\bm.silverlake\Downloads\RSITx64.exe 2016-06-03 21:17:39 52F4695C53B02ADA7D648F95F2E2F8B4 22851472 ----a-w- C:\Users\bm.silverlake\Downloads\mbam-setup-2.2.1.1043.exe === C: other files == 2016-06-03 21:19:00 78488AF2AB2111D67B3C4044707A519B 192216 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-775628570-3588427518-1694689872-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64" "Uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CLMLServer_For_P2G8"="C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" "CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R" "PowerDVD12Agent"="C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64" "Uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "IAStorIcon"="C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 60" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [13-05-2016 10:12] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\PDVDServ12 Task" [C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{CF317D64-B4FF-4468-BB4C-3F124728ADEF}" [C:\Windows\system32\msfeedssync.exe] ==== Folders in C:\PROGRA~3 0-6 Months Old ====================== 2015-12-31 10:55:11 -------- d-----w- C:\PROGRA~3\AVAST Software 2016-01-22 07:08:21 -------- d-----w- C:\PROGRA~3\NVIDIA Corporation 2016-01-22 07:08:27 -------- d-----w- C:\PROGRA~3\NVIDIA 2016-01-22 07:12:46 -------- d-sh--we C:\PROGRA~3\Application Data 2016-01-22 07:12:46 -------- d-sh--we C:\PROGRA~3\Bureaublad 2016-01-22 07:12:46 -------- d-sh--we C:\PROGRA~3\Documenten 2016-01-22 07:12:46 -------- d-sh--we C:\PROGRA~3\Menu Start 2016-01-22 07:12:46 -------- d-sh--we C:\PROGRA~3\Sjablonen 2016-02-24 17:14:25 -------- d-----w- C:\PROGRA~3\Oracle 2016-02-24 17:14:39 -------- d-----w- C:\PROGRA~3\Sun 2016-06-03 21:18:48 -------- d-----w- C:\PROGRA~3\Malwarebytes ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\BM42A9~1.SIL\AppData\Roaming\Mozilla\Firefox\Profiles\petb5utx.default user_pref("browser.startup.homepage", "google.com"); user_pref("browser.newtab.url", "about:newtab"); ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [26-05-2016 16:41] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [26-05-2016 16:41] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\bm.silverlake\AppData\Roaming\Mozilla\Firefox\Profiles\petb5utx.default 70858ED7836E5C849D33576A84DC8CCF - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll - Shockwave Flash 258693279212838A6A879A69A17BE215 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll - Shockwave Flash ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[26-05-2016 16:41] Google Slides - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Sheets - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Avast Online Security - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Chrome Web Store Payments - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Slides - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Sheets - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Avast Online Security - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Chrome Web Store Payments - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.com./" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.com./" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{5A7197FF-0B15-48ED-AC62-E258ECFBEBA0}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{5A7197FF-0B15-48ED-AC62-E258ECFBEBA0} - http://www.bing.com/search?q={searchTerms}&form=PRLNC1&src=IE11TR&pc=LCTE ==== HijackThis Entries ====================== O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R O4 - HKLM\..\Run: [PowerDVD12Agent] "C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe" O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKCU\..\RunOnce: [uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64" O4 - HKCU\..\RunOnce: [uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1" O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105 O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel® Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe O23 - Service: Intel® Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\bm.silverlake\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\bm.silverlake\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Users\BM42A9~1.SIL\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\BM42A9~1.SIL\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\bm.silverlake\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\bm.silverlake\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Users\BM42A9~1.SIL\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\BM42A9~1.SIL\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\bm.silverlake\AppData\Local\Mozilla\Firefox\Profiles\petb5utx.default\cache2 emptied successfully C:\Users\BM42A9~1.SIL\AppData\Local\Mozilla\Firefox\Profiles\petb5utx.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\bm.silverlake\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\BM42A9~1.SIL\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=15 folders=12 9521192 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\BM42A9~1.SIL\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 06-06-2016 at 7:55:56,56 ======================

t is nu (onverwacht) mooi weer,en ook nog weekend...maar dat logje komt eraan! fjne dag!

Hoi, dank voor je reactie, en dat ga ikmorgen uitproberen, maar wat is er aan de hand,of zou er mogelijkerwijs aan de hand kunnen zijn? Heb je een idee? mvg en fijne avond

zo dan maar: Logfile of random's system information tool 1.10 (written by random/random) Run by bm.silverlake at 2016-06-04 08:50:34 Microsoft Windows 10 Home System drive C: has 88 GB (73%) free of 120 GB Total RAM: 12225 MB (86% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 08:50:35, on 4-6-2016 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.10586.0020) Boot mode: Normal Running processes: C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files\trend micro\bm.silverlake.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo15.msn.com/?pc=LCTE R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com./ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R O4 - HKLM\..\Run: [PowerDVD12Agent] "C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe" O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKCU\..\RunOnce: [uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64" O4 - HKCU\..\RunOnce: [uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1" O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105 O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel® Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe O23 - Service: Intel® Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 8879 bytes ======Listing Processes====== C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k RPCSS C:\WINDOWS\system32\svchost.exe -k netsvcs C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\WINDOWS\system32\nvvsvc.exe" "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe" "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-bae46c23-e2ad-4c58-805b-5e60773c9b8f -SystemEventPortName:HostProcess-8af56c64-fbb8-41c8-beb3-36d13b82d136 -IoCancelEventPortName:HostProcess-7fed1dbe-3fb8-464a-adfc-748b9eaf4343 -NonStateChangingEventPortName:HostProcess-83120884-73d5-48d0-8059-b7eba6293a5d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:00963f44-51e9-4c32-860c-d7b20ca0c0e2 -DeviceGroupId:WpdFsGroup C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k NetworkService "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" C:\WINDOWS\System32\spoolsv.exe "C:\Program Files\AVAST Software\Avast\afwServ.exe" C:\WINDOWS\system32\svchost.exe -k appmodel C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\System32\svchost.exe -k utcsvc C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" C:\WINDOWS\system32\SearchIndexer.exe /Embedding "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe" C:\WINDOWS\System32\WinLogon.exe -SpecialSession "dwm.exe" "C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe" C:\WINDOWS\system32\nvvsvc.exe -session dashost.exe {6066acf2-7916-4fe5-b7c623a64735a129} sihost.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} C:\WINDOWS\Explorer.EXE C:\Windows\System32\RuntimeBroker.exe -Embedding "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca "C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1 "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" "C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui "fontdrvhost.exe" C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding C:\WINDOWS\system32\wbem\wmiprvse.exe C:\Windows\System32\SystemSettingsBroker.exe -Embedding "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" "C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe" "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} "C:\Users\bm.silverlake\Desktop\RSITx64.exe" ======Scheduled tasks folder====== C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =========Mozilla firefox========= ProfilePath - C:\Users\bm.silverlake\AppData\Roaming\Mozilla\Firefox\Profiles\petb5utx.default prefs.js - "browser.search.suggest.enabled" - false prefs.js - "browser.search.useDBForOrder" - true prefs.js - "browser.startup.homepage" - "google.com" "wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 21.0.0.242 Plugin "Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68] "Description"=Intel IPT WebApi plugin "Path"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater] "Description"=This plugin updates Intel WebAPI component "Path"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.31.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision] "Description"=NVIDIA stereo images plugin for Mozilla browsers "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming] "Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 21.0.0.242 Plugin "Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2016-02-24 460712] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2016-02-24 172968] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-18 14021336] "IAStorIcon"=C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe [2015-06-23 36352] "NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-17 1795728] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984] "Uninstall C:\Users\bm.silverlake\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "CLMLServer_For_P2G8"=C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2015-05-26 110008] "CLVirtualDrive"=C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2015-05-26 499128] "PowerDVD12Agent"=C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe [] "AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-06-03 7400064] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcapexe] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DSCAutomationHostEnabled"=2 "SoftwareSASGeneration"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "ConfirmFileDelete"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "midimapper"=midimap.dll "msacm.imaadpcm"=imaadp32.acm "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "msacm.msadpcm"=msadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "vidc.i420"=iyuv_32.dll "vidc.iyuv"=iyuv_32.dll "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvu9"=tsbyuv.dll "vidc.yvyu"=msyuv.dll "wavemapper"=msacm32.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2016-06-04 02:30:38 ----D---- C:\rsit 2016-06-04 02:30:38 ----D---- C:\Program Files\trend micro 2016-06-03 23:19:00 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys 2016-06-03 23:18:48 ----D---- C:\ProgramData\Malwarebytes 2016-05-26 17:28:34 ----D---- C:\WINDOWS\SYSWOW64\vbox 2016-05-26 17:28:34 ----D---- C:\WINDOWS\system32\vbox 2016-05-26 16:41:44 ----A---- C:\WINDOWS\system32\drivers\aswNetSec.sys 2016-05-26 16:41:43 ----A---- C:\WINDOWS\system32\aswBoot.exe 2016-05-26 16:41:41 ----A---- C:\WINDOWS\avastSS.scr 2016-05-26 06:53:44 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2016-05-11 07:28:35 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll 2016-05-11 07:28:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll 2016-05-11 07:28:33 ----A---- C:\WINDOWS\system32\mshtml.dll 2016-05-11 07:28:32 ----A---- C:\WINDOWS\system32\NMAA.dll 2016-05-11 07:28:32 ----A---- C:\WINDOWS\system32\mos.dll 2016-05-11 07:28:32 ----A---- C:\WINDOWS\system32\MapControlCore.dll 2016-05-11 07:28:31 ----A---- C:\WINDOWS\system32\kerberos.dll 2016-05-11 07:28:31 ----A---- C:\WINDOWS\system32\edgehtml.dll 2016-05-11 07:28:30 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll 2016-05-11 07:28:29 ----A---- C:\WINDOWS\system32\MapsStore.dll 2016-05-11 07:28:29 ----A---- C:\WINDOWS\system32\MapConfiguration.dll 2016-05-11 07:28:29 ----A---- C:\WINDOWS\system32\JpMapControl.dll 2016-05-11 07:28:29 ----A---- C:\WINDOWS\system32\BingMaps.dll 2016-05-11 07:28:28 ----A---- C:\WINDOWS\system32\shell32.dll 2016-05-11 07:28:28 ----A---- C:\WINDOWS\system32\modernexecserver.dll 2016-05-11 07:28:27 ----A---- C:\WINDOWS\system32\windows.storage.dll 2016-05-11 07:28:27 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-05-11 07:28:27 ----A---- C:\WINDOWS\system32\twinui.dll 2016-05-11 07:28:27 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll 2016-05-11 07:28:26 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll 2016-05-11 07:28:26 ----A---- C:\WINDOWS\system32\iertutil.dll 2016-05-11 07:28:26 ----A---- C:\WINDOWS\system32\ieframe.dll 2016-05-11 07:28:26 ----A---- C:\WINDOWS\system32\Chakra.dll 2016-05-11 07:28:25 ----A---- C:\WINDOWS\system32\ntoskrnl.exe 2016-05-11 07:28:25 ----A---- C:\WINDOWS\system32\ntdll.dll 2016-05-11 07:28:25 ----A---- C:\WINDOWS\system32\d2d1.dll 2016-05-11 07:28:24 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll 2016-05-11 07:28:24 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll 2016-05-11 07:28:24 ----A---- C:\WINDOWS\system32\jscript9.dll 2016-05-11 07:28:23 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe 2016-05-11 07:28:23 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll 2016-05-11 07:28:23 ----A---- C:\WINDOWS\system32\twinui.appcore.dll 2016-05-11 07:28:23 ----A---- C:\WINDOWS\system32\generaltel.dll 2016-05-11 07:28:23 ----A---- C:\WINDOWS\system32\DeviceCensus.exe 2016-05-11 07:28:23 ----A---- C:\WINDOWS\system32\appraiser.dll 2016-05-11 07:28:23 ----A---- C:\WINDOWS\explorer.exe 2016-05-11 07:28:22 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll 2016-05-11 07:28:22 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll 2016-05-11 07:28:22 ----A---- C:\WINDOWS\system32\wuaueng.dll 2016-05-11 07:28:22 ----A---- C:\WINDOWS\system32\win32kfull.sys 2016-05-11 07:28:22 ----A---- C:\WINDOWS\system32\wcmsvc.dll 2016-05-11 07:28:22 ----A---- C:\WINDOWS\system32\dwmcore.dll 2016-05-11 07:28:22 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys 2016-05-11 07:28:22 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\SYSWOW64\mos.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\MosStorage.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\moshostcore.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\moshost.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\MapsCSP.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2016-05-11 07:28:21 ----A---- C:\WINDOWS\system32\aeinv.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\winlogon.exe 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\Windows.UI.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\urlmon.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\TokenBroker.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\MPSSVC.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\mfplat.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\LogonController.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\KernelBase.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\dxgi.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\devinv.dll 2016-05-11 07:28:20 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\wwansvc.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\wuapi.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\win32kbase.sys 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\wifitask.exe 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\vbscript.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\tileobjserver.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\SettingSync.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\RDXService.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\NetSetupShim.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\LockAppHost.exe 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\jscript.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\invagent.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\ieproxy.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\gdi32.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\crypt32.dll 2016-05-11 07:28:19 ----A---- C:\WINDOWS\system32\CoreMessaging.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\user32.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\wlanapi.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\wininit.exe 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\wcmcsp.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\user32.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\StorSvc.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\SHCore.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\SharedStartModel.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\shacct.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\schannel.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\samsrv.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\rpcrt4.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\provhandlers.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\provengine.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\NgcCtnr.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\MosHostClient.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\drivers\sdport.sys 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\drivers\pci.sys 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\directmanipulation.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\d3d10level9.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\aepic.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\actxprxy.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\ActivationManager.dll 2016-05-11 07:28:18 ----A---- C:\WINDOWS\system32\acmigration.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\wups.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\wuauclt.exe 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\wpdbusenum.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\updatepolicy.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\rsaenh.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\provisioningcsp.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\PhoneProviders.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\ngcsvc.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\ngccredprov.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\NetSetupApi.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\ListSvc.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\hmkd.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\dwminit.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\drivers\usbser.sys 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\drivers\ufxsynopsys.sys 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\drivers\pdc.sys 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\drivers\filecrypt.sys 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\cryptngc.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\BluetoothApis.dll 2016-05-11 07:28:17 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\SYSWOW64\wups.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\system32\wshbth.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\system32\wificonnapi.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\system32\Chakradiag.dll 2016-05-11 07:28:16 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe 2016-05-11 07:28:16 ----A---- C:\WINDOWS\system32\bcastdvr.exe 2016-05-11 07:28:16 ----A---- C:\WINDOWS\system32\AppCapture.dll ======List of files/folders modified in the last 1 month====== 2016-06-04 08:40:54 ----D---- C:\WINDOWS\Prefetch 2016-06-04 08:40:47 ----D---- C:\WINDOWS\AppReadiness 2016-06-04 08:40:46 ----HD---- C:\Program Files\WindowsApps 2016-06-04 08:40:42 ----D---- C:\WINDOWS\Temp 2016-06-04 02:33:12 ----D---- C:\Users\bm.silverlake\AppData\Roaming\uTorrent 2016-06-04 02:30:38 ----RD---- C:\Program Files 2016-06-04 01:50:00 ----D---- C:\WINDOWS\system32\sru 2016-06-04 00:54:58 ----D---- C:\WINDOWS\System32 2016-06-04 00:54:58 ----D---- C:\WINDOWS\INF 2016-06-04 00:54:58 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2016-06-04 00:49:08 ----D---- C:\ProgramData\NVIDIA 2016-06-04 00:49:05 ----RD---- C:\Program Files (x86) 2016-06-04 00:48:32 ----D---- C:\WINDOWS\system32\drivers 2016-06-03 23:18:48 ----HD---- C:\ProgramData 2016-06-03 21:09:38 ----D---- C:\Users\bm.silverlake\AppData\Roaming\vlc 2016-06-03 10:39:06 ----D---- C:\WINDOWS\system32\config 2016-06-03 10:12:54 ----D---- C:\WINDOWS\Microsoft.NET 2016-05-28 08:05:06 ----D---- C:\Program Files\Common Files\microsoft shared 2016-05-26 17:28:34 ----D---- C:\WINDOWS\SysWOW64 2016-05-26 16:41:46 ----D---- C:\WINDOWS\system32\Tasks 2016-05-26 16:41:44 ----D---- C:\WINDOWS\WinSxS 2016-05-26 16:41:43 ----D---- C:\Windows 2016-05-26 08:42:08 ----D---- C:\WINDOWS\system32\catroot2 2016-05-26 06:57:35 ----AD---- C:\Program Files (x86)\Mozilla Firefox 2016-05-26 06:19:43 ----D---- C:\Program Files (x86)\Common Files 2016-05-25 08:57:14 ----SD---- C:\ProgramData\Microsoft 2016-05-23 10:54:53 ----D---- C:\WINDOWS\rescache 2016-05-23 00:40:31 ----D---- C:\WINDOWS\system32\wbem 2016-05-23 00:40:31 ----D---- C:\WINDOWS\system32\setup 2016-05-23 00:40:31 ----D---- C:\WINDOWS\system32\nl-NL 2016-05-23 00:37:00 ----D---- C:\WINDOWS\CbsTemp 2016-05-22 11:31:24 ----D---- C:\WINDOWS\system32\DriverStore 2016-05-22 11:30:07 ----D---- C:\WINDOWS\system32\drivers\UMDF 2016-05-12 10:19:10 ----RD---- C:\WINDOWS\assembly 2016-05-12 00:17:25 ----D---- C:\WINDOWS\SYSWOW64\nl-NL 2016-05-12 00:17:25 ----D---- C:\WINDOWS\SYSWOW64\migration 2016-05-12 00:17:25 ----D---- C:\WINDOWS\system32\oobe 2016-05-12 00:17:25 ----D---- C:\WINDOWS\system32\migration 2016-05-12 00:17:25 ----D---- C:\WINDOWS\system32\appraiser 2016-05-12 00:17:25 ----D---- C:\WINDOWS\Provisioning 2016-05-12 00:17:25 ----D---- C:\WINDOWS\bcastdvr 2016-05-12 00:17:25 ----D---- C:\WINDOWS\AppPatch 2016-05-12 00:17:25 ----D---- C:\Program Files\Windows Journal 2016-05-12 00:17:25 ----D---- C:\Program Files\Internet Explorer 2016-05-12 00:17:25 ----D---- C:\Program Files (x86)\Internet Explorer 2016-05-11 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe 2016-05-11 07:51:16 ----D---- C:\WINDOWS\system32\MRT 2016-05-11 07:49:36 ----A---- C:\WINDOWS\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-05-26 74544] R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-05-26 287528] R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-06-23 1455552] R0 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2016-06-03 192216] R0 ngvss;ngvss; C:\WINDOWS\system32\drivers\ngvss.sys [2016-05-26 161760] R1 aswNetSec;aswNetSec; C:\WINDOWS\system32\drivers\aswNetSec.sys [2016-05-26 536312] R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-05-26 103064] R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-05-26 1070904] R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-05-26 465792] R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-11-12 91912] R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552] R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192] R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-05-26 37656] R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-05-26 107792] R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-05-26 166432] R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616] R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848] R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2016-05-26 323392] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-23 4500184] R3 MEIx64;@oem6.inf,%TEE_SvcDesc%;Intel® Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2015-06-12 183584] R3 NVHDA;@oem8.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-12-26 195912] R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-12-26 11142984] R3 rt640x64;@oem3.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-05-29 886528] S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800] S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168] S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208] S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720] S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144] S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728] S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376] S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-22 117248] S3 dg_ssudbus;@oem7.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-04-25 129152] S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992] S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016] S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel® Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408] S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel® Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888] S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800] S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624] S3 mfeaack01;McAfee Inc.; \Device\mfeaack01.sys [] S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376] S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128] S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656] S3 ssudmdm;@oem13.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-04-25 221824] S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-04-23 63488] S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592] S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056] S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-03-29 258912] S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048] S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-04-23 131424] S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 28512] S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 57696] S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 27488] S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Stuurprogramma voor serieel USB-apparaat van Microsoft; C:\WINDOWS\System32\drivers\usbser.sys [2016-04-23 67072] S3 vhf;@%SystemRoot%\system32\drivers\vhf.sys,-100; C:\WINDOWS\System32\drivers\vhf.sys [2015-10-30 31744] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-05-26 243296] R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2016-05-26 370656] R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-06-23 18856] R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2015-06-24 223008] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2015-06-24 411936] R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-07-23 937800] R2 OneSyncSvc_5d39c5;Host synchroniseren_5d39c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-07-23 410768] R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] R2 UserManager;@%systemroot%\system32\usermgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2016-05-26 5570272] R3 Intel® Security Assist;Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [2015-05-19 335872] R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S2 isaHelperSvc;Intel® Security Assist Helper; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [2015-05-19 7680] S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-13 269504] S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744] S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696] S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152] S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 MessagingService_5d39c5;MessagingService_5d39c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-03 146888] S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 PimIndexMaintenanceSvc_5d39c5;Contact Data_5d39c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408] S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304] S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] S3 UnistoreSvc_5d39c5;User Data Storage_5d39c5; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944] S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 UserDataSvc_5d39c5;User Data Access_5d39c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S3 UsoSvc;@%systemroot%\system32\usocore.dll,-102; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944] -----------------EOF----------------- log.txt

Hai Escape, dat ga ik morgen uitvoeren. Wel kan ik melden dat de mbam slechts 1 registersleutel heeft gevonden,en die heb ik verwijderd. Met --waarschijnlijk- díé registersleutel is er wel een ander vraagteken opgelost. Bij Windows 10 is er rechts op de taakbalk het ""äctiecentrum pictogram"", en daar stond al tijden dat ik zogenaamd bleutooth had ingeschakeld of aangesloten...(of hoe het dan ook werkt) Heb al meerdere malen die bleutoooth locatie op proberen te sporen, maar zonder resultaat.(te lang voor hier en nu,maar neem maar aan dat ik in de kelders van de pc heb lopen wroeten), en nu,na verwijdering van die register sleutel, is dat blauwe bleutooth-aan vak,helemaal verdwenen.

malware is al bezig met een aangepaste scan waar ik ook "rootkits"heb aangevinkt.

Hallo iedereen, De pc heeft last van 2 problemen. Probleem 1 betreft Mozilla FireFox In Firefox Menu/opties is er de mogelijkheid bij "geavanceerd" en dan het tabblad "netwerk"de gebufferde webinhoud te wissen. Dat ging nu ca 4 maanden prima, en bij het aanvinken van die "nu wissen"button, sprong de teller op 0,maar sinds 1 maand is dat anders, bij het aanvinken van die button springt de teller terug tot 328 kb. Het maakt niet uit of ik iets aan de opties daaronder verander ( automatische bufferinhoud negeren/ja-nee) en of ik iets aan de optie "buffer beperken tot..."verander. Bij iedere combinatie springt ie terug tot 328. Ook firefox erafhalen,alles van de pc verwidjeren,en een dag later opnieuw installeren werkte niet. Probleem 2. De pc heeft op schijf C altijd circa 89 GB van de 117 beschikbaar,en sinds kort is dat nog maar 86. Ik heb niets gedownload, en er staan geen films/fotos/documenten of andere grote bestanden op, want die zaken staan op sd kaartjes. Ik denk dat er wat malware en rootkits of zoiets opstaat... Welk malware detectie programma kan ik t best gebruiken? mvg en fijne avond

Dank!. Een aantalzaken zijn inmiddels gelukt,en met die prullenbak ben iknog bezig. Bedankt weer iedereen voor t meedenken en de tips.

Hey Passer, Dank voor je reactie, ben nu nog even druk (nee niet met de mp3 rocket) , maar direct na het weekend ga ik je tips proberen. Fijn weekend iedereen!

Hoi Eggie, Het is , mede dankzij Clarkie, opgelost. @Clarkie, Dankzij deze website ben ik goed bekend met mbam, RSIT en Hijack This. Die staan al standaar op mn pc,maar toch dank voor de info. *slotjuuuhhhh*

Hoi reaguurders, Wanneer ik de verkeerde vraag heb gesteld,dan spijt me dat. Ik wil zeker niet tegen de regels in gaan. In dat geval mag er ook wel een slotje op,m maar ik kan nietgeheel ontkennen dat ik best blij ben met de tip van reaguurder no 2.

Hoi FCBBrugge, en Clarkie. De Mc Afee kwestie is nu opgelost,en de prullenbak kwestie gedeeltelijk. Ik heb gedaan wat er in de link werd geadviseerd,en dat werkt prima,de prullenbak staat op de taakbalk,maar ik krijg het icoon op het bureaublad niet verwijderd. Daar is geen optie `verwijderen`. En slepen naar de prullenbak, of een nadere locatie werkt niet. "Clarkie wat betreft de Cyberlink Media Suite begrijp je het een beetje verkleerd. Ik ben wel geinteresseerd in de software,maar wel op een moment dat ik daarvoor uitkies. En niet als een app zich opeens bedenkt ``hey ik kan mezelf wel veranderen in een bureaubladicoontje,want mijn baasje is zoo nieuwsgierig dat ze er wel op klikt...`` Ik vroeg me af hoe dat zomaar kon,en of je dan in de trackershoek zit...bv veel zoekopdrachten in google naar 3d...en ploef, je app verandert in icoon. (wat dus gebeurd is,daarom weet ik ook dat je er van gewone fotos 3d fotos mee kan maken) En wat betreft die open ofiice bestanden..windows heeft er WEL word bestanden van gemaakt. Nu gebruik ik enkel nog mijn 2e pc met windows 7 voor die sd kaart met open office erop. Ik weet niet welke bestanden open office heeft ogeslagen,maar wel dat word icoontjes er anders uitzien,en weet aldus zeker dat er niet zoiets op mijn sd kaart stond. Maar wel de o.o icoontjes. Met zaak 3 en de genoemde link ( fcbbrugge) ben ik nog bezig,en zoek zelf nog wel even evrder hoe de prullenbak icoon te verwijderen van het bureaublad. Dank ! en fijne dag

Hallo Iedereen, Sinds December 2015 heb ik een Windows 10, kant en klaar geinstalleerd gekocht met een redelijk duren gloednieuwe pc eraan vast. Nu,na ca 2 maanden gebruik ben ik een aantal zaken tegengekomen,die ik maar gek vind,en waarvan ik me afvraag of er meer mensen zijn die deze problemen en opmerkelijkheden tegen zijn gekomen. Kwestie 1. Ik heb een flink aantal open office tekstbestanden op sd kaart gezet.Na een update van Windows 10 heb ik eens weer die sd kaart in de kaartlezer gedouwd,en toen heeft windows er gewoon Word bestanden van gemaakt. Omdat Word nergens de optie of functie heeft "terugzetten naar hoe het was"",kon ik een hele middag 52 uitgeschreven radioprogrammas van sd naar pc plaatsen,opnieuw opslaan als open office document..etc. Kan dit zomaar? Mag dit? kwestie 2. Mc Afee. Na 2 maand bleek mijn abbonnement op Mcafee te zijn verlopen.Had ik een abonnement dan? Maar nu zit mcafee wel nog de wekelijkse scan uit te voeren,terwijl ik er niks meer mee kan,want dan komt opeens de melding, "niet meer actief,want uw abonnement is verlopen Scannen betekent ook gegevens doorsturen...en uitzetten gaart niet. zaak 3. Apps. Sommige apps heb ik uitgezet,en van die selectie is er toch een aantal apps dat zichzelf gewoon weer aanzet. De app "offline kaarten"bijvoorbeeld. Het is onmogelijk deze standaardapps definitief te verwijderen,waaronder ook Xbox Een andere app, One Note, en One Drive wil ik er óók graag vanaf hebben,maar nee hoor...onmogelijk. Is er toch een manier om die standaard apps er gewoon af te rautschen? zaak 4. Een andere app,...Cyberlink Media Suite (voor het 3d maken van fotos).. Om één of andere reden heeft deze app zich verandert in een bureaubladicoontje,en ja hoormper ongeluk heb ik erop geklikt. Toevallig wel eits dat mn interesse hééft. Hoe kan dit, is de gegevens stroom over elke klik die je maakt, en elk woord dat je schrijft,zo steerk, dat ze het aandurven juist die app om te zetten in een bureaublad icoontje? OKe,hoe zet ik zoiets UIT? Zit ik dan al in de stop de trackers hoek? Hoe werkt dat? zaak 5. Bureaublad icoontje prullenbak. Ik heb alle icoontjes inmiddels op de taakbalk gezet omdat ik een zeer mooie foto als achtergrond heb,alleen die prullenbak icoon wil NIET op die taakbalk. Nu zie ik een zeer mooi foto met een prullenbak icoontje linksboven. HELP! Wie weet het antwoord op één of meerdere kwesties? Dank alvast.

Hoi iedereen, Afghelopen 2 dagen ben ik bezig geweest om het programma mp3 rocket op mijn pc te zetten,maar zonder succes. het downloaden en installeren verloopt prima, maar vervolgens wil ik het openen en klik op t icoon,maar er gebeurt niets. het icoon licht niet eens een beetje op. Bij de verschillende dowload-links (waaronder soft tone) die ik geprobeerd heb,proberen ze wel iedere maal een proefversie van norton en yahoo erbij aan te smeren,maar dit vink ik uit. Wie weet waar de fout zit? Of wie kent een ander aardig programma waar je mee van you tube kan dowloaden? dank alvast en fijne dag!

Die lijst heb ik voor mezelf ingevuld,en het voornaamste dat ik ermee wil doen is film en editing terwijl ik op een 2e scherm van alles en nogwat dat anders is,- doe.(zoals hier mn probleempjes bespreken, het weer,de roddelsites ,heerlijkk simpele spelletjes die ik altijd win, en dergelijke) Ik denk dat er voor dat bedrag inderdaad een goede zelfbouwer te vinden is die de pc op film en muziek kan specifieceren. Het frustreert en verbaast me wel dat er nagenoeg niets te vinden in aan reviews..bij zn dure pc. Of hij is zo goed dat de gebruikers pc verslaafd zijn geworden,en geen tijd hebben voor reviews,,,,en een andere reden kan ik niet verzinnen. Voor nu even slotje. Wanneer ik tot daadwerkelijke aanschaf overga, of meer weet over dat merk ,kom ik erop terug.

Dank, het heeft gewerkt. slotje!

Hoi iedereen, Ik heb een vraagje met betrekking to aanschaf van een nogal dure pc van het merk joy-it. Dit merk wordt eigenlijk alleen op de duitse markt verkocht,en revieuws op internet vindt ik nauwelijks. Een email aan de fabrikant leverde geen reactie op,en zoekende in forums kan ik ook niet echt gebruikers van dit merk vinden. Is hier iemand die het merk kent,ermee werkt,of er ideeen /een mening over heeft? De pc is dusdanig duur,dat ik niet zomaar via internet aanschaf over wil gaan zonder tenminste een paar antwoorden. dit is een voorbeeld van de pc waar het om gaat (6 processorkernen,maar ze hebben ze ook van 8) https://www.google.nl/search?q=joy+it+gaming+pc&ie=utf-8&oe=utf-8&gws_rd=cr&ei=bR6FVuOFNsTJOpfLgvAJ#q=joy+it+gaming+pc&tbm=shop&spd=1616072687778780472 Sommige mensen adviseren me voor dat bedrag een goede zelfbouwer te zoeken...die hetzelfde levert,voor minder....maar dan heb ik weer garantievragen.. Alle antwoorden zijn welkom,elk idee is welkom,en iedereen die reageert,alvast ebdankt, en een fijne jaarwisseling

Hoi iedereen, ik probeer utorrent op mijn pc te zetten,maar welke link ik ook probeer, er zit trovi aan avst als browser. (ik zie nergens de optie om trovi uit te vinken, of te weigeren) Weet iemand hier een link voor utorrent, maar zonder trovi?,en anders een adnere torrent zonder ongewenste extra software? met vriendelijke groet,en fijne jaarwisseling

Ikheb voorlopig even geen vragen. maar zeker en vast tot ziens!

Dat kan ik natuurlijk doen,maar ik kan ook gewoon met letters en woroden melden dat er nu opeens weer 837 GB van de 880 staat. complimentjes vissen? *vette knipoog en kusmondje*

Heb t gdeaan. start de pc opnieuw op.