cin1980

Alles is schoon nu.

Heel erg bedankt voor alle moeite!

Het blijft goed gaan. Volgens mij is het probleem opgelost!

Vanavond onderwerp ik hem aan een uitgebreide test.

So far so good! Heb CC cleaner zijn werk laten doen, Chrome opnieuw geïnstalleerd en heb nog geen meldingen gehad van Avast, geen extra tabs en geen extra reclame blokjes!!! :top:

Ik heb dus Avast verwijderd en opnieuw geïnstalleerd... combinatie Chrome en Avast getest, en hetzelfde resultaat. Kwaadwillige urls worden geblokkeerd, extra tabs met reclame worden geopend, en extra reclame blokjes op sites worden getoond...

nog andere opties, of zeg ik chrome vaarwel...

Ik ga er vanavond mee aan de slag.

Bedankt.!

Volgende pagina werd automatisch in een tweede tab geopend toen ik naar gva.be surfte.

Reimage Repair - Versnel mijn PC

De pagina van gva staat dan ook vol reclame. Er wordt ook een kwaadwillige url geblokkeerd, maar ik kan die url niet selecteren om te kopiëren om hier te plakken

Ik begin te denken dat het aan Avast of Chrome ligt.... pfff...

[ATTACH]37756[/ATTACH]

heb het logje met winrar gezipt... het was te groot.

er werd trouwens niks gevonden

cureit.rar

Ok, doe ik vanavond... eerst werken

Alvast super bedankt voor alle moeite!

[ATTACH]37711[/ATTACH]

Nieuwe scan, geen bedreigingen gevonden, eenzelfde logje, waar eigenlijk niks instaat...

log.txt

Ik heb nogmaals alles doorzocht, maar geen ander log.txt file te vinden.

Zal ik de scan nogmaals laten lopen?

Dit is het enige logbestand dat er staat. De datum en uur bij het bestand is die van het opstarten van de scan.. heel gek.

[ATTACH]37666[/ATTACH]

In bijlage het logje van ESET. (is het normaal dat hier eigenlijk niets instaat??

ESET heeft 7 uur gedraaid. Een 20 tal bedreigingen verwijderd en er een aantal in quarantaine gezet.

log.txt

Printscreen in bijlage

Gezien ADW cleaner niks aan gaf, dacht ik dat het wel opgelost zou zijn. (zie logje vorig bericht).

Net Chrome getest, maar daar blijf ik van Avast meldingen krijgen over een infectie die geblokkeerd werd. Ook werd er een extra tabblad geopend, met reclame...

Ik had een printscreen geplakt in een openoffice writer document, maar ik kan het niet al bijlage toevoegen...

[ATTACH]37655[/ATTACH]

hierbij het logje van ADWcleaner

AdwCleaner[S1].txt

[ATTACH]37652[/ATTACH]

Zoek.exe log in bijlage

zoek-results.txt

Na een aantal minuten starte zoek.exe plots wel. Hij loopt nu...

Zoek.exe wil niet starten. Ik heb rechts geklikt op het icoontje op mijn bureaublad, 'uitvoeren als administrator' aangeklikt, en dan doet hij niets...

Na het updaten van Avast, gisteren, werd chrome overspoeld met Malware. (pop ups, extra tabbladen...) ik heb gisteren ADW cleaner laten lopen en vandaag Malwarebytes, en dat probleem lijkt nu wel opgelost.

Internet explorer werkt normaal.

Maar, telkens ik chrome gebruik, krijg ik constant berichten van Malware via Avast. Internet Explorer geeft niks.

Hier mijn RSIT log:

Logfile of random's system information tool 1.10 (written by random/random)

Run by Geenen at 2014-11-21 23:09:24

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 278 GB (40%) free of 700 GB

Total RAM: 3819 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 23:09:34, on 21/11/2014

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.17420)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe

C:\Program Files (x86)\ONconnect\resources\service\win\ONconnect_service.exe

C:\Users\Geenen\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe

C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe

C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe

C:\Program Files (x86)\Samsung\Kies\Kies.exe

C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe

C:\Program Files (x86)\Launch Manager\LManager.exe

C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe

C:\Program Files (x86)\PowerISO\PWRISOVM.EXE

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\QuickTime\QTTask.exe

C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Launch Manager\LMworker.exe

C:\Program Files\trend micro\Geenen.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: DiscountLocator - {49ae76ad-645b-4dfe-b2a8-4eb27c480fc7} - (no file)

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: (no name) - !{87775fdb-6972-41f9-ae51-8326e38cb206} - (no file)

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k

O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe

O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"

O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup

O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [beid] "C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe" /startup

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKCU\..\Run: [ONconnectService] C:\Program Files (x86)\ONconnect\resources\service\win\ONconnect_service.exe

O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent

O4 - HKCU\..\Run: [Google Update] "C:\Users\Geenen\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [Google+ Auto Backup] "C:\Users\Geenen\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart

O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_2A192215D45005C53C58C43C435254F9] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload

O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')

O4 - Global Startup: Philips GoGear SA4RGA_V2 Device Manager.lnk = C:\Program Files (x86)\Philips\GoGear SA4RGA_V2 Device Manager\GoGear_SA4RGA_V2_DeviceManager.exe

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB

O16 - DPF: {28B66320-9687-4B13-8757-36F901887AB5} (CanvasX Class) - http://foto.hema.be/ips-opdata/layout/hema/objects/canvasx.cab

O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - Automatically Find HP Updates | HP Support

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)

O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe

O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe

O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 13020 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

winlogon.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

atieclxx

C:\Windows\system32\svchost.exe -k NetworkService

"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"

C:\Windows\System32\spoolsv.exe

taskeng.exe {E2B09E27-BF5B-4F75-BE04-7647186442A7}

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"

"C:\Program Files\Bonjour\mDNSResponder.exe"

C:\Windows\system32\CxAudMsg64.exe

"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"

"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"

"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window

"C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe"

"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"

C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt

"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"

C:\Windows\System32\svchost.exe -k HPZ12

"C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe" SERVICE

"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

C:\Windows\system32\wbem\wmiprvse.exe

WLIDSvcM.exe 2288

C:\Windows\system32\svchost.exe -k HPService

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

"taskhost.exe"

"C:\Windows\system32\Dwm.exe"

C:\Windows\Explorer.EXE

"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Program Files\Elantech\ETDCtrl.exe"

"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"

"C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe" -autorun

"C:\Program Files (x86)\ONconnect\resources\service\win\ONconnect_service.exe"

C:\Windows\system32\wbem\unsecapp.exe -Embedding

"C:\Users\Geenen\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart

taskeng.exe {C15668ED-FB90-4462-96ED-7AD8D15B80B8}

"C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe"

C:\Windows\system32\SearchIndexer.exe /Embedding

"C:\Program Files\Elantech\ETDCtrlHelper.exe"

"C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe"

"C:\Program Files (x86)\Samsung\Kies\Kies.exe" /preload

"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"

"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k

"C:\Program Files (x86)\Launch Manager\LManager.exe"

"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"

"C:\Program Files (x86)\PowerISO\PWRISOVM.EXE" -startup

"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

"C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"

"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"

"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"C:\Program Files (x86)\iTunes\iTunesHelper.exe"

"C:\Program Files (x86)\Launch Manager\LMworker.exe"

ngservice.exe pipeserver

"C:\Program Files\iPod\bin\iPodService.exe"

C:\Windows\System32\svchost.exe -k secsvcs

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"

"taskhost.exe"

C:\Windows\System32\svchost.exe -k swprv

C:\Windows\system32\vssvc.exe

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe8_ Global\UsGthrCtrlFltPipeMssGthrPipe8 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520

"C:\Users\Geenen\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3361971770-3593541603-1513510909-1000Core.job - C:\Users\Geenen\AppData\Local\Google\Update\GoogleUpdate.exe /c

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3361971770-3593541603-1513510909-1000UA.job - C:\Users\Geenen\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{49ae76ad-645b-4dfe-b2a8-4eb27c480fc7}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-21 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-30 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{49ae76ad-645b-4dfe-b2a8-4eb27c480fc7}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-09-06 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-21 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Aanmeldhulp voor Microsoft-account - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-30 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-09-06 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

!{87775fdb-6972-41f9-ae51-8326e38cb206}

{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -

{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-30 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

!{87775fdb-6972-41f9-ae51-8326e38cb206}

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-30 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-04-05 2589992]

"Power Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2011-05-10 1831528]

"fssui"=C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe [2014-03-31 892608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ONconnectService"=C:\Program Files (x86)\ONconnect\resources\service\win\ONconnect_service.exe [2013-06-24 2801664]

"EA Core"=C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent []

"Google Update"=C:\Users\Geenen\AppData\Local\Google\Update\GoogleUpdate.exe [2014-05-01 116648]

"Google+ Auto Backup"=C:\Users\Geenen\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [2014-08-12 3746120]

"GoogleChromeAutoLaunch_2A192215D45005C53C58C43C435254F9"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-10-22 854344]

"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2014-07-25 1562264]

"KiesAirMessage"=C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]

C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-10-11 60712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent]

C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe [2010-07-04 95576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecPMMUpdate]

C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-09-18 407920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisUpdate]

C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-09-18 201584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]

C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2011-05-10 49208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]

C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-08-09 221184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-10-15 157480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2014-03-31 4272840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Norton Online Backup]

C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2010-06-01 1155928]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

C:\Program Files (x86)\QuickTime\qttask.exe [2014-01-17 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]

C:\Users\Geenen\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2012-10-06 1193176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuiteTray]

C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-09-28 340336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]

C:\PROGRA~2\HP\DIGITA~1\bin\hpqtra08.exe [2009-09-20 270336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Geenen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]

C:\Users\Geenen\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-05-25 27776968]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"BackupManagerTray"=C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [2011-03-09 297280]

"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2011-03-31 1092688]

"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-05-07 336384]

"ArcadeMovieService"=C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [2011-02-19 177448]

"NPSStartup"= []

"PWRISOVM.EXE"=C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [2013-07-22 337432]

"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-21 5226600]

"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-10-11 60712]

"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]

"beid"=C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe /startup []

"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]

"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-07-25 311616]

"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]

"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-10-15 157480]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Philips GoGear SA4RGA_V2 Device Manager.lnk - C:\Program Files (x86)\Philips\GoGear SA4RGA_V2 Device Manager\GoGear_SA4RGA_V2_DeviceManager.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"DisableTaskMgr"=0

"LogonHoursAction"=2

"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"MSVideo8"=VfWWDM32.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-21 23:09:24 ----D---- C:\rsit

2014-11-21 23:09:24 ----D---- C:\Program Files\trend micro

2014-11-21 22:11:32 ----D---- C:\Windows\SYSWOW64\vbox

2014-11-21 22:11:31 ----D---- C:\Windows\system32\vbox

2014-11-21 22:00:03 ----A---- C:\Windows\system32\aswBoot.exe

2014-11-21 21:59:52 ----A---- C:\Windows\avastSS.scr

2014-11-21 20:57:06 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys

2014-11-21 20:56:37 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware

2014-11-21 20:56:37 ----A---- C:\Windows\system32\drivers\mwac.sys

2014-11-21 20:56:37 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys

2014-11-20 23:02:09 ----D---- C:\AdwCleaner

2014-11-20 12:07:30 ----D---- C:\Users\Geenen\AppData\Roaming\QuickScan

2014-11-19 17:23:16 ----A---- C:\Windows\SYSWOW64\pku2u.dll

2014-11-19 17:23:16 ----A---- C:\Windows\system32\pku2u.dll

2014-11-19 17:23:16 ----A---- C:\Windows\system32\kerberos.dll

2014-11-19 17:23:15 ----A---- C:\Windows\SYSWOW64\kerberos.dll

2014-11-17 11:39:10 ----A---- C:\Windows\system32\generaltel.dll

2014-11-17 11:39:09 ----A---- C:\Windows\system32\aepdu.dll

2014-11-17 11:39:07 ----A---- C:\Windows\system32\aeinv.dll

2014-11-17 11:38:58 ----A---- C:\Windows\system32\termsrv.dll

2014-11-17 11:38:57 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2014-11-17 11:38:56 ----A---- C:\Windows\SYSWOW64\adtschema.dll

2014-11-17 11:38:56 ----A---- C:\Windows\system32\lsasrv.dll

2014-11-17 11:38:56 ----A---- C:\Windows\system32\adtschema.dll

2014-11-17 11:38:54 ----A---- C:\Windows\SYSWOW64\msaudite.dll

2014-11-17 11:38:54 ----A---- C:\Windows\system32\msaudite.dll

2014-11-17 11:38:53 ----A---- C:\Windows\SYSWOW64\sspicli.dll

2014-11-17 11:38:53 ----A---- C:\Windows\SYSWOW64\secur32.dll

2014-11-17 11:37:14 ----A---- C:\Windows\system32\oleaut32.dll

2014-11-17 11:37:13 ----A---- C:\Windows\SYSWOW64\oleaut32.dll

2014-11-17 11:37:00 ----A---- C:\Windows\SYSWOW64\iernonce.dll

2014-11-17 11:37:00 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll

2014-11-17 11:36:59 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

2014-11-17 11:36:59 ----A---- C:\Windows\system32\ieetwproxystub.dll

2014-11-17 11:36:59 ----A---- C:\Windows\system32\ieetwcollector.exe

2014-11-17 11:36:57 ----A---- C:\Windows\system32\iernonce.dll

2014-11-17 11:36:57 ----A---- C:\Windows\system32\ie4uinit.exe

2014-11-17 11:36:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2014-11-17 11:36:56 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

2014-11-17 11:36:55 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll

2014-11-17 11:36:54 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

2014-11-17 11:36:54 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

2014-11-17 11:36:54 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll

2014-11-17 11:36:52 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2014-11-17 11:36:44 ----A---- C:\Windows\SYSWOW64\iesetup.dll

2014-11-17 11:36:44 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2014-11-17 11:36:43 ----A---- C:\Windows\system32\iedkcs32.dll

2014-11-17 11:36:42 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2014-11-17 11:36:42 ----A---- C:\Windows\system32\urlmon.dll

2014-11-17 11:36:37 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll

2014-11-17 11:36:37 ----A---- C:\Windows\system32\ieetwcollectorres.dll

2014-11-17 11:36:36 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2014-11-17 11:36:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

2014-11-17 11:36:35 ----A---- C:\Windows\SYSWOW64\ieui.dll

2014-11-17 11:36:35 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

2014-11-17 11:36:35 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe

2014-11-17 11:36:35 ----A---- C:\Windows\system32\dxtrans.dll

2014-11-17 11:36:34 ----A---- C:\Windows\system32\msfeeds.dll

2014-11-17 11:36:31 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2014-11-17 11:36:29 ----A---- C:\Windows\system32\iesetup.dll

2014-11-17 11:36:29 ----A---- C:\Windows\system32\ieapfltr.dll

2014-11-17 11:36:23 ----A---- C:\Windows\system32\iertutil.dll

2014-11-17 11:36:18 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll

2014-11-17 11:36:17 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2014-11-17 11:36:15 ----A---- C:\Windows\SYSWOW64\vbscript.dll

2014-11-17 11:36:14 ----A---- C:\Windows\SYSWOW64\wininet.dll

2014-11-17 11:36:13 ----A---- C:\Windows\system32\jsproxy.dll

2014-11-17 11:36:12 ----A---- C:\Windows\system32\ieUnatt.exe

2014-11-17 11:36:10 ----A---- C:\Windows\SYSWOW64\msrating.dll

2014-11-17 11:36:10 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll

2014-11-17 11:36:03 ----A---- C:\Windows\system32\dxtmsft.dll

2014-11-17 11:36:02 ----A---- C:\Windows\system32\ieui.dll

2014-11-17 11:36:00 ----A---- C:\Windows\system32\ieframe.dll

2014-11-17 11:35:53 ----A---- C:\Windows\system32\mshtmled.dll

2014-11-17 11:35:52 ----A---- C:\Windows\system32\mshtmlmedia.dll

2014-11-17 11:35:51 ----A---- C:\Windows\system32\jscript9diag.dll

2014-11-17 11:35:49 ----A---- C:\Windows\system32\jscript9.dll

2014-11-17 11:35:46 ----A---- C:\Windows\system32\wininet.dll

2014-11-17 11:35:46 ----A---- C:\Windows\system32\vbscript.dll

2014-11-17 11:35:43 ----A---- C:\Windows\system32\MshtmlDac.dll

2014-11-17 11:35:42 ----A---- C:\Windows\system32\msrating.dll

2014-11-17 11:35:39 ----A---- C:\Windows\system32\mshtml.dll

2014-11-12 16:35:15 ----A---- C:\Windows\SYSWOW64\msxml3r.dll

2014-11-12 16:35:15 ----A---- C:\Windows\SYSWOW64\msxml3.dll

2014-11-12 16:35:15 ----A---- C:\Windows\system32\msxml3r.dll

2014-11-12 16:35:15 ----A---- C:\Windows\system32\msxml3.dll

2014-11-12 16:35:12 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL

2014-11-12 16:35:12 ----A---- C:\Windows\system32\IMJP10K.DLL

2014-11-12 16:35:06 ----A---- C:\Windows\system32\schannel.dll

2014-11-12 16:35:05 ----A---- C:\Windows\system32\ncrypt.dll

2014-11-12 16:35:04 ----A---- C:\Windows\SYSWOW64\schannel.dll

2014-11-12 16:35:04 ----A---- C:\Windows\SYSWOW64\ncrypt.dll

2014-11-12 16:35:03 ----A---- C:\Windows\SYSWOW64\wdigest.dll

2014-11-12 16:35:03 ----A---- C:\Windows\SYSWOW64\TSpkg.dll

2014-11-12 16:35:03 ----A---- C:\Windows\SYSWOW64\msv1_0.dll

2014-11-12 16:35:03 ----A---- C:\Windows\system32\wdigest.dll

2014-11-12 16:35:03 ----A---- C:\Windows\system32\TSpkg.dll

2014-11-12 16:35:03 ----A---- C:\Windows\system32\msv1_0.dll

2014-11-12 16:35:02 ----A---- C:\Windows\SYSWOW64\credssp.dll

2014-11-12 16:35:02 ----A---- C:\Windows\system32\credssp.dll

2014-11-12 16:34:51 ----A---- C:\Windows\SYSWOW64\AudioSes.dll

2014-11-12 16:34:51 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll

2014-11-12 16:34:51 ----A---- C:\Windows\SYSWOW64\AudioEng.dll

2014-11-12 16:34:51 ----A---- C:\Windows\system32\EncDump.dll

2014-11-12 16:34:51 ----A---- C:\Windows\system32\audiosrv.dll

2014-11-12 16:34:51 ----A---- C:\Windows\system32\AudioSes.dll

2014-11-12 16:34:51 ----A---- C:\Windows\system32\AUDIOKSE.dll

2014-11-12 16:34:51 ----A---- C:\Windows\system32\AudioEng.dll

2014-11-12 16:34:46 ----A---- C:\Windows\SYSWOW64\packager.dll

2014-11-12 16:34:46 ----A---- C:\Windows\system32\packager.dll

2014-11-12 16:34:45 ----A---- C:\Windows\system32\win32k.sys

2014-11-12 16:34:40 ----A---- C:\Windows\system32\msi.dll

2014-11-12 16:34:39 ----A---- C:\Windows\SYSWOW64\msi.dll

======List of files/folders modified in the last 1 month======

2014-11-21 23:09:29 ----D---- C:\Windows\Temp

2014-11-21 23:09:24 ----D---- C:\Program Files

2014-11-21 22:54:18 ----D---- C:\Windows\System32

2014-11-21 22:23:04 ----D---- C:\Windows\system32\config

2014-11-21 22:16:45 ----SHD---- C:\Windows\Installer

2014-11-21 22:14:19 ----SHD---- C:\System Volume Information

2014-11-21 22:11:32 ----D---- C:\Windows\SysWOW64

2014-11-21 22:09:14 ----D---- C:\ProgramData\clear.fi

2014-11-21 22:00:24 ----D---- C:\Windows\system32\Tasks

2014-11-21 22:00:01 ----D---- C:\Windows

2014-11-21 21:49:14 ----D---- C:\Windows\system32\drivers

2014-11-21 20:56:37 ----RD---- C:\Program Files (x86)

2014-11-21 20:56:37 ----D---- C:\ProgramData\Malwarebytes

2014-11-20 23:10:00 ----HD---- C:\ProgramData

2014-11-20 22:53:58 ----D---- C:\Windows\Tasks

2014-11-20 11:28:15 ----D---- C:\Windows\Microsoft.NET

2014-11-20 10:30:07 ----RSD---- C:\Windows\assembly

2014-11-20 10:08:20 ----D---- C:\Windows\winsxs

2014-11-19 17:19:36 ----D---- C:\Windows\system32\catroot

2014-11-19 17:19:32 ----D---- C:\Windows\system32\catroot2

2014-11-19 15:09:08 ----SD---- C:\Windows\system32\CompatTel

2014-11-19 15:09:07 ----D---- C:\Windows\SYSWOW64\nl-NL

2014-11-19 15:09:07 ----D---- C:\Windows\SYSWOW64\en-US

2014-11-19 15:09:07 ----D---- C:\Windows\system32\nl-NL

2014-11-19 15:09:07 ----D---- C:\Program Files\Internet Explorer

2014-11-19 15:09:05 ----D---- C:\Windows\system32\en-US

2014-11-19 15:09:05 ----D---- C:\Program Files (x86)\Internet Explorer

2014-11-17 12:47:16 ----D---- C:\Windows\inf

2014-11-17 12:47:16 ----A---- C:\Windows\system32\PerfStringBackup.INI

2014-11-17 12:00:22 ----D---- C:\Windows\system32\MRT

2014-11-17 11:46:35 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

2014-11-17 11:45:10 ----A---- C:\Windows\system32\MRT.exe

2014-11-04 14:30:58 ----N---- C:\Windows\system32\MpSigStub.exe

2014-10-29 14:27:41 ----D---- C:\Windows\LiveKernelReports

2014-10-27 21:14:42 ----D---- C:\Users\Geenen\AppData\Roaming\uTorrent

2014-10-27 09:59:57 ----D---- C:\Windows\rescache

2014-10-25 20:04:33 ----D---- C:\Users\Geenen\AppData\Roaming\vlc

2014-10-22 20:13:56 ----A---- C:\Windows\wininit.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-11-21 65776]

R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-11-21 267632]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-11-21 93568]

R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-21 1050432]

R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-11-21 436624]

R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-05-17 22912]

R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-05-17 20328]

R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-05-17 62584]

R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2013-07-22 126872]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-11-21 29208]

R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-11-21 83280]

R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-11-21 116728]

R2 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2013-02-05 57840]

R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-21 271752]

R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-05-07 9078784]

R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-05-06 299520]

R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-03-17 2712064]

R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2011-03-30 114704]

R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2011-01-11 1495680]

R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-04-05 142632]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]

R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-09-27 76912]

R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2011-03-10 18432]

R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2011-03-10 17408]

R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-11-28 44672]

S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]

S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]

S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]

S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]

S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2013-05-18 14448]

S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2013-05-18 27760]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-06-17 246376]

S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2010-04-27 127488]

S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2010-04-27 18944]

S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2010-04-27 161280]

S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]

S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2010-06-14 16448]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]

S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]

S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-05-07 203776]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-10-07 60744]

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-21 50344]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]

R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2010-12-17 198784]

R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-03-31 352848]

R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2011-05-10 872552]

R2 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]

R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]

R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2012-04-05 255376]

R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 NOBU;Norton Online Backup; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2010-06-01 2804568]

R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2011-03-09 257344]

R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]

R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-21 4012248]

R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-10-15 643880]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-04-30 116648]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-17 267440]

S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-09-28 172912]

S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-06-29 655624]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-04-30 116648]

S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-12 194032]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 114688]

S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-22 1255736]

S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Alvast bedankt voor jullie hulp!