Ga naar inhoud

Kan Geen Verbinding Maken Met Proxyserver


Aanbevolen berichten

Hiii,

Zoals vele andere kan ook in geen verbinding maken met de proxyserver.
Zojuist RSIT gedownload en hierbij het gevraagde log. Zou iemand mij s.v.p. willen helpen? 
 

Logfile of random's system information tool 1.10 (written by random/random)
Run by Mariska at 2014-12-09 14:26:01
Microsoft Windows 8.1 
System drive C: has 396 GB (85%) free of 465 GB
Total RAM: 4008 MB (29% free)
 
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:26:31, on 9-12-2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
 
Running processes:
C:\Program Files (x86)\RocketTab\Client.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\TOSHIBA\System Setting\TssSrv.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\syswow64\wwahost.exe
C:\Program Files\trend micro\Mariska.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com/?pc=TEJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:49455;https=127.0.0.1:49455
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AmIcoSinglun64] "C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
O4 - HKLM\..\Run: [1.TPUReg] "C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe"
O4 - HKLM\..\Run: [TSVU] "c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
O4 - Startup: Send to OneNote.lnk = C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AtherosSvc - Windows ® Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: DTS APO Service (dts_apo_service) - Unknown owner - C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel® ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - Toshiba Corporation - C:\Program Files\TOSHIBA\Teco\TecoService.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update service - Company - C:\Program Files (x86)\Popcorn Time\Updater.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 
--
End of file - 12201 bytes
 
======Listing Processes======
 
 
 
 
 
 
wininit.exe
winlogon.exe
 
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
taskeng.exe {2D046491-95A2-43A8-A5EE-D55637E4BB14}
taskhostex.exe 
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe"
dashost.exe {9ad038c2-65a0-4a5f-a8bc647beed516a7}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe
"C:\Program Files (x86)\Popcorn Time\Updater.exe"
"C:\Program Files\TOSHIBA\Teco\TecoService.exe"
"C:\Program Files (x86)\RocketTab\Client.exe"  /Preferred=true
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\skydrive.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
ngservice.exe pipeserver
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Windows\System32\igfxtray.exe" 
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Windows\System32\hkcmd.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Windows\System32\igfxpers.exe" 
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe" 
"C:\Program Files (x86)\TOSHIBA\System Setting\TssSrv.exe" 
"C:\Program Files\TOSHIBA\Teco\TecoResident.exe" 
"C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe" 
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5564.0.1691359794\57698703" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17,38 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3308 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" 
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" 
"C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="DomRel-Enable/enable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="5564.1.332537902\1201261551" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="5564.2.82877862\172723024" /prefetch:673131151
"C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE" /tsr
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" 
"C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe" 
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE" 
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\iTunes\iTunesHelper.exe" 
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="5564.4.2087743074\2036113365" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi-broker --channel="5564.5.1420789935\241599713" --lang=nl /prefetch:845217598
"C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe" /hide
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="5564.8.1079541076\741701720" /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe" 
"C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe" 
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17499_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
"C:\Windows\syswow64\wwahost.exe" -ServerName:App.wwa
taskhost.exe $(Arg0)
"C:\Program Files\AVAST Software\Avast\ng\ngtool.exe" avast reinstall
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
taskhost.exe 
"C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe" --comment NgBase --startvm cf708399-cd74-4baa-a6f8-01454795bb50
 
"C:\Windows\System32\WWAHost.exe" -ServerName:Windows.Store
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\Windows\system32\SearchFilterHost.exe" 0 568 572 580 65536 576 
 
"C:\Users\Mariska\Downloads\RSITx64.exe" 
 
======Scheduled tasks folder======
 
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 
 
======Registry dump======
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-10-22 218776]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-12-09 705448]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-08-11 256456]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2014-10-14 2334928]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-10-22 153248]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-12-09 586968]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-08-11 194504]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2014-10-14 1729752]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-08-11 256456]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-08-11 194504]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-09-20 391152]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-09-20 771056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-09-20 769520]
"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-08-27 1028896]
"TSSSrv"=C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [2013-09-12 296520]
"TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2013-08-21 178016]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2013-08-14 354144]
"TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2013-08-18 2556768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-08-06 2778864]
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2014-10-17 43816]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2014-10-17 43816]
"AppleIEDAV"=C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [2014-08-04 1080104]
 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2002-04-12 383768]
"1.TPUReg"=C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2013-03-27 2216800]
"TSVU"=c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [2013-07-23 516512]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-12-09 5226600]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-10-15 157480]
 
C:\Users\Mariska\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Send to OneNote.lnk - C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-09-16 623104]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
 
======File associations======
 
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
 
======List of files/folders created in the last 1 month======
 
2014-12-09 14:26:01 ----D---- C:\rsit
2014-12-09 14:26:01 ----D---- C:\Program Files\trend micro
2014-12-09 14:15:26 ----D---- C:\Windows\SYSWOW64\vbox
2014-12-09 14:15:26 ----D---- C:\Windows\system32\vbox
2014-12-09 13:55:53 ----A---- C:\Windows\system32\aswBoot.exe
2014-12-09 13:55:46 ----A---- C:\Windows\avastSS.scr
2014-12-04 11:27:21 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-25 13:41:58 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-25 13:41:57 ----A---- C:\Windows\system32\msi.dll
2014-11-25 13:41:57 ----A---- C:\Windows\system32\authui.dll
2014-11-25 13:41:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-11-25 13:41:55 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-11-25 13:41:55 ----A---- C:\Windows\system32\msihnd.dll
2014-11-25 13:41:55 ----A---- C:\Windows\system32\consent.exe
2014-11-25 13:41:55 ----A---- C:\Windows\system32\appinfo.dll
2014-11-25 13:41:50 ----A---- C:\Windows\system32\user32.dll
2014-11-25 13:41:49 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-11-25 13:41:48 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2014-11-25 13:41:48 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2014-11-25 13:41:47 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2014-11-25 13:41:43 ----A---- C:\Windows\SYSWOW64\winshfhc.dll
2014-11-25 13:41:43 ----A---- C:\Windows\system32\winshfhc.dll
2014-11-25 13:41:00 ----A---- C:\Windows\system32\mshtml.dll
2014-11-25 13:40:59 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-25 13:40:35 ----A---- C:\Windows\system32\ieframe.dll
2014-11-25 13:40:31 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-25 13:40:26 ----A---- C:\Windows\system32\jscript9.dll
2014-11-25 13:40:24 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-25 13:40:23 ----A---- C:\Windows\system32\wininet.dll
2014-11-25 13:40:22 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-25 13:40:22 ----A---- C:\Windows\system32\urlmon.dll
2014-11-25 13:40:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-25 13:40:21 ----A---- C:\Windows\system32\iertutil.dll
2014-11-25 13:40:20 ----A---- C:\Windows\system32\inetcomm.dll
2014-11-25 13:40:20 ----A---- C:\Windows\system32\actxprxy.dll
2014-11-25 13:40:19 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-11-25 13:40:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-25 13:40:18 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-11-25 13:40:17 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-25 13:40:17 ----A---- C:\Windows\system32\jscript.dll
2014-11-25 13:40:17 ----A---- C:\Windows\system32\ieui.dll
2014-11-25 13:40:16 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-25 13:40:15 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-25 13:40:15 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-25 13:40:15 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-25 13:40:14 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-25 13:40:14 ----A---- C:\Windows\system32\vbscript.dll
2014-11-25 13:40:12 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-25 13:40:12 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-25 13:40:12 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-25 13:40:11 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-25 13:40:11 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-25 13:40:11 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-25 13:40:09 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-11-25 13:40:09 ----A---- C:\Windows\system32\webcheck.dll
2014-11-25 13:40:09 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-25 13:40:08 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-25 13:40:07 ----A---- C:\Windows\SYSWOW64\hlink.dll
2014-11-25 13:40:07 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-25 13:40:06 ----A---- C:\Windows\system32\hlink.dll
2014-11-25 13:40:05 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-25 13:40:05 ----A---- C:\Windows\system32\iesysprep.dll
2014-11-25 13:40:05 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-25 13:40:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-25 13:40:04 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-25 13:40:04 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-11-25 13:40:04 ----A---- C:\Windows\system32\iepeers.dll
2014-11-25 13:40:04 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-25 13:40:03 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-11-25 13:40:03 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-11-25 13:40:03 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-11-25 13:40:03 ----A---- C:\Windows\system32\inseng.dll
2014-11-25 13:40:02 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-11-25 13:40:02 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-11-25 13:40:02 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-25 13:40:01 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-11-25 13:40:01 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-25 13:40:01 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-25 13:40:01 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-25 13:40:01 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-25 13:40:00 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-11-25 13:40:00 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-11-25 13:40:00 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-25 13:39:59 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-25 13:39:59 ----A---- C:\Windows\system32\occache.dll
2014-11-25 13:39:59 ----A---- C:\Windows\system32\msrating.dll
2014-11-25 13:39:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-25 13:39:58 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-11-25 13:39:58 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-25 13:39:58 ----A---- C:\Windows\system32\licmgr10.dll
2014-11-25 13:39:58 ----A---- C:\Windows\system32\imgutil.dll
2014-11-25 13:39:57 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-11-25 13:39:57 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-11-25 13:39:57 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-11-25 13:39:57 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-25 13:39:57 ----A---- C:\Windows\system32\pngfilt.dll
2014-11-25 13:39:56 ----A---- C:\Windows\SYSWOW64\url.dll
2014-11-25 13:39:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-25 13:39:56 ----A---- C:\Windows\system32\url.dll
2014-11-25 13:39:56 ----A---- C:\Windows\system32\iernonce.dll
2014-11-25 13:39:55 ----A---- C:\Windows\system32\wextract.exe
2014-11-25 13:39:55 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-11-25 13:39:54 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-11-25 13:39:54 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-11-25 13:39:54 ----A---- C:\Windows\system32\mshta.exe
2014-11-25 13:39:54 ----A---- C:\Windows\system32\msfeedssync.exe
2014-11-25 13:39:54 ----A---- C:\Windows\system32\iexpress.exe
2014-11-25 13:39:54 ----A---- C:\Windows\system32\iesetup.dll
2014-11-25 13:39:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-25 13:39:02 ----A---- C:\Windows\system32\schannel.dll
2014-11-25 13:39:02 ----A---- C:\Windows\system32\dpapisrv.dll
2014-11-25 13:39:01 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2014-11-25 13:39:01 ----A---- C:\Windows\system32\ncryptsslp.dll
2014-11-25 13:38:34 ----A---- C:\Windows\system32\rdpcorets.dll
2014-11-25 13:38:33 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-11-25 13:38:33 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-25 13:38:33 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-25 13:38:33 ----A---- C:\Windows\system32\drivers\cng.sys
2014-11-25 13:38:33 ----A---- C:\Windows\system32\certcli.dll
2014-11-25 13:38:32 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-25 13:38:32 ----A---- C:\Windows\system32\rfxvmt.dll
2014-11-25 13:38:32 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-11-25 13:38:32 ----A---- C:\Windows\system32\adtschema.dll
2014-11-25 13:38:31 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-25 13:38:31 ----A---- C:\Windows\system32\msaudite.dll
2014-11-25 13:38:30 ----A---- C:\Windows\system32\rdpudd.dll
2014-11-25 13:37:41 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-25 13:37:40 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-25 13:37:37 ----A---- C:\Windows\system32\wuaueng.dll
2014-11-25 13:37:36 ----A---- C:\Windows\system32\wuapi.dll
2014-11-25 13:37:35 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-11-25 13:37:35 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-11-25 13:37:35 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-11-25 13:37:35 ----A---- C:\Windows\system32\wucltux.dll
2014-11-25 13:37:34 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-11-25 13:37:34 ----A---- C:\Windows\system32\wuwebv.dll
2014-11-25 13:37:34 ----A---- C:\Windows\system32\wups.dll
2014-11-25 13:37:34 ----A---- C:\Windows\system32\wudriver.dll
2014-11-25 13:37:34 ----A---- C:\Windows\system32\wuauclt.exe
2014-11-25 13:37:33 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-11-25 13:37:33 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-11-25 13:37:33 ----A---- C:\Windows\system32\wups2.dll
2014-11-25 13:37:33 ----A---- C:\Windows\system32\wuapp.exe
2014-11-25 13:37:33 ----A---- C:\Windows\system32\wuaext.dll
2014-11-25 13:36:37 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-25 13:36:36 ----A---- C:\Windows\system32\msxml3.dll
2014-11-25 13:36:24 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-25 13:36:23 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-25 13:36:22 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-25 13:36:22 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-25 13:36:22 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-25 13:36:22 ----A---- C:\Windows\system32\audiodg.exe
2014-11-25 13:36:21 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-25 13:36:20 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-25 13:36:20 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-25 13:36:18 ----A---- C:\Windows\system32\EncDump.dll
2014-11-25 13:36:17 ----A---- C:\Windows\system32\kerberos.dll
2014-11-25 13:36:16 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-25 13:36:16 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-25 13:36:16 ----A---- C:\Windows\system32\pku2u.dll
2014-11-25 13:36:14 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-25 13:36:14 ----A---- C:\Windows\system32\win32k.sys
2014-11-25 13:36:14 ----A---- C:\Windows\system32\packager.dll
2014-11-25 13:36:13 ----A---- C:\Windows\system32\devinv.dll
2014-11-25 13:36:13 ----A---- C:\Windows\system32\aepdu.dll
2014-11-25 13:36:13 ----A---- C:\Windows\system32\aeinv.dll
2014-11-25 13:36:12 ----A---- C:\Windows\system32\generaltel.dll
2014-11-25 13:36:12 ----A---- C:\Windows\system32\aepic.dll
2014-11-25 13:36:09 ----A---- C:\Windows\system32\shell32.dll
2014-11-25 13:36:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-11-25 13:36:07 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-11-25 13:36:02 ----A---- C:\Windows\system32\SettingsHandlers.dll
2014-11-25 13:36:01 ----A---- C:\Windows\system32\twinui.dll
2014-11-25 13:35:58 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-11-25 13:35:57 ----A---- C:\Windows\system32\MFMediaEngine.dll
2014-11-25 13:35:57 ----A---- C:\Windows\system32\localspl.dll
2014-11-25 13:35:56 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-11-25 13:35:56 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2014-11-25 13:35:55 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2014-11-25 13:35:55 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2014-11-25 13:35:55 ----A---- C:\Windows\system32\win32spl.dll
2014-11-25 13:35:54 ----A---- C:\Windows\system32\WsmSvc.dll
2014-11-25 13:35:54 ----A---- C:\Windows\system32\drivers\netio.sys
2014-11-25 13:35:53 ----AC---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-11-25 13:35:53 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-11-25 13:35:53 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2014-11-25 13:35:53 ----A---- C:\Windows\system32\puiobj.dll
2014-11-25 13:35:52 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-11-25 13:35:52 ----A---- C:\Windows\system32\untfs.dll
2014-11-25 13:35:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-11-25 13:35:51 ----A---- C:\Windows\system32\FXSCOMEX.dll
2014-11-25 13:35:46 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2014-11-25 13:35:46 ----A---- C:\Windows\system32\FXSAPI.dll
 
======List of files/folders modified in the last 1 month======
 
2014-12-09 14:26:01 ----D---- C:\Program Files
2014-12-09 14:25:54 ----D---- C:\Windows\Prefetch
2014-12-09 14:19:59 ----RAD---- C:\Windows\System32
2014-12-09 14:16:19 ----D---- C:\Windows\Temp
2014-12-09 14:16:10 ----HD---- C:\Program Files\WindowsApps
2014-12-09 14:15:46 ----SHD---- C:\System Volume Information
2014-12-09 14:15:26 ----D---- C:\Windows\SysWOW64
2014-12-09 14:15:21 ----D---- C:\Windows\AppReadiness
2014-12-09 14:09:13 ----D---- C:\Windows\system32\sru
2014-12-09 14:07:52 ----D---- C:\Windows\system32\config
2014-12-09 14:05:47 ----D---- C:\Windows\Inf
2014-12-09 14:05:47 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-12-09 13:56:20 ----D---- C:\Windows\system32\DriverStore
2014-12-09 13:56:14 ----D---- C:\Windows\system32\drivers
2014-12-09 13:56:07 ----D---- C:\Windows\system32\Tasks
2014-12-09 13:55:53 ----AD---- C:\Windows
2014-12-09 13:54:20 ----RD---- C:\Program Files (x86)
2014-12-08 15:54:32 ----SHD---- C:\Windows\Installer
2014-12-08 12:41:04 ----D---- C:\Windows\Microsoft.NET
2014-12-04 16:52:27 ----D---- C:\Windows\WinSxS
2014-12-04 16:49:10 ----RSD---- C:\Windows\assembly
2014-12-04 11:29:58 ----D---- C:\Windows\system32\catroot
2014-12-02 10:32:17 ----SD---- C:\Windows\system32\CompatTel
2014-12-02 10:32:16 ----RD---- C:\Windows\ToastData
2014-12-02 10:32:15 ----RD---- C:\Windows\ImmersiveControlPanel
2014-12-02 10:32:14 ----D---- C:\Windows\apppatch
2014-12-02 10:32:13 ----D---- C:\Program Files\Windows Defender
2014-12-02 10:32:13 ----D---- C:\Program Files (x86)\Windows Defender
2014-12-02 10:32:12 ----D---- C:\Windows\system32\wbem
2014-12-02 10:32:11 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-12-02 10:32:11 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-02 10:32:11 ----D---- C:\Windows\system32\nl-NL
2014-12-02 10:32:11 ----D---- C:\Windows\system32\en-US
2014-12-02 10:32:10 ----D---- C:\Windows\SYSWOW64\migration
2014-12-02 10:32:10 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-02 10:32:09 ----D---- C:\Windows\system32\migration
2014-12-02 10:32:08 ----D---- C:\Program Files\Internet Explorer
2014-12-01 14:04:46 ----D---- C:\Windows\CbsTemp
2014-11-25 17:14:41 ----D---- C:\Windows\Tasks
2014-11-25 16:42:01 ----D---- C:\ProgramData\Microsoft Help
2014-11-25 16:28:56 ----A---- C:\Windows\win.ini
2014-11-25 13:52:58 ----D---- C:\Windows\system32\MRT
2014-11-25 13:48:31 ----A---- C:\Windows\system32\MRT.exe
2014-11-25 13:35:01 ----D---- C:\Windows\system32\catroot2
 
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-12-09 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-12-09 267632]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-07 644968]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-08-09 30496]
R0 tos_sps64;@oem24.inf,%SERVICE_DESC_amd64%;TOSHIBA tos_sps64 Service; C:\Windows\System32\drivers\tos_sps64.sys [2012-06-18 499096]
R0 TVALZ;@oem20.inf,%TVALZ.SvcDesc%;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\System32\drivers\TVALZ_O.SYS [2013-08-15 32832]
R0 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\Windows\System32\Drivers\TVALZFL.sys [2012-07-22 16768]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-12-09 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-12-09 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-12-09 436624]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-12-09 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-12-09 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-12-09 116728]
R2 PEGAGFN;PEGAGFN; \??\C:\Program Files (x86)\TOSHIBA\PasswordUtility\PEGAGFN.sys [2009-09-11 14344]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-12-09 271752]
R3 AmUStor;@oem23.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2013-06-25 109336]
R3 athr;@oem21.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2013-08-16 3859968]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2013-10-01 594632]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\Windows\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-09-16 4177920]
R3 iwdbus;@oem9.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2013-08-22 26008]
R3 L1C;@oem16.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C63x64.sys [2013-07-18 130248]
R3 MEIx64;@oem5.inf,%TEE_SvcDesc%;Intel® Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-04 99288]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2013-08-09 11268384]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2014-01-27 167424]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-08-06 34544]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2013-08-16 551936]
R3 SynTP;@oem34.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-08-06 528112]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2012-07-25 31184]
R3 Thotkey;@oem17.inf,%Thotkey%;Toshiba Hotkey Driver; C:\Windows\System32\drivers\Thotkey.sys [2013-08-19 32624]
R3 tosrfec;@oem25.inf,%busenum.SVCDESC%;Bluetooth ACPI; C:\Windows\System32\drivers\tosrfec.sys [2013-11-01 27032]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 intaud_WaveExtensible;@oem8.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-08-22 39320]
S3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-09-16 449528]
S3 RTWlanE;@netrtwlane.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\Windows\system32\DRIVERS\rtwlane.sys [2013-07-31 1936088]
S3 USBAAPL64;@oem36.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-07-28 54784]
 
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-10-07 60744]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-10-01 312448]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-12-09 50344]
R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 dts_apo_service;DTS APO Service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [2013-09-10 19792]
R2 GFNEXSrv;GFNEX Service; C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe [2013-03-27 163168]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696]
R2 Intel® ME Service;Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2013-09-04 131544]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]
R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2013-09-04 390616]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-08-09 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2013-08-16 339456]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\Teco\TecoService.exe [2013-08-10 328544]
R2 Update service;Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [2014-10-09 179200]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-12-09 4012248]
R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-10-15 643880]
R3 TMachInfo;TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2013-07-31 53864]
R3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2013-09-04 466504]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-11 116648]
S3 cphs;Intel® Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-09-20 279024]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-22 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-11 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-11 194032]
S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]
S3 TemproMonitoringService;TEMPRO Service; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2013-07-19 116088]
 
-----------------EOF-----------------
 

log.txt

Link naar reactie
Delen op andere sites


  • Reacties 20
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Goedenavond Mariska,
 
Mijn naam is Mako en ik zal je verder begeleiden doorheen de malware behandeling. Mochten er vragen zijn bij de opgegeven instructies of onduidelijkheden, stel gerust!

Schakel uw antivirussoftware tijdelijk uit en download 51a612a8b27e2-Zoek.pngZoek.exe naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.

Zoek.exe uitvoeren (voor meer informatie kunt u deze handleiding raadplegen)
Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.

  • Dubbelklik vervolgens op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
    torpigcheck;
    autoclean;
    emptyclsid;
    emptyfolderscheck;delete
    C:\Program Files (x86)\RocketTab;fs
    
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Voeg nu het geopende logbestand in het volgende bericht als bijlage. U kunt bestanden toevoegen via de knop "Meer Berichtopties" (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)

 




Download 51a5d669693dd-icon_OTL.pngOTL naar het bureaublad.

OTL uitvoeren
  • Dubbelklik op "OTL.exe" om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Wanneer er een melding verschijnt van het gebruikersaccountbeheer klik dan op "Ja / Yes".
  • Vink bovenin OTL de optie "Scan all users" aan.
  • Klik nu op de knop "Run Scan" 511b6947e8e98-runscan.png.
  • Wanneer OTL gereed is zullen er twee log bestanden worden geopend met de naam (OTL.txt) en (Extras.txt).
  • Voeg beide bestanden nu als bijlage toe aan het volgende bericht.

 

Fijne avond,

Mako

aangepast door Mako
Link naar reactie
Delen op andere sites


Hoi,
 
Ziet er al min of meer in orde uit. Hier en daar nog iets klein wat weggewerkt dient te worden, maar geen grof werk meer :top:.


Start 51a5d669693dd-icon_OTL.png OTL opnieuw.

  • Kopieer en plak In het Custom Scans/Fixes 511b6a48b3416-customFix.png veld de onderstaande code.
    Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
    :Commands
    [CREATERESTOREPOINT]
    :OTL
    IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {C43590D0-00BC-4619-BE7F-82E21B7AB7D7}
    IE - HKLM\..\SearchScopes,DefaultScope = {C43590D0-00BC-4619-BE7F-82E21B7AB7D7}
    CHR - Extension: No name found = C:\Users\Mariska\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
    CHR - Extension: No name found = C:\Users\Mariska\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
    @Alternate Data Stream - 237 bytes -> C:\Users\Mariska\SkyDrive:ms-properties
    
    :Commands
    [emptyjava]
    [EMPTYFLASH]
    [reboot]
    
  • Klik op Run Fix bovenaan.
  • Laat het programma ongehinderd werken, herstart de computer als het klaar is en sla de log op die verschijnt.
  • Open OTL weer en klik op Quick Scan bovenaan.

OTL logbestand plaatsen

  • Voeg het logbestand van de "Quick Scan" en van de "Fix" als bijlage toe aan het volgende bericht.
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

 



Download 51a46ae42d560-malwarebytes_anti_malware.MalwareBytes Anti-Malware bij voorkeur naar het bureaublad.

  • Dubbelklik op mbam-setup-2.0.exe om de installatie van Malwarebytes Anti-Malware te starten.
  • Volg de verdere aanwijzingen, de volledige installatieprocedure kunt u nalezen op de volgende link - Malwarebytes Anti-Malware installeren.
  • Klik vervolgens op de knop Scan nu om een bedreigingsscan uit te voeren.
  • Er zal nu gecontroleerd worden op beschikbare updates, klik hier op "Nu bijwerken als er beschikbare updates zijn.
  • De scan wordt nu automatisch gestart, gebruik de computer bij voorkeur niet tijdens de scan.
  • Wanneer er geen bedreigingen zijn gedetecteerd klikt u na de scan op Bekijk gedetailleerd logboek.
    • Klik vervolgens op de knop Exporteer en kies de optie "Tekstbestand (*.txt)".
    • Geef vervolgens een bestandsnaam op voor het opslaan van het logbestand, bijvoorbeeld MBAM Scanlog.
    • Kies bijvoorbeeld het bureaublad als opslaglocatie en klik vervolgens op de knop Opslaan.
  • Wanneer er wel bedreigingen zijn gedetecteerd klikt u na de scan op Acties toepassen.
    • Bij de melding om de computer opnieuw op te starten klikt u op Ja / Yes.
    • Open na de herstart MalwareBytes Anti-Malware en klik bovenaan op Historie en selecteer Programmalogboeken.
    • Selecteer het laatste Scanlogboek en klik op de knop Bekijk.
    • Geef vervolgens een bestandsnaam op voor het opslaan van het logbestand, bijvoorbeeld MBAM Scanlog.
    • Kies bijvoorbeeld het bureaublad als opslaglocatie en klik vervolgens op de knop Opslaan.
    • Voeg het logbestand wat u zojuist heeft opgeslagen als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in Malwarebytes Anti-Malware bij Historie > Programmalogboeken)

532aab157609a-MBAM-Scan.png

 

Fijne avond,

Mako

Link naar reactie
Delen op andere sites


Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen


×
×
  • Nieuwe aanmaken...