Ga naar inhoud

Kan geen e-mail verzenden

kreve028

Door kreve028
in Archief E-mailprogramma's

 Delen

Aanbevolen berichten

  • Reacties 22
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

Geplaatste afbeeldingen

clarkie Grootmeester

clarkie

Geplaatst:
Geplaatst:

Zou jouw probleem hier (klik erop) mee te maken hebben?

Kan je wel via webmail e-mails versturen?

 

Voer ook onderstaande uit.

 

Download 51a5f5d096dae-icon_RSIT.png RSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hoe je controleert of je met een 32- of 64-bitversie van Windows werkt kan je hier bekijken.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen

 

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

De handleiding voor het gebruik van RSIT kan je HIER bekijken en we hebben ook nog een instructievideo.

Link naar reactie
Delen op andere sites
clarkie Grootmeester

clarkie

Geplaatst:
Geplaatst:

Onderstaande via PB ontvangen.

 

post-9560-0-19742500-1424198520.png

 

Over welke tip heb je het?

Want in mijn vorig bericht ging het over de mailserver van Planet en of je via webmail wel e-mails kan verzenden.

 

Ook werd gevraagd om RSIT uit te voeren.

 

Dus graag antwoord op bovenstaande vragen en het RSIT logje in je volgend bericht.

 

Link naar reactie
Delen op andere sites
kreve028 Leerling

kreve028

Geplaatst:
  • Auteur
Geplaatst:

Het gaat om de mailserver van Planet. Ik heb RSIT uitgevoerd.

 

info.txt logfile of random's system information tool 1.10 2015-02-17 12:52:25

======MBR======

0x000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000033DEC3B2000000000200EEFFFFFF01000000FFFFFFFF00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055AA

======Uninstall list======

-->"C:\ProgramData\Package Cache\{d491dd9d-2eda-4d75-b504-1a201436e7fd}\vcredist_x64.exe"  /uninstall
64 Bit HP CIO Components Installer-->MsiExec.exe /I{FF21C3E6-97FD-474F-9518-8DCBE94C2854}
abDocs Office AddIn-->MsiExec.exe /I{DCBF3379-246B-47E1-8173-639B63940838}
abDocs-->C:\Program Files (x86)\Acer\abDocs\AcerDocsSetup.exe -uninstall
abFiles-->C:\Program Files (x86)\Acer\abFiles\abFilesSetup.exe -uninstall
abMedia-->C:\Program Files (x86)\Acer\abMedia\abMediaSetup.exe -uninstall
ABN AMRO e.dentifier2 software-->MsiExec.exe /X{55BF7E3E-F00A-4A3D-BB76-09228B35FFD6}
abPhoto-->C:\Program Files (x86)\Acer\abPhoto\abPhotoSetup.exe -uninstall
Acer Care Center-->Msiexec.exe /i {A424844F-CDB3-45E2-BB77-1DDE4A091E76} ACER=1 PRODUCTNAME="Acer Care Center" REMOVEUSEC=1 BOOTSTRATOR=1
Acer Explorer Agent-->Msiexec.exe /i {4D0F42CF-1693-43D9-BDC8-19141D023EE0} ACER=1 PRODUCTNAME="Acer Explorer Agent" REMOVEUSEC=1 BOOTSTRATOR=1
Acer Launch Manager-->MsiExec.exe /i {C18D55BD-1EC6-466D-B763-8EEDDDA9100E} BOOTSTRATOR=1 GPRODUCTNAME="Acer Launch Manager" BRANDNAME="Acer" ISDT=0
Acer Portal-->C:\Program Files (x86)\Acer\Acer Portal\uninstall.exe
Acer Power Management-->MsiExec.exe /i {91F52DE4-B789-42B0-9311-A349F10E5479} PRODUCTNAME="Acer Power Management" BRANDNAME="Acer" NEWUPGRADE=0 BOOTSTRATOR=1 ISDT=0
Acer Quick Access-->MsiExec.exe /i {C1FA525F-D701-4B31-9D32-504FC0CF0B98} BOOTSTRATOR=1 GPRODUCTNAME="Acer Quick Access" BRANDNAME="Acer" ISDT=0
Acer Recovery Management-->Msiexec.exe /i {07F2005A-8CAC-4A4B-83A2-DA98A722CA61} ACER=1 PRODUCTNAME="Acer Recovery Management" REMOVEUSEC=1 BOOTSTRATOR=1 ACERPRELOAD=1
Acer User Experience Improvement Program App Monitor Plugin-->MsiExec.exe /i {978724F6-1863-4DD5-9E66-FB77F5AB5613} PRODUCTNAME="Acer User Experience Improvement Program App Monitor Plugin" BRANDNAME="Acer" BOOTSTRATOR=1
Acer User Experience Improvement Program Framework-->MsiExec.exe /i {12A718F2-2357-4D41-9E1F-18583A4745F7} PRODUCTNAME="Acer User Experience Improvement Program Framework" BRANDNAME="Acer" BOOTSTRATOR=1
Acer Video Player-->C:\Program Files (x86)\Acer\Acer Video Player\clearfiSetup.exe -uninstall
Adobe Flash Player 16 NPAPI-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_16_0_0_305_Plugin.exe -maintain plugin
Aloha TriPeaks-->"C:\Program Files (x86)\WildGames\Aloha TriPeaks\uninstall\uninstaller.exe"
AOP Framework-->C:\Program Files (x86)\Acer\AOP Framework\uninstall.exe
AVG 2015-->"C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe" /AppMode=SETUP /Uninstall /UDS=1
AVG 2015-->MsiExec.exe /I{966F007B-0D8A-44A6-A6C3-5395983C356D}
AVG 2015-->MsiExec.exe /I{CBEB60E3-3008-424D-ACE8-96AB98E480FB}
AVG PC TuneUp 2015-->C:\Program Files (x86)\AVG\AVG PC TuneUp\TUInstallHelper.exe --Trigger-Uninstall
AVG Web TuneUp-->C:\Program Files (x86)\AVG Web TuneUp\UNINSTALL.exe /PROMPT /UNINSTALL
Bejeweled 2 Deluxe-->"C:\Program Files (x86)\WildGames\Bejeweled 2 Deluxe\uninstall\uninstaller.exe"
Bing Bar-->MsiExec.exe /X{3611CA6C-5FCA-4900-A329-6A118123CCFC}
Broadcom 802.11 Network Adapter-->"C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter"
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CyberLink PhotoDirector 3-->"C:\Program Files (x86)\InstallShield Installation Information\{39337565-330E-4ab6-A9AE-AC81E0720B10}\Setup.exe" /z-uninstall
CyberLink PhotoDirector 3-->"C:\Program Files (x86)\InstallShield Installation Information\{39337565-330E-4ab6-A9AE-AC81E0720B10}\Setup.exe" /z-uninstall
CyberLink PowerDirector 10-->"C:\Program Files (x86)\InstallShield Installation Information\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}\setup.exe" /z-uninstall
CyberLink PowerDirector 10-->"C:\Program Files (x86)\InstallShield Installation Information\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}\setup.exe" /z-uninstall
Dam 2.2-->"C:\Program Files (x86)\Dam22\unins000.exe"
eBay Worldwide-->MsiExec.exe /I{91589413-6675-4C27-8AFC-EFB9103B90A5}
Farm to Fork Collector's Edition-->"C:\Program Files (x86)\WildGames\Farm to Fork Collectors Edition\uninstall\uninstaller.exe"
Foxit PhantomPDF-->MsiExec.exe /X{D4DF5498-C95C-4A02-9951-725FB2D7BC0D}
Game Explorer Categories - genres-->"C:\Program Files (x86)\WildTangent Games\Game Explorer Categories - genres\Uninstall.exe"
Game Explorer Categories - main-->"C:\Program Files (x86)\WildTangent Games\Game Explorer Categories - main\Uninstall.exe"
Google Toolbar for Internet Explorer-->"C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_0531C63A913CC9D1.exe" /uninstall
Governor of Poker 2 Premium Edition-->"C:\Program Files (x86)\WildGames\Governor of Poker 2 Premium Edition\uninstall\uninstaller.exe"
HP Customer Participation Program 14.0-->C:\Program Files (x86)\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat -forcereboot
HP Imaging Device Functions 14.0-->C:\Program Files (x86)\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart B010 All-In-One Driver Software 14.0 Rel. 7-->C:\Program Files (x86)\HP\Digital Imaging\{19B5D345-8500-48A7-9737-558E5EEB063C}\setup\hpzscr40.exe -datfile hposcr51.dat -onestop -forcereboot
HP Solution Center 14.0-->C:\Program Files (x86)\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat -forcereboot
HP Update-->MsiExec.exe /X{912D30CF-F39E-4B31-AD9A-123C6B794EE2}
Intel® Control Center-->C:\Program Files (x86)\Intel\Intel Control Center\uninstaller\SetupICC.exe -uninstall -force -confirm
Intel® Processor Graphics-->C:\Program Files (x86)\Intel\Intel® Processor Graphics\Uninstall\setup.exe -uninstall
Intel® Trusted Execution Engine Driver-->MsiExec.exe /I{6307E820-0317-4DCE-AAE0-7B6CAD867055}
Intel® Trusted Execution Engine-->"C:\ProgramData\Intel\Package Cache\{176E2755-0A17-42C6-88E2-192AB2131278}\Setup.exe" -uninstall
Intel® Trusted Execution Engine-->MsiExec.exe /I{2D6248C0-4693-4CAB-9922-F05E4015F62A}
Jewel Match 3-->"C:\Program Files (x86)\WildGames\Jewel Match 3\uninstall\uninstaller.exe"
John's Background Switcher 4.9-->C:\Program Files (x86)\johnsadventures.com\John's Background Switcher\uninst.exe
King Oddball-->"C:\Program Files (x86)\WildGames\King Oddball\uninstall\uninstaller.exe"
LUXOR Evolved-->"C:\Program Files (x86)\WildGames\LUXOR Evolved\uninstall\uninstaller.exe"
Magic Academy-->"C:\Program Files (x86)\WildGames\Magic Academy\uninstall\uninstaller.exe"
MailWasher-->MsiExec.exe /X{BE58E337-6C3B-45A7-A730-9280E6A72A99}
McAfee LiveSafe – Internet Security-->C:\Program Files\McAfee\MSC\mcuihost.exe /body:misp://MSCJsRes.dll::uninstall.html /id:uninstall
McAfee SafeKey(alleen installatie verwijderen)-->C:\Program Files (x86)\SafeKey\safekey.exe --uninstall
McAfee SiteAdvisor-->C:\Program Files (x86)\McAfee\SiteAdvisor\Uninstall.exe
Microsoft Office 365 - nl-nl-->"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" scenario=install baseurl="C:\Program Files\Microsoft Office 15" platform=x86 version=15.0.4675.1003 culture=nl-nl productstoremove=O365HomePremRetail_nl-nl_x-none
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319-->MsiExec.exe /X{196BB40D-1578-3D01-B289-BEFC77A11A1E}
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030-->MsiExec.exe /X{37B8F9C7-03FB-3253-8781-2517C99D7C00}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}
Monopoly DLX-->wscript.exe //E:JScript "C:\ProgramData\com.gamehouse.acid\uninstall\57bf14391d17eb53140a97e3942a73be.dat"
Mozilla Firefox 15.0.1 (x86 nl)-->C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
Mozilla Thunderbird 24.4.0 (x86 nl)-->C:\Program Files (x86)\Mozilla Thunderbird\uninstall\helper.exe
Office 15 Click-to-Run Extensibility Component-->MsiExec.exe /X{90150000-008C-0000-0000-0000000FF1CE}
Office 15 Click-to-Run Licensing Component-->MsiExec.exe /I{90150000-008F-0000-1000-0000000FF1CE}
Office 15 Click-to-Run Localization Component-->MsiExec.exe /X{90150000-008C-0413-0000-0000000FF1CE}
Online Games Manager v1.30-->C:\Program Files (x86)\Online Games Manager\uninst.exe
Peggle Nights-->"C:\Program Files (x86)\WildGames\Peggle Nights\uninstall\uninstaller.exe"
Picasa 3-->"C:\Program Files (x86)\Google\Picasa3\Uninstall.exe"
PINs 4-->"C:\Program Files (x86)\PINs\uninstall.exe"
Plants vs. Zombies - Game of the Year-->"C:\Program Files (x86)\WildGames\Plants vs Zombies - Game of the Year\uninstall\uninstaller.exe"
Polar Bowler 1st Frame-->"C:\Program Files (x86)\WildGames\Polar Bowler 1st Frame\uninstall\uninstaller.exe"
Realtek Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}\setup.exe" -runfromtemp -removeonly
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe"  -removeonly
Revo Uninstaller 1.95-->C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\uninst.exe
Samsung Kies-->"C:\Program Files (x86)\InstallShield Installation Information\{758C8301-2696-4855-AF45-534B1200980A}\setup.exe" -runfromtemp -l0x0409  -removeonly
Samsung Kies-->MsiExec.exe /I{758C8301-2696-4855-AF45-534B1200980A}
SAMSUNG USB Driver for Mobile Phones-->C:\Program Files (x86)\Samsung\USB Drivers\Uninstall.exe
Shop for HP Supplies-->C:\Program Files (x86)\HP\Digital Imaging\HPSSupply\hpzscr01.exe -datfile hpqbud16.dat
Sigma Data Center 4.0-->"C:\Program Files (x86)\Sigma Data Center 4.0\uninstall.exe" "/U:C:\Program Files (x86)\Sigma Data Center 4.0\Uninstall\uninstall.xml"
Softwarenetz Adressen2-->C:\Windows\snui.exe /uninstall:"Adressen2"
SolSuite 2015 v15.1-->"C:\Program Files (x86)\SolSuite\unins000.exe"
Spotify-->"C:\Program Files (x86)\Spotify\Spotify.exe" /uninstall
The Chronicles of Emerland Solitaire-->"C:\Program Files (x86)\WildGames\The Chronicles of Emerland Solitaire\uninstall\uninstaller.exe"
T-Mobile Internet Manager-->C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\uninst.exe
Trinklit Supreme-->"C:\Program Files (x86)\WildGames\Trinklit Supreme\uninstall\uninstaller.exe"
Update Installer for WildTangent Games App-->"C:\Program Files (x86)\WildTangent Games\App\Uninstall.exe"
Visual Studio 2012 x64 Redistributables-->MsiExec.exe /I{8C775E70-A791-4DA8-BCC3-6AB7136F4484}
Visual Studio 2012 x86 Redistributables-->MsiExec.exe /I{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
WIDCOMM Bluetooth Software-->MsiExec.exe /X{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}
WildTangent Games App (HP Games)-->"C:\Program Files (x86)\WildTangent Games\Touchpoints\hp\Uninstall.exe"
WildTangent Games App-->"C:\Program Files (x86)\WildTangent Games\Touchpoints\acer\Uninstall.exe"
WildTangent Games-->"C:\Program Files (x86)\WildGames\Uninstall.exe"
Windows-stuurprogrammapakket - SIGMA Elektro GmbH (usbser) Ports  (04/27/2012 5.1.2600.5512)-->C:\PROGRA~1\DIFX\8730326CFC0D32D8\DPInst64.exe /u C:\Windows\System32\DriverStore\FileRepository\sigma.inf_amd64_baa3c833513907ba\sigma.inf
Zuma's Revenge-->"C:\Program Files (x86)\WildGames\Zumas Revenge\uninstall\uninstaller.exe"

======System event log======

Computer Name: WIN-26JO2MA4AS7
Event Code: 7040
Message: Het opstarttype van de service Windows Search is gewijzigd van disabled in auto start.
Record Number: 1783
Source Name: Service Control Manager
Time Written: 20141110213727.509886-000
Event Type: Informatie
User: Frank\Administrator

Computer Name: WIN-26JO2MA4AS7
Event Code: 7040
Message: Het opstarttype van de service Windows Search is gewijzigd van auto start in disabled.
Record Number: 1782
Source Name: Service Control Manager
Time Written: 20141110213716.272422-000
Event Type: Informatie
User: Frank\Administrator

Computer Name: WIN-26JO2MA4AS7
Event Code: 104
Message: Logboekbestand Setup is gewist.
Record Number: 1781
Source Name: Microsoft-Windows-Eventlog
Time Written: 20141110213712.631627-000
Event Type: Informatie
User: Frank\Administrator

Computer Name: WIN-26JO2MA4AS7
Event Code: 104
Message: Logboekbestand Application is gewist.
Record Number: 1780
Source Name: Microsoft-Windows-Eventlog
Time Written: 20141110213712.490991-000
Event Type: Informatie
User: Frank\Administrator

Computer Name: WIN-26JO2MA4AS7
Event Code: 104
Message: Logboekbestand System is gewist.
Record Number: 1779
Source Name: Microsoft-Windows-Eventlog
Time Written: 20141110213712.381616-000
Event Type: Informatie
User: Frank\Administrator

=====Application event log=====

Computer Name: WIN-26JO2MA4AS7
Event Code: 0
Message:
Record Number: 733
Source Name: igfxCUIService1.0.0.0
Time Written: 20141110213745.000000-000
Event Type: Informatie
User:

Computer Name: WIN-26JO2MA4AS7
Event Code: 0
Message:
Record Number: 732
Source Name: igfxCUIService1.0.0.0
Time Written: 20141110213745.000000-000
Event Type: Informatie
User:

Computer Name: WIN-26JO2MA4AS7
Event Code: 1003
Message: De Windows Search-service is gestart.

Record Number: 731
Source Name: Microsoft-Windows-Search
Time Written: 20141110213727.000000-000
Event Type: Informatie
User:

Computer Name: WIN-26JO2MA4AS7
Event Code: 1013
Message: De Windows Search-service is normaal gestopt.

Record Number: 730
Source Name: Microsoft-Windows-Search
Time Written: 20141110213726.000000-000
Event Type: Informatie
User:

Computer Name: WIN-26JO2MA4AS7
Event Code: 103
Message: SearchIndexer (2708) Windows: De database-engine heeft de sessie (0) stopgezet.
 
Dirty Shutdown: 0
 
Internal Timing Sequence: [1] 0.000, [2] 0.000, [3] 0.000, [4] 0.000, [5] 0.063, [6] 0.000, [7] 0.000, [8] 0.000, [9] 0.031, [10] 0.000, [11] 0.000, [12] 0.000, [13] 0.000, [14] 0.000, [15] 0.000.
Record Number: 729
Source Name: ESENT
Time Written: 20141110213726.000000-000
Event Type: Informatie
User:

=====Security event log=====

Computer Name: WIN-26JO2MA4AS7
Event Code: 4672
Message: Speciale bevoegdheden toegewezen aan nieuwe aanmelding.

Onderwerp:
 Beveiligings-id:  S-1-5-18
 Accountnaam:  SYSTEM
 Accountdomein:  NT AUTHORITY
 Aanmeldings-id:  0x3E7

Bevoegdheden:  SeAssignPrimaryTokenPrivilege
   SeTcbPrivilege
   SeSecurityPrivilege
   SeTakeOwnershipPrivilege
   SeLoadDriverPrivilege
   SeBackupPrivilege
   SeRestorePrivilege
   SeDebugPrivilege
   SeAuditPrivilege
   SeSystemEnvironmentPrivilege
   SeImpersonatePrivilege
Record Number: 7601
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141110213714.162944-000
Event Type: Controle geslaagd
User:

Computer Name: WIN-26JO2MA4AS7
Event Code: 4624
Message: Er is een account aangemeld.

Onderwerp:
 Beveiligings-id:  S-1-5-18
 Accountnaam:  WIN-26JO2MA4AS7$
 Accountdomein:  WORKGROUP
 Aanmeldings-id:  0x3E7

Aanmeldingstype:   5

Imitatieniveau:   Imitatie

Nieuwe aanmelding:
 Beveiligings-id:  S-1-5-18
 Accountnaam:  SYSTEM
 Accountdomein:  NT AUTHORITY
 Aanmeldings-id:  0x3E7
 Aanmeldings-GUID:  {00000000-0000-0000-0000-000000000000}

Procesgegevens:
 Proces-id:   0x2a0
 Naam proces:  C:\Windows\System32\services.exe

Netwerkgegevens:
 Naam van werkstation: 
 Netwerkadres van bron: -
 Poort van bron:  -

Gedetailleerde verificatiegegevens:
 Aanmeldingsproces:  Advapi 
 Verificatiepakket:  Negotiate
 Doorgezette services: -
 Pakketnaam (alleen NTLM): -
 Sleutellengte:  0

Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen.

De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe.

In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk).

Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld.

In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn.

De velden met authenticatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag.
 - Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis.
 - In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt.
 - Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt.
 - Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd.
Record Number: 7600
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141110213714.162944-000
Event Type: Controle geslaagd
User:

Computer Name: WIN-26JO2MA4AS7
Event Code: 4672
Message: Speciale bevoegdheden toegewezen aan nieuwe aanmelding.

Onderwerp:
 Beveiligings-id:  S-1-5-18
 Accountnaam:  SYSTEM
 Accountdomein:  NT AUTHORITY
 Aanmeldings-id:  0x3E7

Bevoegdheden:  SeAssignPrimaryTokenPrivilege
   SeTcbPrivilege
   SeSecurityPrivilege
   SeTakeOwnershipPrivilege
   SeLoadDriverPrivilege
   SeBackupPrivilege
   SeRestorePrivilege
   SeDebugPrivilege
   SeAuditPrivilege
   SeSystemEnvironmentPrivilege
   SeImpersonatePrivilege
Record Number: 7599
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141110213711.787838-000
Event Type: Controle geslaagd
User:

Computer Name: WIN-26JO2MA4AS7
Event Code: 4624
Message: Er is een account aangemeld.

Onderwerp:
 Beveiligings-id:  S-1-5-18
 Accountnaam:  WIN-26JO2MA4AS7$
 Accountdomein:  WORKGROUP
 Aanmeldings-id:  0x3E7

Aanmeldingstype:   5

Imitatieniveau:   Imitatie

Nieuwe aanmelding:
 Beveiligings-id:  S-1-5-18
 Accountnaam:  SYSTEM
 Accountdomein:  NT AUTHORITY
 Aanmeldings-id:  0x3E7
 Aanmeldings-GUID:  {00000000-0000-0000-0000-000000000000}

Procesgegevens:
 Proces-id:   0x2a0
 Naam proces:  C:\Windows\System32\services.exe

Netwerkgegevens:
 Naam van werkstation: 
 Netwerkadres van bron: -
 Poort van bron:  -

Gedetailleerde verificatiegegevens:
 Aanmeldingsproces:  Advapi 
 Verificatiepakket:  Negotiate
 Doorgezette services: -
 Pakketnaam (alleen NTLM): -
 Sleutellengte:  0

Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen.

De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe.

In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk).

Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld.

In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn.

De velden met authenticatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag.
 - Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis.
 - In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt.
 - Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt.
 - Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd.
Record Number: 7598
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141110213711.787838-000
Event Type: Controle geslaagd
User:

Computer Name: WIN-26JO2MA4AS7
Event Code: 1102
Message: Het controlelogboek is gewist.
Onderwerp:
 Beveiligings-id: S-1-5-21-1647617177-4154128924-3626682048-500
 Accountnaam: Administrator
 Domeinnaam: WIN-26JO2MA4AS7
 Aanmeldings-id: 0x2688F
Record Number: 7597
Source Name: Microsoft-Windows-Eventlog
Time Written: 20141110213712.553499-000
Event Type: Controle geslaagd
User:

======Environment variables======

"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;%systemroot%\system32\windowspowershell\v1.0\;c:\program files\broadcom\broadcom 802.11 network adapter;c:\program files (x86)\intel\txe components\tcs\;c:\program files\intel\txe components\tcs\;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\program files (x86)\acer\abfiles\;c:\program files\widcomm\bluetooth software\;c:\program files\widcomm\bluetooth software\syswow64
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 55 Stepping 8, GenuineIntel
"PROCESSOR_REVISION"=3708

-----------------EOF-----------------

Link naar reactie
Delen op andere sites
clarkie Grootmeester

clarkie

Geplaatst:
Geplaatst: (aangepast)

 

 

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

 

 

Je hebt het verkeerde logje geplaatst.

Het Log.txt bestand moet je in je bericht plaatsen en dus niet het info.txt bestand.

 

OP de vraag of je via de webmail wel e-mails kan vesturen/ontvangen kwam geen antwoord.

aangepast door clarkie
Link naar reactie
Delen op andere sites
kreve028 Leerling

kreve028

Geplaatst:
  • Auteur
Geplaatst:

Hierbij het juiste logje:

 

Logfile of random's system information tool 1.10 (written by random/random)
Run by kreve028 at 2015-02-17 12:51:57
Microsoft Windows 8.1 met Bing
System drive C: has 413 GB (90%) free of 460 GB
Total RAM: 3978 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:52:12, on 17-2-2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Users\kreve028\AppData\Roaming\T-Mobile Internet Manager\ouc.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\DataCardMonitor.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Firetrust\MailWasher\MailWasher.exe
C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\T-Mobile Internet Manager.exe
C:\Program Files\trend micro\kreve028.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
O4 - HKLM\..\Run: C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe" /platui /runkey
O4 - HKCU\..\Run: [AcerPortal] "C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe" startup
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [backgroundSwitcher] "C:\Program Files (x86)\johnsadventures.com\John's Background Switcher\BackgroundSwitcher.exe"
O4 - HKCU\..\Run: [HW_OPENEYE_OUC_T-Mobile Internet Manager] "C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\UpdateDog\ouc.exe"
O4 - HKCU\..\Run: [spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Users\kreve028\AppData\Local\Pokki\Engine\HostAppService.exe  --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\kreve028\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --flag-switches-begin --flag-switches-end --restore-last-session
O4 - Global Startup: Install SafeKey FF RunOnce.lnk = C:\Program Files (x86)\Common Files\lpuninstall.exe
O4 - Global Startup: Install SafeKey IE RunOnce.lnk = C:\Program Files (x86)\Common Files\lpuninstall.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: McAfee SafeKey-formulierinvullingen - file://C:\Users\kreve028\AppData\LocalLow\safekey\context.html?cmd=fillforms
O8 - Extra context menu item: safekey - file://C:\Users\kreve028\AppData\LocalLow\safekey\context.html?cmd=lastpass
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Users\kreve028\AppData\LocalLow\SafeKey\context.html?cmd=fillforms
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
O9 - Extra 'Tools' menuitem: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{7D976435-C2FD-4E22-A0E1-842D50FDD568}: NameServer = 84.241.226.140 84.241.226.9
O17 - HKLM\System\CCS\Services\Tcpip\..\{CEE01DEB-370F-43AC-AE7E-BBD5FC5D6AB0}: NameServer = 84.241.226.140 84.241.226.9
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: @oem19.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\Windows\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel® HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.3.336.0\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Online Games Manager (ogmservice) - RealNetworks, Inc. - C:\Program Files (x86)\Online Games Manager\ogmservice.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13839 bytes

======Listing Processes======

 

 

wininit.exe
winlogon.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\WLANExt.exe 141197797040
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe"
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgemca.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
"C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
"C:\Windows\system32\mfevtps.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
"C:\Windows\SysWOW64\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait
C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-bbcd-5b72ef5cae4e /binaryPath="C:\Program Files (x86)\AVG\AVG2015\"
"C:\Program Files\McAfee\MSC\McAPExe.exe"
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:3016
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-fc3eeb92-b14a-4ab2-b03e-85dc164dd41f -SystemEventPortName:HostProcess-c1cc2f1f-7953-4d03-b1b3-1310145b86bd -IoCancelEventPortName:HostProcess-df669ea9-b884-4719-999d-b3eb323e4155 -NonStateChangingEventPortName:HostProcess-5845b028-eb7f-48b4-bebc-b5f9d7988b41 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6fe55267-75b5-4e04-980c-c1216765e9ae -DeviceGroupId:WpdFsGroup
C:\Windows\system32\wbem\wmiprvse.exe
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Program Files (x86)\Samsung\Kies\Kies.exe" /preload
"C:\Program Files (x86)\johnsadventures.com\John's Background Switcher\BackgroundSwitcher.exe"
"C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
"C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe" /platui /runkey
"C:\Users\kreve028\AppData\Roaming\T-Mobile Internet Manager\ouc.exe" C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\UpdateDog
ctfmon.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\Program Files\Common Files\McAfee\CSP\1.3.336.0\McCSPServiceHost.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Photosmart B010 series#1422197478" -Startup
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\DataCardMonitor.exe"
"C:\Windows\System32\WWAHost.exe" -ServerName:Windows.Store
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe"
taskhost.exe $(Arg0)
"C:\Program Files\mcafee\VirusScan\mcods.exe"
"C:\Program Files (x86)\Firetrust\MailWasher\MailWasher.exe"
"C:\Program Files (x86)\Online Games Manager\ogmservice.exe" --service-run
"C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\T-Mobile Internet Manager.exe"

"C:\Users\kreve028\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 

=========Mozilla firefox=========

ProfilePath - C:\Users\kreve028\AppData\Roaming\Mozilla\Firefox\Profiles\4j5owou6.default

prefs.js - "keyword.URL" -  "https://nl.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=523482&p="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@ABNAMRO/BECON,version=1.00]
"Description"=ABN AMRO e.dentifier2 Plug-in 1.0 for Mozilla
"Path"=C:\Program Files (x86)\ABN AMRO e.dentifier2\Mozilla\npBECON.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
bing.xml
bolcom-nl.xml
google.xml
marktplaats-nl.xml
wikipedia-nl.xml

C:\Users\kreve028\AppData\Roaming\Mozilla\Firefox\Profiles\4j5owou6.default\extensions\
{072844D3-7DEE-45F6-A406-E87F76302E4B}
{62DD0A97-FDD4-421b-94A5-D1A9434450C7}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-01 218784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DB059B3-DD36-4a55-846C-59BE42A1202A}]
McAfee SafeKey Vault - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll [2015-02-02 1055576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-01 2334928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DB059B3-DD36-4a55-846C-59BE42A1202A}]
McAfee SafeKey Vault - C:\Program Files (x86)\SafeKey\LPToolbar.dll [2015-02-02 728560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll [2015-01-24 251504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll [2015-01-24 657904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll [2015-01-24 522224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - McAfee SafeKey - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll [2015-02-02 1055576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll [2015-01-24 251504]
{61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - McAfee SafeKey - C:\Program Files (x86)\SafeKey\LPToolbar.dll [2015-02-02 728560]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AcerPortal"=C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [2014-12-19 2480384]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2015-01-14 1565504]
"BackgroundSwitcher"=C:\Program Files (x86)\johnsadventures.com\John's Background Switcher\BackgroundSwitcher.exe [2014-06-25 117400]
"HW_OPENEYE_OUC_T-Mobile Internet Manager"=C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\UpdateDog\ouc.exe [2009-12-31 110592]
"Spotify Web Helper"=C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [2014-11-10 1168896]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-01-20 7404312]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #1"=C:\Users\kreve028\AppData\Local\Pokki\Engine\HostAppService.exe [2015-02-06 7846216]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2014-12-19 62208]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2015-01-14 311616]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-01-06 3674576]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2014-12-19 90880]
"mcpltui_exe"=C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe [2014-09-17 643064]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Install SafeKey FF RunOnce.lnk - C:\Program Files (x86)\Common Files\lpuninstall.exe
Install SafeKey IE RunOnce.lnk - C:\Program Files (x86)\Common Files\lpuninstall.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\abdocs.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\acercloud docs.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\acerportal.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\carecenter.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\epowerui.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gameconsole-wt.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\intelcontrolcenter.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\quickaccess.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setting.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-02-17 12:51:57 ----D---- C:\rsit
2015-02-15 20:23:56 ----D---- C:\Program Files (x86)\Online Games Manager
2015-02-15 20:23:44 ----D---- C:\Zylom Games
2015-02-15 19:32:20 ----D---- C:\ProgramData\Trymedia
2015-02-15 17:55:28 ----D---- C:\Program Files\trend micro
2015-02-14 15:16:52 ----D---- C:\AdwCleaner
2015-02-14 13:58:07 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-02-14 13:15:40 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-02-14 13:15:37 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2015-02-14 13:15:31 ----A---- C:\Windows\system32\wuaueng.dll
2015-02-14 13:15:31 ----A---- C:\Windows\system32\d3d10warp.dll
2015-02-14 13:15:26 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2015-02-14 13:15:26 ----A---- C:\Windows\system32\mfcore.dll
2015-02-14 13:15:25 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-02-14 13:15:25 ----A---- C:\Windows\system32\wlansvc.dll
2015-02-14 13:15:25 ----A---- C:\Windows\system32\gpsvc.dll
2015-02-14 13:15:24 ----A---- C:\Windows\system32\workfolderssvc.dll
2015-02-14 13:15:24 ----A---- C:\Windows\system32\Windows.Media.dll
2015-02-14 13:15:22 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2015-02-14 13:15:22 ----A---- C:\Windows\system32\drivers\srv.sys
2015-02-14 13:15:21 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-02-14 13:15:21 ----A---- C:\Windows\system32\WMVDECOD.DLL
2015-02-14 13:15:21 ----A---- C:\Windows\system32\mfplat.dll
2015-02-14 13:15:20 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2015-02-14 13:15:20 ----A---- C:\Windows\system32\SRH.dll
2015-02-14 13:15:20 ----A---- C:\Windows\system32\printui.dll
2015-02-14 13:15:20 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-02-14 13:15:19 ----A---- C:\Windows\system32\XpsPrint.dll
2015-02-14 13:15:19 ----A---- C:\Windows\system32\mispace.dll
2015-02-14 13:15:19 ----A---- C:\Windows\system32\drivers\srv2.sys
2015-02-14 13:15:18 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2015-02-14 13:15:18 ----A---- C:\Windows\SYSWOW64\mispace.dll
2015-02-14 13:15:18 ----A---- C:\Windows\system32\WorkfoldersControl.dll
2015-02-14 13:15:18 ----A---- C:\Windows\system32\netcfgx.dll
2015-02-14 13:15:18 ----A---- C:\Windows\system32\AppxPackaging.dll
2015-02-14 13:15:17 ----A---- C:\Windows\SYSWOW64\SRH.dll
2015-02-14 13:15:17 ----A---- C:\Windows\SYSWOW64\printui.dll
2015-02-14 13:15:17 ----A---- C:\Windows\system32\srvsvc.dll
2015-02-14 13:15:17 ----A---- C:\Windows\system32\drivers\spaceport.sys
2015-02-14 13:15:17 ----A---- C:\Windows\system32\aclui.dll
2015-02-14 13:15:16 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2015-02-14 13:15:16 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2015-02-14 13:15:16 ----A---- C:\Windows\SYSWOW64\aclui.dll
2015-02-14 13:15:16 ----A---- C:\Windows\system32\wlanmsm.dll
2015-02-14 13:15:16 ----A---- C:\Windows\system32\spoolsv.exe
2015-02-14 13:15:16 ----A---- C:\Windows\system32\mfreadwrite.dll
2015-02-14 13:15:15 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2015-02-14 13:15:15 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-02-14 13:15:15 ----A---- C:\Windows\SYSWOW64\mftranscode.dll
2015-02-14 13:15:15 ----A---- C:\Windows\system32\storagewmi.dll
2015-02-14 13:15:15 ----A---- C:\Windows\system32\SHCore.dll
2015-02-14 13:15:15 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2015-02-14 13:15:14 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2015-02-14 13:15:14 ----A---- C:\Windows\system32\mftranscode.dll
2015-02-14 13:15:14 ----A---- C:\Windows\system32\comdlg32.dll
2015-02-14 13:15:14 ----A---- C:\Windows\system32\clusapi.dll
2015-02-14 13:15:13 ----A---- C:\Windows\system32\wuapi.dll
2015-02-14 13:15:13 ----A---- C:\Windows\system32\wisp.dll
2015-02-14 13:15:13 ----A---- C:\Windows\system32\winload.exe
2015-02-14 13:15:13 ----A---- C:\Windows\system32\WebClnt.dll
2015-02-14 13:15:13 ----A---- C:\Windows\system32\usbmon.dll
2015-02-14 13:15:13 ----A---- C:\Windows\system32\defragsvc.dll
2015-02-14 13:15:12 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2015-02-14 13:15:12 ----A---- C:\Windows\system32\winresume.exe
2015-02-14 13:15:11 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-02-14 13:15:11 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2015-02-14 13:15:11 ----A---- C:\Windows\system32\wsecedit.dll
2015-02-14 13:15:11 ----A---- C:\Windows\system32\wpdbusenum.dll
2015-02-14 13:15:11 ----A---- C:\Windows\system32\winmmbase.dll
2015-02-14 13:15:11 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-02-14 13:15:11 ----A---- C:\Windows\system32\drivers\usbhub.sys
2015-02-14 13:15:11 ----A---- C:\Windows\system32\drivers\srvnet.sys
2015-02-14 13:15:11 ----A---- C:\Windows\system32\drivers\nwifi.sys
2015-02-14 13:15:10 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2015-02-14 13:15:10 ----A---- C:\Windows\SYSWOW64\Display.dll
2015-02-14 13:15:10 ----A---- C:\Windows\system32\VAN.dll
2015-02-14 13:15:10 ----A---- C:\Windows\system32\SettingSync.dll
2015-02-14 13:15:10 ----A---- C:\Windows\system32\conhost.exe
2015-02-14 13:15:09 ----A---- C:\Windows\SYSWOW64\wisp.dll
2015-02-14 13:15:09 ----A---- C:\Windows\SYSWOW64\winmmbase.dll
2015-02-14 13:15:09 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2015-02-14 13:15:09 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-02-14 13:15:09 ----A---- C:\Windows\system32\WorkFoldersGPExt.dll
2015-02-14 13:15:09 ----A---- C:\Windows\system32\SndVol.exe
2015-02-14 13:15:09 ----A---- C:\Windows\system32\osk.exe
2015-02-14 13:15:09 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2015-02-14 13:15:09 ----A---- C:\Windows\system32\Display.dll
2015-02-14 13:15:09 ----A---- C:\Windows\system32\AppxSip.dll
2015-02-14 13:15:08 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-02-14 13:15:08 ----A---- C:\Windows\system32\mfps.dll
2015-02-14 13:15:08 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-02-14 13:15:06 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2015-02-14 13:15:06 ----A---- C:\Windows\system32\winmm.dll
2015-02-14 13:15:06 ----A---- C:\Windows\system32\Windows.Networking.dll
2015-02-14 13:15:06 ----A---- C:\Windows\system32\drivers\NdisImPlatform.sys
2015-02-14 13:15:06 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-02-14 13:15:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-02-14 13:15:06 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2015-02-14 13:15:05 ----A---- C:\Windows\SYSWOW64\wsecedit.dll
2015-02-14 13:15:05 ----A---- C:\Windows\SYSWOW64\AppxSip.dll
2015-02-14 13:15:05 ----A---- C:\Windows\system32\wucltux.dll
2015-02-14 13:15:05 ----A---- C:\Windows\system32\twinapi.dll
2015-02-14 13:15:05 ----A---- C:\Windows\system32\GdiPlus.dll
2015-02-14 13:15:05 ----A---- C:\Windows\system32\dwmapi.dll
2015-02-14 13:15:04 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2015-02-14 13:15:04 ----A---- C:\Windows\SYSWOW64\winmm.dll
2015-02-14 13:15:04 ----A---- C:\Windows\system32\WorkFoldersShell.dll
2015-02-14 13:15:04 ----A---- C:\Windows\system32\gpedit.dll
2015-02-14 13:15:03 ----A---- C:\Windows\SYSWOW64\VAN.dll
2015-02-14 13:15:03 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2015-02-14 13:15:03 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-02-14 13:15:03 ----A---- C:\Windows\system32\iasnap.dll
2015-02-14 13:15:02 ----A---- C:\Windows\system32\wups.dll
2015-02-14 13:15:02 ----A---- C:\Windows\system32\drivers\pci.sys
2015-02-14 13:15:02 ----A---- C:\Windows\system32\drivers\ks.sys
2015-02-14 13:15:01 ----A---- C:\Windows\system32\wwanconn.dll
2015-02-14 13:15:01 ----A---- C:\Windows\system32\wcmcsp.dll
2015-02-14 13:15:01 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2015-02-14 13:15:01 ----A---- C:\Windows\system32\stobject.dll
2015-02-14 13:15:01 ----A---- C:\Windows\system32\dab.dll
2015-02-14 13:15:01 ----A---- C:\Windows\system32\AppxSysprep.dll
2015-02-14 13:15:00 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2015-02-14 13:15:00 ----A---- C:\Windows\SYSWOW64\iasnap.dll
2015-02-14 13:15:00 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2015-02-14 13:15:00 ----A---- C:\Windows\system32\wuauclt.exe
2015-02-14 13:15:00 ----A---- C:\Windows\system32\wlanapi.dll
2015-02-14 13:15:00 ----A---- C:\Windows\system32\rsaenh.dll
2015-02-14 13:15:00 ----A---- C:\Windows\system32\ActionCenter.dll
2015-02-14 13:14:59 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2015-02-14 13:14:59 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2015-02-14 13:14:59 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2015-02-14 13:14:59 ----A---- C:\Windows\SYSWOW64\osk.exe
2015-02-14 13:14:59 ----A---- C:\Windows\system32\wups2.dll
2015-02-14 13:14:59 ----A---- C:\Windows\system32\wshbth.dll
2015-02-14 13:14:59 ----A---- C:\Windows\system32\wlansvcpal.dll
2015-02-14 13:14:59 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-02-14 13:14:59 ----A---- C:\Windows\system32\PrintDialogs.dll
2015-02-14 13:14:59 ----A---- C:\Windows\system32\browser.dll
2015-02-14 13:14:57 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-02-14 13:14:57 ----A---- C:\Windows\SYSWOW64\stobject.dll
2015-02-14 13:14:57 ----A---- C:\Windows\SYSWOW64\KBDRUM.DLL
2015-02-14 13:14:57 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2015-02-14 13:14:57 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2015-02-14 13:14:57 ----A---- C:\Windows\system32\KBDRUM.DLL
2015-02-14 13:14:57 ----A---- C:\Windows\system32\Defrag.exe
2015-02-14 13:14:56 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2015-02-14 13:14:56 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2015-02-14 13:14:56 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2015-02-14 13:14:56 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2015-02-14 13:14:56 ----A---- C:\Windows\system32\KBDYAK.DLL
2015-02-14 13:14:56 ----A---- C:\Windows\system32\KBDRU1.DLL
2015-02-14 13:14:56 ----A---- C:\Windows\system32\KBDRU.DLL
2015-02-14 13:14:56 ----A---- C:\Windows\system32\KBDBASH.DLL
2015-02-14 13:14:56 ----A---- C:\Windows\system32\BluetoothApis.dll
2015-02-14 13:14:55 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2015-02-14 13:14:55 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2015-02-14 13:14:55 ----A---- C:\Windows\system32\wwanmm.dll
2015-02-14 13:14:55 ----A---- C:\Windows\system32\SndVolSSO.dll
2015-02-14 13:14:55 ----A---- C:\Windows\system32\KBDTAT.DLL
2015-02-14 13:14:55 ----A---- C:\Windows\system32\drivers\bthpan.sys
2015-02-14 13:14:54 ----A---- C:\Windows\SYSWOW64\BluetoothApis.dll
2015-02-14 13:14:53 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-02-14 13:14:53 ----A---- C:\Windows\SYSWOW64\KBDTT102.DLL
2015-02-14 13:14:53 ----A---- C:\Windows\system32\wudriver.dll
2015-02-14 13:14:53 ----A---- C:\Windows\system32\wlansec.dll
2015-02-14 13:14:53 ----A---- C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2015-02-14 13:14:53 ----A---- C:\Windows\system32\KBDTT102.DLL
2015-02-14 13:11:49 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-14 13:11:49 ----A---- C:\Windows\system32\actxprxy.dll
2015-02-14 13:11:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-14 13:11:48 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-02-14 13:11:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-14 13:11:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-14 13:11:48 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-02-14 13:11:48 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-14 13:11:47 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-14 13:11:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-14 13:11:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-14 13:11:45 ----A---- C:\Windows\system32\urlmon.dll
2015-02-14 13:11:45 ----A---- C:\Windows\system32\occache.dll
2015-02-14 13:11:45 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-14 13:11:44 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-14 13:11:44 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-14 13:11:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-14 13:11:44 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-14 13:11:44 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-14 13:11:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-14 13:11:41 ----A---- C:\Windows\system32\iertutil.dll
2015-02-14 13:11:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-14 13:11:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-14 13:11:39 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-14 13:11:39 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-14 13:11:38 ----A---- C:\Windows\system32\ieframe.dll
2015-02-14 13:11:38 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-14 13:11:37 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-14 13:11:37 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-14 13:11:37 ----A---- C:\Windows\system32\jscript9.dll
2015-02-14 13:11:36 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-14 13:11:36 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-14 13:11:35 ----A---- C:\Windows\system32\wininet.dll
2015-02-14 13:11:35 ----A---- C:\Windows\system32\mshtml.dll
2015-02-14 13:11:32 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-14 13:11:31 ----A---- C:\Windows\system32\inetcomm.dll
2015-02-14 13:11:31 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-14 13:11:30 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-14 13:11:30 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-02-14 13:11:30 ----A---- C:\Windows\system32\vbscript.dll
2015-02-14 13:11:29 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-02-14 13:11:29 ----A---- C:\Windows\system32\jscript.dll
2015-02-14 13:11:28 ----A---- C:\Windows\system32\ieui.dll
2015-02-14 13:11:27 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-02-14 13:11:27 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-14 13:11:27 ----A---- C:\Windows\system32\webcheck.dll
2015-02-14 13:11:26 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-14 13:11:26 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2015-02-14 13:11:26 ----A---- C:\Windows\SYSWOW64\inseng.dll
2015-02-14 13:11:26 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-14 13:11:26 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-02-14 13:11:26 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-02-14 13:11:26 ----A---- C:\Windows\SYSWOW64\hlink.dll
2015-02-14 13:11:26 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-02-14 13:11:26 ----A---- C:\Windows\system32\inseng.dll
2015-02-14 13:11:26 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-14 13:11:26 ----A---- C:\Windows\system32\iesysprep.dll
2015-02-14 13:11:26 ----A---- C:\Windows\system32\iepeers.dll
2015-02-14 13:11:26 ----A---- C:\Windows\system32\hlink.dll
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\wextract.exe
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\url.dll
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-14 13:11:25 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2015-02-14 13:11:25 ----A---- C:\Windows\system32\url.dll
2015-02-14 13:11:25 ----A---- C:\Windows\system32\pngfilt.dll
2015-02-14 13:11:25 ----A---- C:\Windows\system32\msrating.dll
2015-02-14 13:11:25 ----A---- C:\Windows\system32\licmgr10.dll
2015-02-14 13:11:25 ----A---- C:\Windows\system32\imgutil.dll
2015-02-14 13:11:25 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-14 13:11:25 ----A---- C:\Windows\system32\IEAdvpack.dll
2015-02-14 13:11:24 ----A---- C:\Windows\SYSWOW64\mshta.exe
2015-02-14 13:11:24 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2015-02-14 13:11:24 ----A---- C:\Windows\system32\wextract.exe
2015-02-14 13:11:24 ----A---- C:\Windows\system32\mshta.exe
2015-02-14 13:11:24 ----A---- C:\Windows\system32\msfeedssync.exe
2015-02-14 13:11:24 ----A---- C:\Windows\system32\iexpress.exe
2015-02-14 13:11:24 ----A---- C:\Windows\system32\iesetup.dll
2015-02-14 13:11:24 ----A---- C:\Windows\system32\iernonce.dll
2015-02-14 13:11:23 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-14 13:08:47 ----A---- C:\Windows\system32\sppobjs.dll
2015-02-14 13:08:44 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-14 13:08:43 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-02-14 13:08:43 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-02-14 13:08:43 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-02-14 13:08:43 ----A---- C:\Windows\system32\wow64cpu.dll
2015-02-14 13:08:43 ----A---- C:\Windows\system32\wow64.dll
2015-02-14 13:08:43 ----A---- C:\Windows\system32\ntdll.dll
2015-02-14 13:08:42 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-02-14 13:08:42 ----A---- C:\Windows\SYSWOW64\user.exe
2015-02-14 13:08:42 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-02-14 13:08:42 ----A---- C:\Windows\system32\ntvdm64.dll
2015-02-14 13:08:36 ----A---- C:\Windows\system32\generaltel.dll
2015-02-14 13:08:36 ----A---- C:\Windows\system32\appraiser.dll
2015-02-14 13:08:36 ----A---- C:\Windows\system32\aeinv.dll
2015-02-14 13:08:35 ----A---- C:\Windows\system32\invagent.dll
2015-02-14 13:08:35 ----A---- C:\Windows\system32\devinv.dll
2015-02-14 13:08:34 ----A---- C:\Windows\system32\aepdu.dll
2015-02-14 13:08:31 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-14 13:08:31 ----A---- C:\Windows\system32\schannel.dll
2015-02-14 13:08:30 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-14 13:08:30 ----A---- C:\Windows\system32\scesrv.dll
2015-02-14 13:08:19 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-02-14 13:08:19 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-14 13:08:19 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-14 13:08:19 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-14 13:08:19 ----A---- C:\Windows\system32\certcli.dll
2015-02-14 13:08:18 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-14 13:08:18 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-14 13:08:18 ----A---- C:\Windows\system32\msaudite.dll
2015-02-14 13:08:18 ----A---- C:\Windows\system32\adtschema.dll
2015-02-14 13:08:07 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-14 13:08:07 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-14 13:08:03 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-14 13:08:03 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-14 11:56:00 ----A---- C:\Windows\system32\win32k.sys
2015-02-14 11:51:31 ----A---- C:\Windows\SYSWOW64\msvcr120_clr0400.dll
2015-02-14 11:51:30 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2015-02-14 11:50:26 ----A---- C:\Windows\system32\twinui.appcore.dll
2015-02-14 11:50:26 ----A---- C:\Windows\system32\twinapi.appcore.dll
2015-02-14 11:50:25 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2015-02-08 21:33:37 ----D---- C:\ProgramData\TreeCardGames
2015-02-08 21:33:36 ----D---- C:\Users\kreve028\AppData\Roaming\SolSuite
2015-02-08 21:33:16 ----D---- C:\Program Files (x86)\SolSuite
2015-02-07 11:27:29 ----D---- C:\ProgramData\mquadr.at
2015-02-07 11:26:53 ----N---- C:\Windows\SYSWOW64\ssleay32.dll
2015-02-07 11:26:53 ----N---- C:\Windows\SYSWOW64\M2LU_Server.exe
2015-02-07 11:26:53 ----N---- C:\Windows\SYSWOW64\M2ElevatedCalls.dll
2015-02-07 11:26:53 ----N---- C:\Windows\SYSWOW64\libeay32.dll
2015-02-07 11:26:53 ----N---- C:\Windows\SYSWOW64\ipworks8.dll
2015-02-07 11:26:51 ----N---- C:\Windows\SYSWOW64\M2ElevatedNetworkAdapters.dll
2015-02-07 11:26:51 ----D---- C:\Program Files (x86)\KPN
2015-02-07 11:26:50 ----N---- C:\Windows\SYSWOW64\WiFiMan.dll
2015-02-07 11:26:50 ----N---- C:\Windows\SYSWOW64\m2network64helper.exe
2015-02-07 11:26:50 ----N---- C:\Windows\system32\WiFiMan.dll
2015-02-05 14:13:03 ----D---- C:\Program Files\CCleaner
2015-02-05 12:44:18 ----SD---- C:\Windows\system32\CompatTel
2015-02-05 12:44:18 ----D---- C:\Windows\system32\appraiser
2015-02-04 16:33:44 ----A---- C:\Windows\system32\termsrv.dll
2015-02-04 16:20:30 ----D---- C:\Windows\system32\MRT
2015-02-04 16:20:24 ----A---- C:\Windows\system32\MRT.exe
2015-02-04 16:15:34 ----A---- C:\Windows\SYSWOW64\twinui.dll
2015-02-04 16:15:33 ----A---- C:\Windows\system32\twinui.dll
2015-02-04 16:15:32 ----A---- C:\Windows\system32\shell32.dll
2015-02-04 16:15:32 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-02-04 16:15:29 ----A---- C:\Windows\system32\SettingsHandlers.dll
2015-02-04 16:15:28 ----A---- C:\Windows\system32\localspl.dll
2015-02-04 16:15:27 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2015-02-04 16:15:27 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2015-02-04 16:15:27 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2015-02-04 16:15:27 ----A---- C:\Windows\system32\MFMediaEngine.dll
2015-02-04 16:15:26 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-02-04 16:15:26 ----A---- C:\Windows\system32\WsmSvc.dll
2015-02-04 16:15:26 ----A---- C:\Windows\system32\drivers\netio.sys
2015-02-04 16:15:25 ----A---- C:\Windows\system32\win32spl.dll
2015-02-04 16:15:25 ----A---- C:\Windows\system32\puiobj.dll
2015-02-04 16:15:24 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2015-02-04 16:15:24 ----A---- C:\Windows\SYSWOW64\DafPrintProvider.dll
2015-02-04 16:15:24 ----A---- C:\Windows\system32\DafPrintProvider.dll
2015-02-04 16:15:23 ----A---- C:\Windows\SYSWOW64\prnntfy.dll
2015-02-04 16:15:23 ----A---- C:\Windows\system32\prnntfy.dll
2015-02-04 16:15:23 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2015-02-04 16:15:23 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-02-04 16:15:22 ----A---- C:\Windows\SYSWOW64\untfs.dll
2015-02-04 16:15:22 ----A---- C:\Windows\SYSWOW64\puiapi.dll
2015-02-04 16:15:22 ----A---- C:\Windows\system32\untfs.dll
2015-02-04 16:15:22 ----A---- C:\Windows\system32\puiapi.dll
2015-02-04 16:15:21 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2015-02-04 16:15:21 ----A---- C:\Windows\system32\winbici.dll
2015-02-04 16:15:21 ----A---- C:\Windows\system32\FXSCOMEX.dll
2015-02-04 16:15:21 ----A---- C:\Windows\system32\FXSAPI.dll
2015-02-04 16:15:21 ----A---- C:\Windows\system32\compstui.dll
2015-02-04 16:15:19 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-02-04 14:35:04 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-02-04 14:35:04 ----A---- C:\Windows\system32\WSShared.dll
2015-02-04 14:35:03 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-02-04 14:35:01 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-02-04 14:35:01 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2015-02-04 14:34:58 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2015-02-04 14:34:57 ----A---- C:\Windows\system32\SyncEngine.dll
2015-02-04 14:34:57 ----A---- C:\Windows\system32\mstscax.dll
2015-02-04 14:34:56 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2015-02-04 14:34:56 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-02-04 14:34:55 ----A---- C:\Windows\system32\KernelBase.dll
2015-02-04 14:34:54 ----A---- C:\Windows\system32\Wldap32.dll
2015-02-04 14:34:54 ----A---- C:\Windows\system32\SearchFolder.dll
2015-02-04 14:34:54 ----A---- C:\Windows\system32\propsys.dll
2015-02-04 14:34:54 ----A---- C:\Windows\system32\iphlpsvc.dll
2015-02-04 14:34:53 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2015-02-04 14:34:53 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2015-02-04 14:34:53 ----A---- C:\Windows\SYSWOW64\propsys.dll
2015-02-04 14:34:53 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-02-04 14:34:53 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-02-04 14:34:53 ----A---- C:\Windows\system32\SkyDrive.exe
2015-02-04 14:34:52 ----A---- C:\Windows\system32\drivers\bthport.sys
2015-02-04 14:34:51 ----A---- C:\Windows\system32\SkyDriveTelemetry.dll
2015-02-04 14:34:51 ----A---- C:\Windows\system32\bisrv.dll
2015-02-04 14:34:50 ----A---- C:\Windows\SYSWOW64\SkyDriveShell.dll
2015-02-04 14:34:50 ----A---- C:\Windows\system32\SkyDriveShell.dll
2015-02-04 14:34:50 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-02-04 14:34:50 ----A---- C:\Windows\system32\pcsvDevice.dll
2015-02-04 14:34:50 ----A---- C:\Windows\system32\httpprxm.dll
2015-02-04 14:34:49 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-02-04 14:34:49 ----A---- C:\Windows\system32\ProximityService.dll
2015-02-04 14:34:49 ----A---- C:\Windows\system32\drivers\bridge.sys
2015-02-04 14:34:49 ----A---- C:\Windows\system32\adhsvc.dll
2015-02-04 14:24:23 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2015-02-04 14:24:23 ----A---- C:\Windows\system32\drivers\usbehci.sys
2015-02-04 14:24:23 ----A---- C:\Windows\system32\drivers\usbd.sys
2015-02-04 14:24:22 ----A---- C:\Windows\system32\drivers\usbport.sys
2015-02-04 14:24:21 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2015-02-04 14:24:20 ----A---- C:\Windows\SYSWOW64\DaOtpCredentialProvider.dll
2015-02-04 14:24:20 ----A---- C:\Windows\system32\WUDFSvc.dll
2015-02-04 14:24:20 ----A---- C:\Windows\system32\WUDFPlatform.dll
2015-02-04 14:24:20 ----A---- C:\Windows\system32\WUDFHost.exe
2015-02-04 14:24:20 ----A---- C:\Windows\system32\hal.dll
2015-02-04 14:24:20 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2015-02-04 14:24:20 ----A---- C:\Windows\system32\DaOtpCredentialProvider.dll
2015-02-04 14:18:34 ----A---- C:\Windows\SYSWOW64\explorer.exe
2015-02-04 14:18:34 ----A---- C:\Windows\system32\uDWM.dll
2015-02-04 14:18:34 ----A---- C:\Windows\explorer.exe
2015-02-04 14:18:31 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2015-02-04 14:18:31 ----A---- C:\Windows\system32\UXInit.dll
2015-02-04 14:16:12 ----A---- C:\Windows\system32\poqexec.exe
2015-02-04 14:16:11 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-02-04 14:13:13 ----A---- C:\Windows\system32\aepic.dll
2015-02-04 14:12:29 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-02-04 14:12:29 ----A---- C:\Windows\system32\gdi32.dll
2015-02-04 14:12:28 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-02-04 14:12:28 ----A---- C:\Windows\system32\authui.dll
2015-02-04 14:12:27 ----A---- C:\Windows\system32\msi.dll
2015-02-04 14:12:25 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-02-04 14:12:22 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-02-04 14:12:22 ----A---- C:\Windows\system32\msihnd.dll
2015-02-04 14:12:22 ----A---- C:\Windows\system32\appinfo.dll
2015-02-04 14:12:21 ----A---- C:\Windows\system32\consent.exe
2015-02-04 14:05:01 ----A---- C:\Windows\system32\rfxvmt.dll
2015-02-04 14:05:01 ----A---- C:\Windows\system32\rdpcorets.dll
2015-02-04 14:05:01 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2015-02-04 14:05:00 ----A---- C:\Windows\system32\rdpudd.dll
2015-02-04 13:58:32 ----A---- C:\Windows\system32\dpapisrv.dll
2015-02-04 13:58:31 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2015-02-04 13:58:31 ----A---- C:\Windows\system32\ncryptsslp.dll
2015-02-04 13:54:47 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2015-02-04 13:54:47 ----A---- C:\Windows\system32\MrmCoreR.dll
2015-02-04 13:54:35 ----A---- C:\Windows\system32\user32.dll
2015-02-04 13:54:34 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-02-04 13:54:34 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2015-02-04 13:54:34 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2015-02-04 13:54:33 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2015-02-04 13:54:32 ----A---- C:\Windows\SYSWOW64\winshfhc.dll
2015-02-04 13:54:31 ----A---- C:\Windows\system32\winshfhc.dll
2015-02-04 13:53:05 ----A---- C:\Windows\system32\WpcWebSync.dll
2015-02-04 13:53:05 ----A---- C:\Windows\system32\WpcMon.exe
2015-02-04 13:53:05 ----A---- C:\Windows\system32\Wpc.dll
2015-02-04 13:53:04 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2015-02-04 13:52:48 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2015-02-04 13:52:48 ----A---- C:\Windows\system32\TsWpfWrp.exe
2015-02-04 13:52:21 ----A---- C:\Windows\system32\WSDMon.dll
2015-02-04 13:52:20 ----A---- C:\Windows\system32\tcpmon.dll
2015-02-04 13:52:20 ----A---- C:\Windows\system32\drivers\msgpioclx.sys
2015-02-04 13:52:07 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-02-04 13:52:07 ----A---- C:\Windows\system32\rpcrt4.dll
2015-02-04 13:51:39 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-02-04 13:51:39 ----A---- C:\Windows\system32\dxgi.dll
2015-02-04 13:51:39 ----A---- C:\Windows\system32\dwmcore.dll
2015-02-04 13:51:39 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-02-04 13:51:30 ----A---- C:\Windows\system32\profsvc.dll
2015-02-04 13:50:54 ----A---- C:\Windows\system32\drivers\afd.sys
2015-02-04 13:50:53 ----A---- C:\Windows\system32\schedsvc.dll
2015-02-04 13:50:46 ----A---- C:\Windows\SYSWOW64\DeviceSetupStatusProvider.dll
2015-02-04 13:50:46 ----A---- C:\Windows\system32\DeviceSetupStatusProvider.dll
2015-02-04 13:50:33 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-02-04 13:50:33 ----A---- C:\Windows\system32\rastls.dll
2015-02-04 13:50:32 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-02-04 13:50:31 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-02-04 13:50:31 ----A---- C:\Windows\system32\drivers\ahcache.sys
2015-02-04 13:50:30 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-04 13:50:30 ----A---- C:\Windows\system32\crypt32.dll
2015-02-04 13:50:26 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-02-04 13:50:26 ----A---- C:\Windows\system32\msxml3.dll
2015-02-04 13:50:19 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-04 13:50:19 ----A---- C:\Windows\system32\kerberos.dll
2015-02-04 13:50:18 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-02-04 13:50:18 ----A---- C:\Windows\system32\pku2u.dll
2015-02-04 13:50:16 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-02-04 13:50:16 ----A---- C:\Windows\system32\packager.dll
2015-02-04 13:42:28 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-02-04 13:42:28 ----A---- C:\Windows\system32\nlasvc.dll
2015-02-04 13:42:28 ----A---- C:\Windows\system32\nlaapi.dll
2015-02-04 13:42:28 ----A---- C:\Windows\system32\ncsi.dll
2015-02-04 13:42:27 ----A---- C:\Windows\SYSWOW64\qedit.dll
2015-02-04 13:42:27 ----A---- C:\Windows\system32\qedit.dll
2015-02-04 13:42:26 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-02-04 13:42:26 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-02-04 13:42:26 ----A---- C:\Windows\system32\audiosrv.dll
2015-02-04 13:42:26 ----A---- C:\Windows\system32\AudioEng.dll
2015-02-04 13:42:26 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-02-04 13:42:25 ----A---- C:\Windows\SYSWOW64\wermgr.exe
2015-02-04 13:42:25 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2015-02-04 13:42:25 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2015-02-04 13:42:25 ----A---- C:\Windows\SYSWOW64\wer.dll
2015-02-04 13:42:25 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2015-02-04 13:42:25 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-02-04 13:42:25 ----A---- C:\Windows\system32\wermgr.exe
2015-02-04 13:42:25 ----A---- C:\Windows\system32\WerFaultSecure.exe
2015-02-04 13:42:25 ----A---- C:\Windows\system32\WerFault.exe
2015-02-04 13:42:25 ----A---- C:\Windows\system32\wer.dll
2015-02-04 13:42:25 ----A---- C:\Windows\system32\Faultrep.dll
2015-02-04 13:42:25 ----A---- C:\Windows\system32\EncDump.dll
2015-02-04 13:42:25 ----A---- C:\Windows\system32\ci.dll
2015-02-04 13:42:25 ----A---- C:\Windows\system32\AudioSes.dll
2015-02-04 13:42:25 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-02-04 13:42:25 ----A---- C:\Windows\system32\audiodg.exe
2015-02-04 13:42:24 ----A---- C:\Windows\SYSWOW64\werdiagcontroller.dll
2015-02-04 13:42:24 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-02-04 13:42:23 ----A---- C:\Windows\system32\drivers\sdbus.sys
2015-02-04 13:42:23 ----A---- C:\Windows\system32\drivers\pdc.sys
2015-02-04 13:42:23 ----A---- C:\Windows\system32\drivers\intelpep.sys
2015-02-04 13:42:23 ----A---- C:\Windows\system32\drivers\dumpsd.sys
2015-02-04 13:42:22 ----A---- C:\Windows\system32\MDMAgent.exe
2015-02-02 18:18:37 ----D---- C:\Program Files\stinger
2015-02-01 16:54:13 ----D---- C:\Program Files (x86)\MyFree Codec
2015-02-01 16:24:50 ----D---- C:\Program Files (x86)\MarkAny
2015-02-01 15:12:04 ----RHD---- C:\MSOCache
2015-02-01 15:10:09 ----A---- C:\Windows\system32\drivers\mfehidk.sys
2015-02-01 15:10:09 ----A---- C:\Windows\system32\drivers\mfeapfk.sys
2015-02-01 15:09:54 ----A---- C:\Windows\system32\mfevtps.exe
2015-02-01 14:45:24 ----A---- C:\Windows\system32\drivers\HipShieldK.sys
2015-02-01 14:44:45 ----D---- C:\Program Files (x86)\SafeKey
2015-02-01 14:44:11 ----D---- C:\Program Files (x86)\McAfee.com
2015-02-01 13:59:19 ----D---- C:\Program Files\McAfee.com
2015-02-01 13:59:12 ----D---- C:\Program Files (x86)\McAfee
2015-02-01 11:37:52 ----D---- C:\Program Files\Common Files\McAfee
2015-01-31 21:12:35 ----A---- C:\Windows\system32\Native.exe
2015-01-31 18:34:30 ----D---- C:\ReimageUndo
2015-01-31 16:22:01 ----D---- C:\Users\kreve028\AppData\Roaming\Samsung
2015-01-30 18:39:38 ----D---- C:\ProgramData\Microsoft OneDrive
2015-01-30 18:28:56 ----D---- C:\Program Files\Microsoft Office 15
2015-01-28 13:42:40 ----D---- C:\Users\kreve028\AppData\Roaming\Spotify
2015-01-27 21:05:02 ----D---- C:\Users\kreve028\AppData\Roaming\CareCenter
2015-01-26 12:50:29 ----D---- C:\ProgramData\com.gamehouse.acid
2015-01-25 21:15:09 ----D---- C:\Program Files\DIFX
2015-01-25 19:50:37 ----D---- C:\Users\kreve028\AppData\Roaming\Dropbox
2015-01-25 19:01:40 ----D---- C:\Users\kreve028\AppData\Roaming\Foxit Software
2015-01-25 18:43:04 ----D---- C:\Users\kreve028\AppData\Roaming\DataCenter.4.Desktop
2015-01-25 16:07:04 ----D---- C:\Users\kreve028\AppData\Roaming\Firetrust
2015-01-25 15:51:56 ----D---- C:\Users\kreve028\AppData\Roaming\HP
2015-01-25 15:51:56 ----D---- C:\ProgramData\WEBREG
2015-01-25 15:45:00 ----D---- C:\Program Files (x86)\Microsoft
2015-01-25 15:44:38 ----D---- C:\Users\kreve028\AppData\Roaming\HpUpdate
2015-01-25 15:43:27 ----D---- C:\ProgramData\HP Product Assistant
2015-01-25 15:38:27 ----A---- C:\Windows\system32\hpf3l101.dll
2015-01-25 15:34:16 ----N---- C:\Windows\hpomdl51.dat
2015-01-25 15:34:16 ----A---- C:\Windows\hpoins51.dat
2015-01-25 15:33:24 ----A---- C:\Windows\system32\drivers\Dot4usb.sys
2015-01-25 15:33:18 ----A---- C:\Windows\system32\drivers\Dot4Prt.sys
2015-01-25 15:33:17 ----A---- C:\Windows\system32\drivers\Dot4.sys
2015-01-25 15:33:16 ----A---- C:\Windows\system32\hpzids40.dll
2015-01-25 15:33:16 ----A---- C:\Windows\system32\hppldcoi.dll
2015-01-25 15:33:16 ----A---- C:\Windows\system32\hposwia_p04h.dll
2015-01-25 15:33:16 ----A---- C:\Windows\system32\hpost_p04h.dll
2015-01-25 15:33:16 ----A---- C:\Windows\system32\hposc_p04a.dll
2015-01-25 15:33:01 ----A---- C:\Windows\system32\PortChanger.exe
2015-01-25 13:05:13 ----D---- C:\ProgramData\BlueStacks
2015-01-25 13:04:20 ----D---- C:\Users\kreve028\AppData\Roaming\WildTangent
2015-01-25 10:48:23 ----A---- C:\Windows\system32\DWrite.dll
2015-01-25 10:48:22 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-01-25 10:48:22 ----A---- C:\Windows\system32\FntCache.dll
2015-01-25 10:46:55 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2015-01-25 10:46:55 ----A---- C:\Windows\system32\drvinst.exe
2015-01-25 10:46:55 ----A---- C:\Windows\system32\drvcfg.exe
2015-01-25 10:46:12 ----A---- C:\Windows\system32\wpccpl.dll
2015-01-25 10:46:12 ----A---- C:\Windows\system32\drivers\wpcfltr.sys
2015-01-25 10:36:21 ----A---- C:\Windows\system32\drivers\avgtpx64.sys
2015-01-25 10:36:14 ----D---- C:\Program Files\AVG Web TuneUp
2015-01-25 10:36:11 ----D---- C:\Program Files (x86)\AVG Web TuneUp
2015-01-25 10:36:09 ----D---- C:\ProgramData\AVG Web TuneUp
2015-01-25 05:21:23 ----D---- C:\DCIM
2015-01-25 05:21:23 ----D---- C:\84867ec87734da94fd64a646db
2015-01-25 05:17:10 ----D---- C:\Program Files (x86)\ABN AMRO e.dentifier2
2015-01-25 05:07:48 ----D---- C:\Users\kreve028\AppData\Roaming\T-Mobile Internet Manager
2015-01-25 05:05:06 ----A---- C:\Windows\system32\drivers\ewusbnet.sys
2015-01-25 05:05:06 ----A---- C:\Windows\system32\drivers\ewusbmdm.sys
2015-01-25 05:05:06 ----A---- C:\Windows\system32\drivers\ewusbdev.sys
2015-01-25 05:05:06 ----A---- C:\Windows\system32\drivers\ewdcsc.sys
2015-01-25 05:04:59 ----D---- C:\Users\kreve028\AppData\Roaming\T-Mobile
2015-01-25 05:04:58 ----A---- C:\Windows\SYSWOW64\sporder.dll
2015-01-25 05:04:58 ----A---- C:\Windows\SYSWOW64\drivers\tcpipBM.sys
2015-01-25 05:04:58 ----A---- C:\Windows\SYSWOW64\drivers\BMLoad.sys
2015-01-25 05:04:58 ----A---- C:\Windows\SYSWOW64\bmutil.dll
2015-01-25 05:04:58 ----A---- C:\Windows\SYSWOW64\bminstall.dll
2015-01-25 05:04:33 ----D---- C:\Program Files (x86)\T-Mobile
2015-01-25 05:00:08 ----D---- C:\Program Files (x86)\OEM
2015-01-25 04:59:52 ----D---- C:\Windows\oem
2015-01-25 04:59:44 ----D---- C:\ProgramData\OEM_YAHOO
2015-01-25 04:59:29 ----D---- C:\Program Files\Accessory Store
2015-01-25 04:59:20 ----D---- C:\Users\kreve028\AppData\Roaming\Adobe
2015-01-25 04:59:09 ----A---- C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-01-25 04:58:20 ----SD---- C:\Users\kreve028\AppData\Roaming\Microsoft
2015-01-24 20:41:10 ----D---- C:\Users\kreve028\AppData\Roaming\Thunderbird
2015-01-24 20:33:04 ----D---- C:\Program Files (x86)\HP
2015-01-24 20:14:33 ----D---- C:\Program Files (x86)\WinThruster
2015-01-24 20:07:49 ----D---- C:\Spacekace
2015-01-24 17:35:22 ----D---- C:\rei
2015-01-24 16:43:38 ----D---- C:\Users\kreve028\AppData\Roaming\AVG2015
2015-01-24 16:42:19 ----D---- C:\Users\kreve028\AppData\Roaming\TuneUp Software
2015-01-24 16:41:54 ----HD---- C:\$AVG
2015-01-24 16:41:54 ----D---- C:\ProgramData\AVG2015
2015-01-24 16:32:46 ----D---- C:\Users\kreve028\AppData\Roaming\Mozilla
2015-01-24 16:20:15 ----D---- C:\Program Files (x86)\Firetrust
2015-01-24 16:19:50 ----D---- C:\ProgramData\Firetrust
2015-01-24 16:10:43 ----D---- C:\ProgramData\HP
2015-01-24 16:03:19 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2015-01-24 15:59:26 ----D---- C:\ProgramData\Mozilla
2015-01-24 15:59:25 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-24 15:59:23 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-01-24 15:54:48 ----A---- C:\Windows\SYSWOW64\Redemption.dll
2015-01-24 15:54:41 ----A---- C:\Windows\SYSWOW64\dgderapi.dll
2015-01-24 15:53:40 ----D---- C:\Program Files (x86)\Samsung
2015-01-24 15:51:48 ----D---- C:\Users\kreve028\AppData\Roaming\acer
2015-01-24 15:51:38 ----D---- C:\ProgramData\Google
2015-01-24 15:51:25 ----D---- C:\Users\kreve028\AppData\Roaming\johnsadventures.com
2015-01-24 15:51:19 ----D---- C:\Program Files (x86)\johnsadventures.com
2015-01-24 15:48:57 ----D---- C:\Program Files (x86)\Google
2015-01-24 15:48:03 ----D---- C:\Program Files (x86)\VS Revo Group
2015-01-24 15:47:00 ----D---- C:\Program Files (x86)\PINs
2015-01-24 15:46:20 ----D---- C:\Users\kreve028\AppData\Roaming\Identities
2015-01-24 15:46:14 ----D---- C:\Users\kreve028\AppData\Roaming\Zylom
2015-01-24 15:42:02 ----D---- C:\Program Files (x86)\Sigma Data Center 4.0
2015-01-24 15:41:10 ----D---- C:\Program Files (x86)\Dam22
2015-01-24 15:33:24 ----A---- C:\Windows\system32\TURegOpt.exe
2015-01-24 15:33:22 ----A---- C:\Windows\SYSWOW64\authuitu.dll
2015-01-24 15:33:22 ----A---- C:\Windows\system32\authuitu.dll
2015-01-24 15:32:51 ----D---- C:\Users\kreve028\AppData\Roaming\AVG
2015-01-24 15:32:33 ----D---- C:\Program Files (x86)\AVG
2015-01-24 15:30:46 ----D---- C:\ProgramData\AVG
2015-01-24 14:53:47 ----HD---- C:\ProgramData\Common Files
2015-01-24 14:53:47 ----D---- C:\ProgramData\MFAData
2015-01-24 14:50:42 ----A---- C:\Windows\snui.exe
2015-01-24 14:38:39 ----A---- C:\Windows\SYSWOW64\dpnsvr.exe
2015-01-24 14:38:39 ----A---- C:\Windows\SYSWOW64\dpnhupnp.dll
2015-01-24 14:38:39 ----A---- C:\Windows\SYSWOW64\dpnhpast.dll
2015-01-24 14:38:39 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2015-01-24 14:38:39 ----A---- C:\Windows\SYSWOW64\dpnathlp.dll
2015-01-24 14:38:39 ----A---- C:\Windows\system32\dpnsvr.exe
2015-01-24 14:38:39 ----A---- C:\Windows\system32\dpnhupnp.dll
2015-01-24 14:38:39 ----A---- C:\Windows\system32\dpnhpast.dll
2015-01-24 14:38:39 ----A---- C:\Windows\system32\dpnet.dll
2015-01-24 14:38:39 ----A---- C:\Windows\system32\dpnathlp.dll
2015-01-24 14:38:38 ----A---- C:\Windows\SYSWOW64\dpwsockx.dll
2015-01-24 14:38:38 ----A---- C:\Windows\SYSWOW64\dpmodemx.dll
2015-01-24 14:38:38 ----A---- C:\Windows\SYSWOW64\dplaysvr.exe
2015-01-24 14:38:37 ----A---- C:\Windows\SYSWOW64\dplayx.dll
2015-01-24 14:24:45 ----D---- C:\Users\kreve028\AppData\Roaming\Macromedia
2015-01-24 14:22:43 ----D---- C:\Program Files (x86)\ChessBase
2015-01-24 14:22:43 ----A---- C:\Program Files\SP27720.exe
2015-01-24 14:22:43 ----A---- C:\Program Files\PINs450.exe
2015-01-24 14:22:43 ----A---- C:\Program Files\JavaSetup6u21-rv.exe
2015-01-24 14:22:42 ----A---- C:\Program Files\dotnetfx.exe
2015-01-24 14:22:42 ----A---- C:\Program Files\dam227.exe
2015-01-24 14:21:58 ----D---- C:\Softwarenetz
2015-01-24 14:21:57 ----D---- C:\ProgramData\Zylom
2015-01-24 14:21:56 ----D---- C:\ProgramData\Samsung
2015-01-24 14:21:53 ----D---- C:\Mijn documenten

======List of files/folders modified in the last 1 month======

2015-02-17 12:49:01 ----D---- C:\Windows\Temp
2015-02-17 12:47:41 ----D---- C:\Windows\Prefetch
2015-02-17 12:35:08 ----RD---- C:\Windows\System32
2015-02-17 12:35:08 ----D---- C:\Windows\Inf
2015-02-17 12:35:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-17 12:34:01 ----D---- C:\Windows\system32\sru
2015-02-16 13:56:55 ----D---- C:\Windows\Microsoft.NET
2015-02-16 13:10:32 ----D---- C:\Windows\system32\Recovery
2015-02-16 12:42:20 ----D---- C:\Windows\system32\catroot
2015-02-16 12:40:13 ----D---- C:\Windows
2015-02-15 20:23:56 ----RD---- C:\Program Files (x86)
2015-02-15 19:32:20 ----HD---- C:\ProgramData
2015-02-15 17:55:28 ----RD---- C:\Program Files
2015-02-14 16:39:10 ----D---- C:\Windows\debug
2015-02-14 16:23:23 ----D---- C:\Windows\system32\Tasks
2015-02-14 16:23:22 ----D---- C:\Windows\Tasks
2015-02-14 16:23:15 ----D---- C:\Program Files (x86)\Common Files
2015-02-14 14:11:38 ----D---- C:\Windows\system32\config
2015-02-14 13:58:14 ----D---- C:\Windows\WinSxS
2015-02-14 13:58:08 ----D---- C:\Windows\SysWOW64
2015-02-14 13:50:28 ----RD---- C:\Windows\ToastData
2015-02-14 13:50:26 ----D---- C:\Program Files\Windows Journal
2015-02-14 13:50:25 ----D---- C:\Windows\SYSWOW64\wbem
2015-02-14 13:50:25 ----D---- C:\Windows\SYSWOW64\setup
2015-02-14 13:50:25 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-02-14 13:50:25 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-14 13:50:24 ----RD---- C:\Windows\ImmersiveControlPanel
2015-02-14 13:50:24 ----D---- C:\Windows\system32\wbem
2015-02-14 13:50:24 ----D---- C:\Windows\system32\setup
2015-02-14 13:50:24 ----D---- C:\Windows\system32\oobe
2015-02-14 13:50:24 ----D---- C:\Windows\system32\nl-NL
2015-02-14 13:50:24 ----D---- C:\Windows\system32\en-US
2015-02-14 13:50:24 ----D---- C:\Windows\system32\drivers\nl-NL
2015-02-14 13:50:24 ----D---- C:\Windows\system32\drivers\en-US
2015-02-14 13:50:24 ----D---- C:\Windows\system32\drivers
2015-02-14 13:50:24 ----D---- C:\Windows\system32\Boot
2015-02-14 13:50:21 ----RSD---- C:\Windows\Fonts
2015-02-14 13:50:21 ----D---- C:\Windows\apppatch
2015-02-14 13:50:19 ----D---- C:\Windows\SYSWOW64\InputMethod
2015-02-14 13:50:13 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-14 13:50:12 ----D---- C:\Windows\SYSWOW64\migration
2015-02-14 13:50:12 ----D---- C:\Windows\system32\migration
2015-02-14 13:50:12 ----D---- C:\Windows\PolicyDefinitions
2015-02-14 13:50:10 ----D---- C:\Program Files\Internet Explorer
2015-02-14 13:50:05 ----D---- C:\Windows\system32\DriverStore
2015-02-14 13:43:24 ----D---- C:\Windows\CbsTemp
2015-02-14 12:04:33 ----D---- C:\Windows\system32\catroot2
2015-02-13 21:01:10 ----D---- C:\Windows\SoftwareDistribution
2015-02-13 12:50:53 ----RD---- C:\Users
2015-02-13 12:31:03 ----D---- C:\Windows\system32\wdi
2015-02-12 15:28:13 ----D---- C:\Windows\rescache
2015-02-12 15:04:06 ----RSD---- C:\Windows\assembly
2015-02-12 12:42:19 ----SHD---- C:\System Volume Information
2015-02-11 17:39:16 ----SHD---- C:\Windows\Installer
2015-02-07 11:43:13 ----D---- C:\Windows\system32\NDF
2015-02-05 14:28:44 ----D---- C:\Windows\Logs
2015-02-05 14:16:24 ----D---- C:\Program Files\Dropbox
2015-02-05 14:16:24 ----D---- C:\Program Files\Booking.COM
2015-02-05 12:44:38 ----D---- C:\Windows\system32\sr-Latn-RS
2015-02-05 12:44:38 ----D---- C:\Windows\system32\sr-Latn-CS
2015-02-05 12:44:36 ----D---- C:\Program Files\Windows Defender
2015-02-05 12:44:32 ----D---- C:\Program Files (x86)\Windows Defender
2015-02-05 12:44:18 ----SD---- C:\ProgramData\Microsoft
2015-02-05 12:44:18 ----D---- C:\Windows\AppCompat
2015-02-05 12:44:08 ----D---- C:\Windows\WinStore
2015-02-05 12:43:59 ----D---- C:\Program Files\Common Files\microsoft shared
2015-02-05 12:43:56 ----D---- C:\Windows\system32\CodeIntegrity
2015-02-05 12:43:55 ----D---- C:\Windows\MediaViewer
2015-02-05 12:43:54 ----D---- C:\Windows\FileManager
2015-02-05 12:43:54 ----D---- C:\Windows\Camera
2015-02-04 13:32:07 ----D---- C:\Program Files (x86)\Foxit PhantomPDF
2015-02-03 12:49:25 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-02-01 17:44:43 ----D---- C:\ProgramData\McAfee
2015-02-01 15:10:18 ----HD---- C:\Windows\ELAMBKUP
2015-02-01 14:45:23 ----D---- C:\Program Files\mcafee
2015-02-01 13:16:00 ----D---- C:\Program Files (x86)\Windows Media Player
2015-02-01 13:16:00 ----D---- C:\Program Files (x86)\Windows Mail
2015-02-01 13:15:59 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-02-01 13:15:58 ----D---- C:\Program Files\Windows Media Player
2015-02-01 13:15:58 ----D---- C:\Program Files\Windows Mail
2015-02-01 13:15:57 ----D---- C:\Program Files\Windows Photo Viewer
2015-02-01 13:15:57 ----D---- C:\Program Files\Common Files\System
2015-02-01 13:15:56 ----D---- C:\Windows\servicing
2015-02-01 13:15:51 ----D---- C:\Windows\SYSWOW64\winrm
2015-02-01 13:15:51 ----D---- C:\Windows\SYSWOW64\oobe
2015-02-01 13:15:51 ----D---- C:\Windows\SYSWOW64\fr-FR
2015-02-01 13:15:49 ----D---- C:\Windows\SYSWOW64\XPSViewer
2015-02-01 13:15:49 ----D---- C:\Windows\SYSWOW64\WCN
2015-02-01 13:15:49 ----D---- C:\Windows\SYSWOW64\slmgr
2015-02-01 13:15:49 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2015-02-01 13:15:49 ----D---- C:\Windows\SYSWOW64\MUI
2015-02-01 13:15:49 ----D---- C:\Windows\SYSWOW64\drivers
2015-02-01 13:15:49 ----D---- C:\Windows\SYSWOW64\Dism
2015-02-01 13:15:47 ----D---- C:\Windows\SYSWOW64\Com
2015-02-01 13:15:47 ----D---- C:\Windows\IME
2015-02-01 13:15:46 ----D---- C:\Windows\system32\winrm
2015-02-01 13:15:46 ----D---- C:\Windows\system32\migwiz
2015-02-01 13:15:46 ----D---- C:\Windows\system32\fr-FR
2015-02-01 13:15:35 ----D---- C:\Windows\system32\Sysprep
2015-02-01 13:15:35 ----D---- C:\Windows\system32\slmgr
2015-02-01 13:15:35 ----D---- C:\Windows\system32\MUI
2015-02-01 13:15:35 ----D---- C:\Windows\system32\drivers\UMDF
2015-02-01 13:15:34 ----D---- C:\Windows\system32\WCN
2015-02-01 13:15:34 ----D---- C:\Windows\system32\Dism
2015-02-01 13:15:32 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2015-02-01 13:15:31 ----SD---- C:\Windows\system32\dsc
2015-02-01 13:15:31 ----D---- C:\Windows\system32\SystemResetPlatform
2015-02-01 13:15:31 ----D---- C:\Windows\system32\Com
2015-02-01 13:15:31 ----D---- C:\Windows\Help
2015-02-01 11:37:52 ----D---- C:\Program Files\Common Files
2015-01-30 18:37:00 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-01-30 18:20:15 ----D---- C:\Windows\SYSWOW64\config
2015-01-30 17:37:58 ----D---- C:\Program Files (x86)\Acer
2015-01-25 21:31:09 ----HD---- C:\Program Files\WindowsApps
2015-01-25 15:51:18 ----A---- C:\Windows\win.ini
2015-01-25 15:48:43 ----D---- C:\Windows\twain_32
2015-01-25 13:15:43 ----D---- C:\ProgramData\WildTangent
2015-01-25 13:07:34 ----D---- C:\Program Files (x86)\WildTangent Games
2015-01-25 12:10:12 ----D---- C:\ProgramData\Temp
2015-01-25 05:16:19 ----D---- C:\Windows\system32\restore
2015-01-25 05:07:22 ----D---- C:\Windows\AppReadiness
2015-01-25 05:00:07 ----SHD---- C:\$Recycle.Bin
2015-01-24 16:49:40 ----D---- C:\ProgramData\CyberLink
2015-01-24 15:54:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-01-24 15:49:24 ----HD---- C:\OEM
2015-01-24 15:26:40 ----D---- C:\ProgramData\acer
2015-01-24 14:45:05 ----D---- C:\ProgramData\OEM

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2014-11-18 203544]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2014-07-18 313624]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2014-10-05 124184]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2014-06-18 31512]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2014-10-01 786304]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2014-10-01 348560]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2014-06-18 153368]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2014-12-08 260888]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2014-08-28 243480]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2015-01-25 52000]
R1 Avgwfpa;AVG Firewall Driver; C:\Windows\system32\DRIVERS\avgwfpa.sys [2014-09-24 277784]
R3 bcbtums;@oem19.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2013-08-07 170712]
R3 BCM43XX;@oem21.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl63a.sys [2013-09-07 7480496]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2014-03-18 81920]
R3 btwampfl;@oem19.inf,%btwampfl.ServiceName%;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2013-09-04 166104]
R3 ewusbnet;@oem26.inf,%qcwwan.Service.DispName%;HUAWEI USB-NDIS miniport; C:\Windows\system32\DRIVERS\ewusbnet.sys [2009-10-21 243200]
R3 GPIO;@oem11.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\Windows\System32\drivers\iaiogpioe.sys [2014-06-09 31232]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-09-10 117248]
R3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-10-12 114304]
R3 iaioi2c;@oem12.inf,%Driver_Service.Desc%;I2C Controller Service; C:\Windows\System32\drivers\iaioi2ce.sys [2014-06-09 69632]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-04-23 3789824]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-07-08 4007512]
R3 IntcDAud;@oem1.inf,%IntcDAud.SvcDesc%;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-04-23 450520]
R3 iwdbus;@oem4.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-26 27032]
R3 LMDriver;@oem22.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\Windows\System32\drivers\LMDriver.sys [2013-07-18 21360]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2014-10-01 181584]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2014-10-01 313680]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2014-10-01 526360]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [2014-09-19 447440]
R3 RadioShim;@oem22.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\Windows\System32\drivers\RadioShim.sys [2013-07-18 14680]
R3 RTL8168;@oem5.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-05-29 873176]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2014-11-24 14112]
R3 TXEIx64;@oem10.inf,%TEE_SvcDesc%;Intel® Trusted Execution Engine Interface ; C:\Windows\System32\drivers\TXEIx64.sys [2014-01-15 88592]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\Windows\system32\DRIVERS\avgboota.sys [2013-09-04 20496]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\Windows\system32\drivers\mfeelamk.sys [2014-10-01 70608]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\Windows\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 btwaudio;@oem15.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2013-07-11 186584]
S3 btwavdt;@oem17.inf,%btwavdt.SvcDesc%;Bluetooth AVDT; C:\Windows\System32\drivers\btwavdt.sys [2013-07-11 228568]
S3 btwl2cap;@oem18.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2012-07-27 40248]
S3 btwrchid;btwrchid; C:\Windows\System32\drivers\btwrchid.sys [2013-07-11 38616]
S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2014-10-01 72136]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys []
S3 dot4;@oem29.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2012-09-25 151968]
S3 Dot4Print;@oem30.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\Windows\System32\drivers\Dot4Prt.sys [2012-09-25 27040]
S3 dot4usb;@oem29.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2012-09-25 49056]
S3 e.dentifier2;@oem28.inf,%SvcDesc%;SmartCard Reader ABN AMRO e.dentifier2; C:\Windows\system32\DRIVERS\aabed2.sys [2008-03-20 28672]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\Windows\system32\drivers\HipShieldK.sys [2013-09-23 197704]
S3 intaud_WaveExtensible;@oem3.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-26 38296]
S3 mfencrk;McAfee Inc. mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [2014-09-19 96600]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2014-03-18 167424]
S3 RSUSBVSTOR;@oem13.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-27 331992]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 usbser;@oem33.inf,%DESCRIPTION%;SIGMA USB; C:\Windows\system32\DRIVERS\usbser.sys [2013-08-22 33280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2015-01-06 3440080]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2015-01-06 309232]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2013-09-05 976600]
R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-11-12 2449592]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2013-08-22 37768]
R2 igfxCUIService1.0.0.0;Intel® HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-06-09 315376]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-07-28 469736]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2015-02-12 155368]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2014-10-06 562200]
R2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\1.3.336.0\McCSPServiceHost.exe [2014-11-21 422632]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-11-06 1050952]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2014-10-01 189920]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 ogmservice;Online Games Manager; C:\Program Files (x86)\Online Games Manager\ogmservice.exe [2014-03-27 581568]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-10-13 743688]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2014-11-24 2604856]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe [2012-01-25 240408]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2013-08-22 37768]
R3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2014-12-03 601864]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe [2012-01-25 192792]
S2 BcmBtRSupport;@oem19.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\Windows\system32\BtwRSupportService.exe [2013-08-07 2252504]
S2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
S2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S3 cphs;Intel® Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-06-09 279024]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2015-01-24 137200]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-03-16 119408]
S3 ose;Office  Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 150600]
S4 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2014-12-19 2713856]
S4 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-06-12 2573032]
S4 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2015-01-25 347200]
S4 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2015-01-25 265808]
S4 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS; C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S4 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
S4 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]
S4 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-06-26 458984]
S4 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2014-06-26 449768]
S4 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-07-15 234240]

-----------------EOF-----------------

 

De vraag of ik via webmail e-mail kan verzenden kan ik niet beantwoorden, omdat ik niet weet hoe dat moet.

Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.