Ga naar inhoud

LIVE MAIL


opi82

Aanbevolen berichten

  • Reacties 24
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Download icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.


Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .


RSIT Logbestanden plaatsen

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.


Bekijk ook de

.
Link naar reactie
Delen op andere sites

Logfile of random's system information tool 1.10 (written by random/random)

Run by gebruiker at 2015-11-12 14:40:17

Microsoft Windows 8.1 

System drive C: has 416 GB (91%) free of 459 GB

Total RAM: 4019 MB (57% free)

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 14:40:17, on 12/11/2015

Platform: Unknown Windows (WinNT 6.02.1008)

MSIE: Internet Explorer v11.0 (11.00.9600.17840)

Boot mode: Normal

 

Running processes:

c:\program files (x86)\cmcm\Clean Master\cmtray.exe

C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup.exe

C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe

C:\Program Files\AVAST Software\Avast\avastui.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Avira\Antivirus\avgnt.exe

C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe

C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files\trend micro\gebruiker.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll

O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll

O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll

O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup

O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [cmsc] "c:\program files (x86)\cmcm\Clean Master\cmtray.exe" -autorun

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min

O4 - HKLM\..\Run: [speedup_umh] C:\Program Files (x86)\Avira\AviraSpeedup\Speedup_umh.exe

O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

O4 - HKCU\..\Run: [AcerPortal] "C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" startup

O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe

O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe

O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe

O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe

O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe

O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe

O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe

O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe

O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe

O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe

O23 - Service: Clean Master Core Service (cmcore) - Kingsoft Corporation - c:\program files (x86)\cmcm\Clean Master\cmcore.exe

O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe

O23 - Service: Dropbox-update-service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

O23 - Service: Dropbox-update-service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: Intel® HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)

O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe

O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe

O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe

O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe

O23 - Service: McAfee OOBE Service2 (McOobeSv2) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe

O23 - Service: Reimage Real Time Protector (ReimageRealTimeProtector) - Reimage® - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe

O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 

--

End of file - 12214 bytes

 

======Listing Processes======

 

 

 

 

 

wininit.exe

 

 

winlogon.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

"dwm.exe"

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\igfxCUIService.exe

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k NetworkService

"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"

C:\Windows\Explorer.EXE

"c:\program files (x86)\cmcm\Clean Master\cmcore.exe" /service cmcore

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

taskhostex.exe 

"C:\Program Files (x86)\Avira\Antivirus\sched.exe"

ClassicStartMenu.exe -startup

"c:\program files (x86)\cmcm\Clean Master\cmtray.exe" -autorun

"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe"

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"

"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"

"C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup.exe" -autorun

"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"

C:\Windows\System32\svchost.exe -k utcsvc

"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" -r "C:\Users\gebruiker\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" -u S-1-5-21-3221722205-3925283484-2917467651-1001 -c 400 -s 482 -g "C:\ProgramData\acer\CCD"

\??\C:\Windows\system32\conhost.exe 0x4

"C:\Program Files\Intel\iCLS Client\HeciServer.exe"

"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"

"C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe" /McCoreSvc

"C:\Windows\system32\mfevtps.exe"

"C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe"

"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"

"C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe"

"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe"

"C:\Windows\system32\GWX\GWX.exe" 

"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"

"C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe"

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"

"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"

C:\Windows\system32\wbem\unsecapp.exe -Embedding

C:\Windows\system32\wbem\unsecapp.exe -Embedding

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00000a8c

C:\Windows\System32\skydrive.exe -Embedding

C:\Windows\system32\SearchIndexer.exe /Embedding

"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

"C:\Windows\System32\SettingSyncHost.exe" -Embedding

"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s

"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE" 

"C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" startup

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"

igfxEM.exe 

"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"

igfxHK.exe 

igfxTray.exe 

"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"

"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"

C:\Windows\system32\wbem\unsecapp.exe -Embedding

"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui

"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe" 

"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe" 

"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 

"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min

"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost

C:\Windows\system32\wbem\unsecapp.exe -Embedding

"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe" 

"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" task

"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac

"C:\Program Files (x86)\Acer\Care Center\ACCStd.exe" 

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe"

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --silent-launch --connect-to-metro-viewer

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -ServerName:DefaultBrowserServer

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3332.0.1070003324\1835406451" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3496 --ignored=" --type=renderer " /prefetch:822062411

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled1ConCubic/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="3332.2.73983910\2146412461" --font-cache-shared-handle=2368 /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled1ConCubic/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="3332.3.988642673\1924266652" --font-cache-shared-handle=2492 /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled1ConCubic/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="3332.4.1942502192\517367662" --font-cache-shared-handle=2484 /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled1ConCubic/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="3332.5.867899749\1915910127" --font-cache-shared-handle=2664 /prefetch:673131151

"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\info.txt

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled1ConCubic/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="3332.16.983171915\1626803679" --font-cache-shared-handle=3036 /prefetch:673131151

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 

"C:\Windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572 

 

"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe" -START

C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

"C:\Users\gebruiker\Downloads\RSITx64 (2).exe" 

 

======Scheduled tasks folder======

 

C:\Windows\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe  /c 

C:\Windows\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe  /ua /installsource scheduler 

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c 

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]

ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09 809408]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-12 655480]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]

ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09 487360]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]

ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09 687040]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-10-22 460384]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-12 559624]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-10-22 172640]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]

ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09 442816]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09 809408]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09 687040]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13672304]

"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2015-08-09 161728]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-10-19 8551848]

"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2015-10-21 7935904]

"AcerPortal"=C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2015-10-15 2732448]

 

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2015-10-13 36711472]

"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-11-06 6133520]

"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]

"cmsc"=c:\program files (x86)\cmcm\Clean Master\cmtray.exe [2015-09-24 771912]

"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-10-06 596528]

"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2015-10-14 66320]

"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2015-10-28 788176]

"Speedup_umh"=C:\Program Files (x86)\Avira\AviraSpeedup\Speedup_umh.exe [2015-10-16 194216]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"SoftwareSASGeneration"=1

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"VIDC.YUY2"=msyuv.dll

"vidc.i420"=iyuv_32.dll

"msacm.msgsm610"=msgsm32.acm

"msacm.msg711"=msg711.acm

"VIDC.YVYU"=msyuv.dll

"VIDC.YVU9"=tsbyuv.dll

"wavemapper"=msacm32.drv

"midimapper"=midimap.dll

"VIDC.UYVY"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.mrle"=msrle32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msadpcm"=msadp32.acm

"vidc.msvc"=msvidc32.dll

"MSVideo8"=VfWWDM32.dll

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

 

======File associations======

 

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

 

======List of files/folders created in the last 1 month======

 

2015-11-12 14:23:01 ----D---- C:\rsit

2015-11-12 14:23:01 ----D---- C:\Program Files\trend micro

2015-11-12 11:44:58 ----D---- C:\Users\gebruiker\AppData\Roaming\Avira

2015-11-12 11:44:16 ----D---- C:\Users\gebruiker\AppData\Roaming\Mozilla

2015-11-12 11:42:34 ----A---- C:\Windows\system32\drivers\avnetflt.sys

2015-11-12 11:42:33 ----A---- C:\Windows\system32\drivers\avkmgr.sys

2015-11-12 11:42:33 ----A---- C:\Windows\system32\drivers\avipbb.sys

2015-11-12 11:42:33 ----A---- C:\Windows\system32\drivers\avgntflt.sys

2015-11-12 11:41:20 ----D---- C:\Program Files (x86)\Avira

2015-11-12 11:41:19 ----D---- C:\ProgramData\Avira

2015-11-12 11:19:17 ----D---- C:\ProgramData\Reimage Protector

2015-11-12 11:19:10 ----D---- C:\Program Files\Reimage

2015-11-12 11:18:44 ----A---- C:\Windows\Reimage.ini

2015-11-11 15:48:46 ----A---- C:\Windows\system32\drivers\tdx.sys

2015-11-11 15:48:46 ----A---- C:\Windows\system32\drivers\afd.sys

2015-11-11 15:48:45 ----A---- C:\Windows\SYSWOW64\kerberos.dll

2015-11-11 15:48:45 ----A---- C:\Windows\system32\kerberos.dll

2015-11-11 15:48:43 ----A---- C:\Windows\SYSWOW64\schannel.dll

2015-11-11 15:48:43 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll

2015-11-11 15:48:43 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll

2015-11-11 15:48:43 ----A---- C:\Windows\system32\schannel.dll

2015-11-11 15:48:43 ----A---- C:\Windows\system32\ncryptsslp.dll

2015-11-11 15:48:43 ----A---- C:\Windows\system32\ncrypt.dll

2015-11-11 15:48:43 ----A---- C:\Windows\system32\lsasrv.dll

2015-11-11 15:48:43 ----A---- C:\Windows\system32\drivers\cng.sys

2015-11-11 15:48:43 ----A---- C:\Windows\system32\bcryptprimitives.dll

2015-11-11 15:48:42 ----A---- C:\Windows\SYSWOW64\ncrypt.dll

2015-11-11 15:48:42 ----A---- C:\Windows\SYSWOW64\certcli.dll

2015-11-11 15:48:42 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys

2015-11-11 15:48:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys

2015-11-11 15:48:42 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2015-11-11 15:48:42 ----A---- C:\Windows\system32\certcli.dll

2015-11-11 15:48:40 ----A---- C:\Windows\system32\AuthHost.exe

2015-11-11 15:48:39 ----A---- C:\Windows\system32\ntoskrnl.exe

2015-11-11 15:48:38 ----A---- C:\Windows\system32\winresume.exe

2015-11-11 15:48:38 ----A---- C:\Windows\system32\winload.exe

2015-11-11 15:48:34 ----A---- C:\Windows\SYSWOW64\wuwebv.dll

2015-11-11 15:48:34 ----A---- C:\Windows\SYSWOW64\wudriver.dll

2015-11-11 15:48:34 ----A---- C:\Windows\SYSWOW64\wuapp.exe

2015-11-11 15:48:34 ----A---- C:\Windows\SYSWOW64\wuapi.dll

2015-11-11 15:48:34 ----A---- C:\Windows\system32\wuwebv.dll

2015-11-11 15:48:34 ----A---- C:\Windows\system32\WUSettingsProvider.dll

2015-11-11 15:48:34 ----A---- C:\Windows\system32\wudriver.dll

2015-11-11 15:48:34 ----A---- C:\Windows\system32\wucltux.dll

2015-11-11 15:48:34 ----A---- C:\Windows\system32\wuaueng.dll

2015-11-11 15:48:34 ----A---- C:\Windows\system32\wuauclt.exe

2015-11-11 15:48:34 ----A---- C:\Windows\system32\wuapp.exe

2015-11-11 15:48:34 ----A---- C:\Windows\system32\wuapi.dll

2015-11-11 15:48:29 ----A---- C:\Windows\SYSWOW64\untfs.dll

2015-11-11 15:48:29 ----A---- C:\Windows\system32\untfs.dll

2015-11-11 15:48:29 ----A---- C:\Windows\system32\drivers\tunnel.sys

2015-11-11 15:48:28 ----A---- C:\Windows\SYSWOW64\puiobj.dll

2015-11-11 15:48:28 ----A---- C:\Windows\system32\puiobj.dll

2015-11-11 15:48:28 ----A---- C:\Windows\system32\localspl.dll

2015-11-11 15:48:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll

2015-11-11 15:48:27 ----A---- C:\Windows\system32\drivers\tpm.sys

2015-11-11 15:48:26 ----A---- C:\Windows\system32\gdi32.dll

2015-11-11 15:48:18 ----A---- C:\Windows\system32\mshtml.dll

2015-11-11 15:48:17 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2015-11-11 15:48:12 ----A---- C:\Windows\system32\ieframe.dll

2015-11-11 15:48:11 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2015-11-11 15:48:10 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2015-11-11 15:48:10 ----A---- C:\Windows\system32\jscript9.dll

2015-11-11 15:48:10 ----A---- C:\Windows\system32\iertutil.dll

2015-11-11 15:48:09 ----A---- C:\Windows\SYSWOW64\wininet.dll

2015-11-11 15:48:09 ----A---- C:\Windows\SYSWOW64\vbscript.dll

2015-11-11 15:48:09 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2015-11-11 15:48:09 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

2015-11-11 15:48:09 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2015-11-11 15:48:09 ----A---- C:\Windows\SYSWOW64\jscript.dll

2015-11-11 15:48:09 ----A---- C:\Windows\SYSWOW64\inetcomm.dll

2015-11-11 15:48:09 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2015-11-11 15:48:09 ----A---- C:\Windows\system32\wininet.dll

2015-11-11 15:48:09 ----A---- C:\Windows\system32\vbscript.dll

2015-11-11 15:48:09 ----A---- C:\Windows\system32\urlmon.dll

2015-11-11 15:48:09 ----A---- C:\Windows\system32\msfeeds.dll

2015-11-11 15:48:09 ----A---- C:\Windows\system32\jscript.dll

2015-11-11 15:48:09 ----A---- C:\Windows\system32\inetcomm.dll

2015-11-11 15:48:09 ----A---- C:\Windows\system32\ieapfltr.dll

2015-11-11 15:48:09 ----A---- C:\Windows\system32\ie4uinit.exe

2015-11-11 15:48:02 ----A---- C:\Windows\system32\win32k.sys

2015-11-11 15:48:00 ----A---- C:\Windows\SYSWOW64\nshwfp.dll

2015-11-11 15:48:00 ----A---- C:\Windows\system32\IKEEXT.DLL

2015-11-11 15:48:00 ----A---- C:\Windows\system32\drivers\wfplwfs.sys

2015-11-11 15:47:59 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL

2015-11-11 15:47:59 ----A---- C:\Windows\system32\nshwfp.dll

2015-11-11 15:47:59 ----A---- C:\Windows\system32\FWPUCLNT.DLL

2015-11-11 15:47:59 ----A---- C:\Windows\system32\BFE.DLL

2015-11-11 15:30:28 ----A---- C:\Windows\system32\FNTCACHE.DAT

2015-11-11 10:37:46 ----D---- C:\Program Files\Windows Live

2015-11-11 10:37:39 ----D---- C:\Program Files (x86)\Windows Live

2015-11-09 11:46:57 ----D---- C:\Program Files (x86)\Auslogics

2015-11-09 09:59:41 ----A---- C:\Windows\system32\appraiser.dll

2015-11-09 09:59:40 ----A---- C:\Windows\system32\invagent.dll

2015-11-09 09:59:40 ----A---- C:\Windows\system32\devinv.dll

2015-11-09 09:59:39 ----A---- C:\Windows\system32\generaltel.dll

2015-11-09 09:59:39 ----A---- C:\Windows\system32\CompatTelRunner.exe

2015-11-09 09:59:39 ----A---- C:\Windows\system32\aeinv.dll

2015-11-09 09:59:39 ----A---- C:\Windows\system32\acmigration.dll

2015-11-08 19:26:35 ----A---- C:\Windows\system32\aswBoot.exe

2015-10-14 08:35:21 ----D---- C:\logs

2015-10-14 08:34:31 ----D---- C:\Program Files (x86)\VitalinkViewer

2015-10-14 08:04:13 ----A---- C:\Windows\SYSWOW64\d2d1.dll

2015-10-14 08:04:13 ----A---- C:\Windows\system32\d2d1.dll

2015-10-14 08:04:11 ----A---- C:\Windows\system32\KernelBase.dll

2015-10-14 08:04:10 ----A---- C:\Windows\SYSWOW64\KernelBase.dll

2015-10-14 08:04:10 ----A---- C:\Windows\SYSWOW64\advapi32.dll

2015-10-14 08:04:10 ----A---- C:\Windows\system32\advapi32.dll

2015-10-14 08:04:06 ----A---- C:\Windows\system32\shell32.dll

2015-10-14 08:04:05 ----A---- C:\Windows\SYSWOW64\shell32.dll

2015-10-14 08:04:00 ----A---- C:\Windows\SYSWOW64\ntdll.dll

2015-10-14 08:04:00 ----A---- C:\Windows\system32\ntdll.dll

2015-10-14 08:04:00 ----A---- C:\Windows\system32\fveapi.dll

2015-10-14 08:04:00 ----A---- C:\Windows\system32\bdesvc.dll

2015-10-14 08:03:33 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

2015-10-14 08:03:33 ----A---- C:\Windows\SYSWOW64\ieui.dll

2015-10-14 08:03:33 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

2015-10-14 08:03:33 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

2015-10-14 08:03:33 ----A---- C:\Windows\system32\ieui.dll

2015-10-14 08:03:33 ----A---- C:\Windows\system32\dxtrans.dll

2015-10-14 08:03:33 ----A---- C:\Windows\system32\dxtmsft.dll

2015-10-14 08:03:32 ----A---- C:\Windows\SYSWOW64\webcheck.dll

2015-10-14 08:03:32 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll

2015-10-14 08:03:32 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

2015-10-14 08:03:32 ----A---- C:\Windows\system32\webcheck.dll

2015-10-14 08:03:32 ----A---- C:\Windows\system32\mshtmled.dll

2015-10-14 08:03:32 ----A---- C:\Windows\system32\MshtmlDac.dll

2015-10-14 08:03:32 ----A---- C:\Windows\system32\iedkcs32.dll

2015-10-14 08:03:28 ----A---- C:\Windows\system32\NcdAutoSetup.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll

2015-10-14 08:03:22 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\system32\ucrtbase.dll

2015-10-14 08:03:21 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll

2015-10-14 08:03:21 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll

2015-10-13 15:13:16 ----A---- C:\Windows\system32\beid_ff_pkcs11.dll

2015-10-13 15:12:48 ----A---- C:\Windows\system32\beidmdrv64.dll

2015-10-13 15:12:44 ----A---- C:\Windows\system32\beidpkcs11.dll

2015-10-13 15:12:10 ----A---- C:\Windows\SYSWOW64\beid_ff_pkcs11.dll

2015-10-13 15:11:42 ----A---- C:\Windows\SYSWOW64\beidmdrv32.dll

2015-10-13 15:11:36 ----A---- C:\Windows\SYSWOW64\beidpkcs11.dll

 

======List of files/folders modified in the last 1 month======

 

2015-11-12 14:40:17 ----D---- C:\Windows\Temp

2015-11-12 14:23:26 ----D---- C:\Windows\Prefetch

2015-11-12 14:23:01 ----RD---- C:\Program Files

2015-11-12 14:19:32 ----RD---- C:\Windows\System32

2015-11-12 13:00:02 ----D---- C:\Windows\system32\sru

2015-11-12 12:22:24 ----D---- C:\Windows

2015-11-12 11:52:21 ----D---- C:\Windows\system32\MsDtc

2015-11-12 11:52:21 ----D---- C:\Windows\Inf

2015-11-12 11:52:21 ----D---- C:\Windows\debug

2015-11-12 11:52:20 ----D---- C:\Windows\system32\catroot2

2015-11-12 11:52:08 ----D---- C:\Windows\SYSWOW64\LogFiles

2015-11-12 11:52:08 ----D---- C:\Windows\system32\LogFiles

2015-11-12 11:45:41 ----SHD---- C:\System Volume Information

2015-11-12 11:44:34 ----D---- C:\Windows\system32\Tasks

2015-11-12 11:44:32 ----RSD---- C:\Windows\Fonts

2015-11-12 11:43:33 ----D---- C:\Windows\system32\drivers

2015-11-12 11:41:54 ----SHD---- C:\Windows\Installer

2015-11-12 11:41:20 ----D---- C:\Program Files (x86)

2015-11-12 11:41:19 ----HD---- C:\ProgramData

2015-11-12 11:41:13 ----D---- C:\ProgramData\Package Cache

2015-11-12 11:27:33 ----D---- C:\Windows\Microsoft.NET

2015-11-12 11:09:34 ----D---- C:\Windows\system32\config

2015-11-12 10:59:47 ----D---- C:\Windows\AppReadiness

2015-11-12 10:56:02 ----D---- C:\Windows\WinSxS

2015-11-12 10:55:59 ----D---- C:\Windows\SysWOW64

2015-11-12 10:55:41 ----D---- C:\Windows\system32\DriverStore

2015-11-11 18:11:21 ----D---- C:\Windows\apppatch

2015-11-11 18:11:20 ----RD---- C:\Windows\ToastData

2015-11-11 17:57:30 ----D---- C:\Windows\CbsTemp

2015-11-11 16:28:17 ----D---- C:\Windows\system32\MRT

2015-11-11 16:25:29 ----A---- C:\Windows\system32\MRT.exe

2015-11-11 11:57:37 ----D---- C:\Windows\system32\catroot

2015-11-11 10:32:16 ----RSD---- C:\Windows\assembly

2015-11-09 13:07:19 ----SD---- C:\Windows\system32\CompatTel

2015-11-09 13:07:19 ----D---- C:\Windows\system32\appraiser

2015-11-09 11:36:55 ----D---- C:\AdwCleaner

2015-11-08 19:21:48 ----D---- C:\Windows\system32\wbem

2015-11-08 19:20:36 ----D---- C:\Windows\WinStore

2015-11-08 19:20:36 ----D---- C:\Windows\Tasks

2015-11-08 19:20:36 ----D---- C:\Windows\SYSWOW64\nl-NL

2015-11-08 19:20:36 ----D---- C:\Windows\SYSWOW64\en-US

2015-11-08 19:20:36 ----D---- C:\Windows\system32\nl-NL

2015-11-08 19:20:36 ----D---- C:\Windows\system32\en-US

2015-11-08 19:20:35 ----D---- C:\Program Files\Windows Defender

2015-11-08 19:20:18 ----D---- C:\Windows\SYSWOW64\Macromed

2015-11-08 19:20:18 ----D---- C:\Windows\system32\Sysprep

2015-11-08 19:20:17 ----SD---- C:\Windows\system32\GWX

2015-11-08 19:20:17 ----D---- C:\Windows\system32\Macromed

2015-11-08 19:20:16 ----D---- C:\Windows\system32\CodeIntegrity

2015-11-08 19:20:15 ----D---- C:\Windows\AppCompat

2015-11-08 19:20:07 ----D---- C:\ProgramData\privazer

2015-11-08 19:20:05 ----D---- C:\ProgramData\ClassicShell

2015-11-08 19:20:05 ----D---- C:\Program Files\SUPERAntiSpyware

2015-11-08 19:20:05 ----D---- C:\Program Files\CCleaner

2015-11-08 19:20:03 ----D---- C:\Program Files (x86)\PrivaZer

2015-11-08 19:19:57 ----D---- C:\Program Files (x86)\Common Files

2015-11-08 19:19:57 ----D---- C:\Program Files (x86)\Belgium Identity Card

2015-11-08 19:19:57 ----D---- C:\Program Files (x86)\Acer

2015-11-08 19:19:55 ----HD---- C:\OEM

2015-11-08 19:16:22 ----HD---- C:\Program Files\WindowsApps

2015-11-08 19:03:51 ----D---- C:\Windows\registration

2015-11-08 18:59:43 ----D---- C:\ProgramData\Oracle

2015-11-08 18:58:15 ----D---- C:\Program Files (x86)\Java

2015-11-08 18:57:59 ----D---- C:\Program Files (x86)\Google

2015-11-08 18:57:34 ----D---- C:\Program Files (x86)\Dropbox

2015-11-08 18:37:33 ----D---- C:\Windows\Logs

2015-11-08 09:57:50 ----D---- C:\Windows\SoftwareDistribution

2015-11-03 01:23:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

2015-10-30 14:53:54 ----D---- C:\Users\gebruiker\AppData\Roaming\HpUpdate

2015-10-26 12:44:56 ----A---- C:\Windows\system32\PerfStringBackup.INI

2015-10-22 14:09:11 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll

2015-10-21 09:51:26 ----D---- C:\ProgramData\OEM

2015-10-17 08:02:14 ----D---- C:\Program Files (x86)\eid-chrome-middleware

2015-10-14 14:05:41 ----D---- C:\Windows\rescache

2015-10-14 09:31:43 ----D---- C:\Windows\system32\Boot

2015-10-14 09:31:42 ----D---- C:\Program Files\Internet Explorer

2015-10-14 09:31:42 ----D---- C:\Program Files (x86)\Internet Explorer

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-09-18 65224]

R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-09-18 274808]

R0 BTATH_BUS;@oem14.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys [2014-02-26 35016]

R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2014-04-04 784760]

R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2014-04-04 346760]

R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-09-18 132656]

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-09-18 93528]

R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-11-06 1059656]

R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-11-06 449992]

R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2015-10-28 148632]

R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2015-10-28 28600]

R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]

R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]

R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-09-18 28656]

R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-09-18 90968]

R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-09-18 153744]

R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2015-10-28 137800]

R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2015-10-28 74440]

R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-09-18 274336]

R3 athr;@oem13.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2014-02-14 3888640]

R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-02-26 598216]

R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]

R3 iaLPSS_I2C;@oem10.inf,%iaLPSS_I2C.SVCDESC%;Intel® Serial IO I2C Driver; C:\Windows\System32\drivers\iaLPSS_I2C.sys [2013-10-03 99320]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-03-07 3729920]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-19 3897944]

R3 iwdbus;@oem4.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-01 27032]

R3 LMDriver;@oem20.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\Windows\System32\drivers\LMDriver.sys [2013-07-18 21360]

R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel® Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-12-10 100312]

R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2014-04-04 311856]

R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2014-04-04 522360]

R3 RadioShim;@oem20.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\Windows\System32\drivers\RadioShim.sys [2013-07-18 14680]

R3 RTL8168;@oem8.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-01-08 848088]

R3 RTSPER;@oem12.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-01-14 466136]

R3 SynRMIHID;@oem11.inf,%SynRMIHID.SVCDESC%;Synaptics HID Service; C:\Windows\system32\DRIVERS\SynRMIHID.sys [2014-02-19 42224]

R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]

S0 mfeelamk;McAfee Inc. mfeelamk; C:\Windows\system32\drivers\mfeelamk.sys [2014-04-04 69352]

S3 ACSSCR;@oem31.inf,%ACS.ACR38.DevDesc%;ACR38 Smart Card Reader; C:\Windows\system32\DRIVERS\a38usb.sys [2015-08-19 82480]

S3 AthBTPort;@oem17.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2014-02-26 89800]

S3 BTATH_A2DP;@oem16.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2014-02-26 355528]

S3 btath_avdt;@oem16.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2014-02-26 118984]

S3 BTATH_HCRP;@oem19.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\Windows\System32\drivers\btath_hcrp.sys [2014-02-26 179432]

S3 BTATH_LWFLT;@oem21.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2014-02-26 77464]

S3 BTATH_RCP;@oem23.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys [2014-02-26 137928]

S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]

S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]

S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2015-07-10 118272]

S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]

S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2014-04-04 70592]

S3 intaud_WaveExtensible;@oem3.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-01 38296]

S3 IntcDAud;@oem1.inf,%IntcDAud.SvcDesc%;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-03-07 450520]

S3 ksapi64;ksapi64; \??\C:\Windows\system32\drivers\ksapi64.sys [2015-09-24 56680]

S3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2014-04-04 177544]

S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]

S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2014-10-29 44544]

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]

R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2015-10-28 466408]

R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2015-10-28 466408]

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-09-18 146600]

R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2015-10-14 243968]

R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2015-08-31 2858336]

R2 cmcore;Clean Master Core Service; c:\program files (x86)\cmcm\Clean Master\cmcore.exe [2015-09-24 315208]

R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]

R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

R2 igfxCUIService1.0.0.0;Intel® HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-03-18 282096]

R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]

R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2013-12-10 169432]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2013-12-10 390616]

R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-06-10 466664]

R2 McOobeSv2;McAfee OOBE Service2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-04-04 219752]

R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2014-04-04 189912]

R2 ReimageRealTimeProtector;Reimage Real Time Protector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2015-08-19 7743472]

R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]

R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-09-18 4048280]

R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-06-12 2573032]

R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]

R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-06-26 458984]

R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2014-06-26 449768]

S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2015-10-28 936544]

S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2015-10-28 1105952]

S2 dbupdate;Dropbox-update-service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-09-13 136048]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-13 144200]

S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]

S3 cphs;Intel® Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-03-18 279024]

S3 dbupdatem;Dropbox-update-service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-09-13 136048]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-13 144200]

S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]

S3 McAWFwk;McAfee Activation Service; c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe [2013-07-29 334608]

S3 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-07-15 234240]

 

-----------------EOF-----------------
Link naar reactie
Delen op andere sites

Vóór we aan de opruiming beginnen, eerst een vraagje. Op je PC zitten sporen van 3 antivirusprogramma's (Avast, Avira en McAfee). Die gaan elkaar eerder tegenwerken, dan de veiligheid van je PC te verbeteren. Best is om een actieve scanner over te houden en de andere twee te verwijderen. Welk actief antivirusprogramma wil je behouden ? Dan nemen we bij de opruiming de andere twee meteen mee. Wil je dat eerst even laten weten a.u.b. ?

Link naar reactie
Delen op andere sites

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
 Avira SystrayStartTrigger;s
C:\Program Files (x86)\Avira;fs
C:\Users\gebruiker\AppData\Roaming\Avira;fs
Avgnt;s
Speedup_umh;s
AntiVirMailService;s
AntiVirSchedulerService;s
AntiVirService;s
AntiVirWebService;s
Avira.ServiceHost;s
HomeNetSvc;s
C:\Program Files\Common Files\McAfee;fs
McAWFwk;s
McOobeSv2;s
Mcpltsvc;s
McProxy;s
Mfefire;s
Mfevtp;s
CHRdefaults;
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r64
"Avira SystrayStartTrigger"=-;r64
"avgnt"=-;r64
"Speedup_umh"=-;r64
C:\ProgramData\Avira;fs
C:\ProgramData\Reimage Protector;fs
C:\Program Files\Reimage;fs
C:\Windows\Reimage.ini;f
emptyfolderscheck;delete
startupall;
filesrcm;
  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.
Zoek.exe logbestand plaatsen
  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.