Ga naar inhoud

form 1

jelmerkappe
 Delen

Aanbevolen berichten

iEscape Grootmeester

iEscape

Geplaatst:
Geplaatst: (aangepast)

Download 51a5f5d096dae-icon_RSIT.png RSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hoe je controleert of je met een 32- of 64-bitversie van Windows werkt kan je hier bekijken.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen

 

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

De handleiding voor het gebruik van RSIT kan je HIER bekijken en we hebben ook nog een instructievideo.

aangepast door iEscape
Link naar reactie
Delen op andere sites
jelmerkappe Groentje

jelmerkappe

Geplaatst:
  • Auteur
Geplaatst:
Logfile of random's system information tool 1.10 (written by random/random)

Run by jelmer at 2015-01-14 16:07:26

Microsoft Windows 8.1 

System drive C: has 240 GB (83%) free of 289 GB

Total RAM: 3976 MB (35% free)

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 16:14:27, on 14-1-2015

Platform: Unknown Windows (WinNT 6.02.1008)

MSIE: Internet Explorer v11.0 (11.00.9600.16518)

Boot mode: Normal

 

Running processes:

C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe

C:\Users\jelmer\AppData\Local\Pokki\Engine\HostAppService.exe

C:\Users\jelmer\AppData\Local\Pokki\Engine\HostAppService.exe

C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE

C:\WINDOWS\syswow64\wwahost.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files\trend micro\jelmer.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=APJB

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=APJB

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

O4 - HKCU\..\Run: [Pokki] "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON

O4 - HKLM\..\Policies\Explorer\Run: [btvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)

O23 - Service: AtherosSvc - Windows ® Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe

O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe

O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)

O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe

O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)

O23 - Service: GamesAppIntegrationService - TODO: <Company name> - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe

O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)

O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe

O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe

O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)

O23 - Service: @c:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe

O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe

O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Packard Bell\Packard Bell Quick Access\QASvc.exe

O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Packard Bell\Packard Bell Quick Access\RMSvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 

--

End of file - 9356 bytes

 

======Listing Processes======

 

 

 

 

 

wininit.exe

 

winlogon.exe

 

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe -k DcomLaunch

C:\WINDOWS\system32\svchost.exe -k RPCSS

"dwm.exe"

C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\WINDOWS\system32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k LocalService

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\WINDOWS\system32\svchost.exe -k NetworkService

C:\WINDOWS\System32\spoolsv.exe

C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"

"C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe"

"C:\Program Files\Elantech\ETDService.exe"

dashost.exe {7738a53d-c8f5-4f91-a249c799ee4d0e32}

"C:\Program Files\Intel\iCLS Client\HeciServer.exe"

"C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe"

"C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe"

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding

"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe"

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

"c:\Program Files (x86)\Nero\Update\NASvc.exe"

"C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe" SERVICE

C:\WINDOWS\system32\SearchIndexer.exe /Embedding

"C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\diMaster.dll" /prefetch:1

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

"C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe" /c /a /s UserSession

"C:\Program Files\Elantech\ETDCtrl.exe"

"C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe"

C:\WINDOWS\Explorer.EXE

taskhostex.exe 

C:\Windows\System32\skydrive.exe -Embedding

"C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMEvent.exe"

"C:\Program Files\Packard Bell\Packard Bell Quick Access\QASvc.exe"

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding

"C:\Program Files\Elantech\ETDTouch.exe" 

"C:\Program Files\Packard Bell\Packard Bell Quick Access\RMSvc.exe"

"C:\Program Files\Packard Bell\Packard Bell Quick Access\QAEvent.exe"

"C:\Program Files\Elantech\ETDCtrlHelper.exe" 

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding

"C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMTray.exe" 

"C:\Program Files\Packard Bell\Packard Bell Quick Access\QAMsg.exe" 

"C:\Program Files\Packard Bell\Packard Bell Quick Access\QuickAccess.exe" -hide

"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" 

"C:\Windows\System32\igfxtray.exe" 

"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"

"C:\Windows\system32\igfxsrvc.exe" -Embedding

"C:\Windows\System32\hkcmd.exe" 

"C:\Windows\System32\igfxpers.exe" 

"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s

"C:\Users\jelmer\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON

"C:\Users\jelmer\AppData\Local\Pokki\Engine\HostAppService.exe" 

"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe" 

"C:\Users\jelmer\AppData\Local\Pokki\Engine\HostAppService.exe" --type=renderer --disable-breakpad --disable-desktop-notifications --disable-logging --disable-speech-input --lang=en-US --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/OneClickSignIn/BlueOnWhite/Prefetch/ContentPrefetchPrefetchOn/Prerender/PrerenderMulti/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V1/SpdyCwnd/cwnd10/SpeculativePrefetchingLearning/SpeculativePrefetchingLearningEnabled/Test0PercentDefault/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_64/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --noerrdialogs --disable-client-side-phishing-detection --disable-bundled-ppapi-flash --channel="4108.1.289092566\626991432" /prefetch:3

"C:\Users\jelmer\AppData\Local\Pokki\Engine\StartMenuIndexer.exe" 

"C:\Windows\System32\SettingSyncHost.exe" -Embedding

"C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" -Embedding

"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe"

"C:\Windows\system32\igfxext.exe" -Embedding

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding

"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe"

C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet

C:\WINDOWS\system32\vssvc.exe

C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}

C:\WINDOWS\System32\svchost.exe -k swprv

C:\WINDOWS\system32\svchost.exe -k imgsvc

"C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe" UPDATEAPPLYLATENOTIFICATION versiontodownload 15.0.4675.1003

"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"

C:\Windows\System32\RuntimeBroker.exe -Embedding

"C:\WINDOWS\syswow64\wwahost.exe" -ServerName:App.wwa

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2072.0.345048837\1601189577" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17,38 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3277 --ignored=" --type=renderer " /prefetch:822062411

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="2072.2.1777508609\450159317" /prefetch:673131151

"C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="2072.21.479397703\162553867" /prefetch:673131151

 

"C:\Users\jelmer\Desktop\RSITx64.exe" 

C:\WINDOWS\system32\wbem\wmiprvse.exe

DsmUserTask.Exe {DE26FB2D-9B0E-11E4-8260-201A06B7FF36}

C:\WINDOWS\servicing\TrustedInstaller.exe

C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17477_none_fa2b7d3b9b36c7b4\TiWorker.exe -Embedding

 

======Scheduled tasks folder======

 

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c 

C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]

Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-01-08 205376]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]

Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-08 2324576]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-08-26 391152]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-08-26 771056]

"Persistence"=C:\Windows\system32\igfxpers.exe [2013-08-26 769520]

"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-09-06 2890056]

"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-08-27 13647576]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]

"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-09-07 132736]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Pokki"=C:\Users\jelmer\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe [2015-01-01 10232648]

 

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]

"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-09-07 132736]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2013-08-20 622080]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"EnableLinkedConnections"=1

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"VIDC.YUY2"=msyuv.dll

"vidc.i420"=iyuv_32.dll

"msacm.msgsm610"=msgsm32.acm

"msacm.msg711"=msg711.acm

"VIDC.YVYU"=msyuv.dll

"VIDC.YVU9"=tsbyuv.dll

"wavemapper"=msacm32.drv

"midimapper"=midimap.dll

"VIDC.UYVY"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.mrle"=msrle32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msadpcm"=msadp32.acm

"vidc.msvc"=msvidc32.dll

"MSVideo8"=VfWWDM32.dll

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave3"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer3"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave4"=wdmaud.drv

"mixer4"=wdmaud.drv

"midi4"=wdmaud.drv

 

======File associations======

 

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

 

======List of files/folders created in the last 3 months======

 

2015-01-14 16:07:27 ----D---- C:\Program Files\trend micro

2015-01-14 16:07:26 ----D---- C:\rsit

2015-01-13 13:43:15 ----D---- C:\ProgramData\Samsung

2015-01-13 13:43:15 ----D---- C:\Program Files (x86)\SamsungPrinterLiveUpdateInstaller

2015-01-13 13:43:15 ----D---- C:\Program Files (x86)\SamsungPrinterLiveUpdate

2015-01-13 11:18:44 ----SHD---- C:\Config.Msi

2015-01-12 07:33:52 ----D---- C:\WINDOWS\PCHEALTH

2015-01-12 07:30:17 ----D---- C:\Program Files\Microsoft Office

2015-01-12 07:30:09 ----D---- C:\Program Files (x86)\Microsoft Analysis Services

2015-01-12 07:29:24 ----D---- C:\ProgramData\Microsoft Help

2015-01-12 07:28:17 ----RHD---- C:\MSOCache

2015-01-11 21:24:27 ----D---- C:\WINDOWS\system32\MRT

2015-01-11 21:24:16 ----A---- C:\WINDOWS\system32\MRT.exe

2015-01-11 14:59:36 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

2015-01-09 17:14:39 ----D---- C:\Program Files (x86)\Symantec

2015-01-09 10:23:36 ----D---- C:\Users\jelmer\AppData\Roaming\java

2015-01-09 10:23:25 ----D---- C:\Users\jelmer\AppData\Roaming\.minecraft

2015-01-08 20:45:27 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll

2015-01-08 20:45:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll

2015-01-08 20:45:21 ----A---- C:\WINDOWS\system32\twinui.dll

2015-01-08 20:45:19 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll

2015-01-08 20:45:18 ----A---- C:\WINDOWS\system32\dwmcore.dll

2015-01-08 20:45:16 ----A---- C:\WINDOWS\system32\d3d11.dll

2015-01-08 20:45:14 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll

2015-01-08 20:45:08 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll

2015-01-08 20:45:08 ----A---- C:\WINDOWS\system32\SearchFolder.dll

2015-01-08 20:45:08 ----A---- C:\WINDOWS\system32\schedsvc.dll

2015-01-08 20:45:08 ----A---- C:\WINDOWS\system32\ntdll.dll

2015-01-08 20:45:08 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys

2015-01-08 20:45:07 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll

2015-01-08 20:45:07 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll

2015-01-08 20:45:07 ----A---- C:\WINDOWS\system32\dxgi.dll

2015-01-08 20:45:04 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe

2015-01-08 20:45:04 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll

2015-01-08 20:45:03 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe

2015-01-08 20:45:03 ----A---- C:\WINDOWS\system32\mfsvr.dll

2015-01-08 20:45:02 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll

2015-01-08 20:44:59 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll

2015-01-08 20:44:59 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll

2015-01-08 20:44:59 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll

2015-01-08 20:44:58 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll

2015-01-08 20:44:58 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll

2015-01-08 20:44:58 ----A---- C:\WINDOWS\system32\ReAgent.dll

2015-01-08 20:44:58 ----A---- C:\WINDOWS\system32\pnrpsvc.dll

2015-01-08 20:44:58 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll

2015-01-08 20:44:58 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys

2015-01-08 20:44:57 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll

2015-01-08 20:44:57 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll

2015-01-08 20:44:57 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll

2015-01-08 20:44:57 ----A---- C:\WINDOWS\system32\WSClient.dll

2015-01-08 20:44:57 ----A---- C:\WINDOWS\system32\hal.dll

2015-01-08 20:44:56 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll

2015-01-08 20:44:56 ----A---- C:\WINDOWS\system32\sti.dll

2015-01-08 20:44:56 ----A---- C:\WINDOWS\system32\reseteng.dll

2015-01-08 20:44:56 ----A---- C:\WINDOWS\system32\easinvoker.exe

2015-01-08 20:44:56 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys

2015-01-08 20:44:55 ----A---- C:\WINDOWS\SYSWOW64\OEMLicense.dll

2015-01-08 20:44:55 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll

2015-01-08 20:44:55 ----A---- C:\WINDOWS\system32\OEMLicense.dll

2015-01-08 20:44:55 ----A---- C:\WINDOWS\system32\easwrt.dll

2015-01-08 20:44:55 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS

2015-01-08 20:44:54 ----A---- C:\WINDOWS\SYSWOW64\sti.dll

2015-01-08 20:43:38 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll

2015-01-08 20:43:38 ----A---- C:\WINDOWS\system32\MrmIndexer.dll

2015-01-08 20:43:37 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll

2015-01-08 20:42:57 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll

2015-01-08 20:42:44 ----A---- C:\WINDOWS\system32\sysmain.dll

2015-01-08 20:42:42 ----A---- C:\WINDOWS\system32\glcndFilter.dll

2015-01-08 20:42:38 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll

2015-01-08 20:42:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll

2015-01-08 20:42:32 ----A---- C:\WINDOWS\system32\wlidsvc.dll

2015-01-08 20:42:19 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll

2015-01-08 20:42:19 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll

2015-01-08 20:42:19 ----A---- C:\WINDOWS\system32\mfnetcore.dll

2015-01-08 20:42:17 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll

2015-01-08 20:42:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll

2015-01-08 20:42:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll

2015-01-08 20:42:08 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll

2015-01-08 20:42:08 ----A---- C:\WINDOWS\system32\kerberos.dll

2015-01-08 20:42:05 ----A---- C:\WINDOWS\system32\uDWM.dll

2015-01-08 20:42:04 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll

2015-01-08 20:42:04 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll

2015-01-08 20:42:04 ----A---- C:\WINDOWS\system32\ole32.dll

2015-01-08 20:42:03 ----A---- C:\WINDOWS\system32\wlidprov.dll

2015-01-08 20:42:03 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll

2015-01-08 20:42:02 ----A---- C:\WINDOWS\system32\SRH.dll

2015-01-08 20:42:01 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll

2015-01-08 20:42:01 ----A---- C:\WINDOWS\system32\dui70.dll

2015-01-08 20:42:00 ----A---- C:\WINDOWS\system32\vpnike.dll

2015-01-08 20:41:59 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll

2015-01-08 20:41:57 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll

2015-01-08 20:41:57 ----A---- C:\WINDOWS\system32\WinTypes.dll

2015-01-08 20:41:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll

2015-01-08 20:41:53 ----A---- C:\WINDOWS\system32\wer.dll

2015-01-08 20:41:51 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll

2015-01-08 20:41:46 ----A---- C:\WINDOWS\SYSWOW64\wer.dll

2015-01-08 20:41:45 ----A---- C:\WINDOWS\system32\twinapi.dll

2015-01-08 20:41:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll

2015-01-08 20:41:42 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll

2015-01-08 20:41:42 ----A---- C:\WINDOWS\system32\sspicli.dll

2015-01-08 20:41:41 ----A---- C:\WINDOWS\system32\tpmvsc.dll

2015-01-08 20:41:41 ----A---- C:\WINDOWS\system32\SettingSync.dll

2015-01-08 20:41:39 ----A---- C:\WINDOWS\system32\wcmsvc.dll

2015-01-08 20:41:38 ----A---- C:\WINDOWS\system32\wbiosrvc.dll

2015-01-08 20:41:38 ----A---- C:\WINDOWS\system32\drivers\srv2.sys

2015-01-08 20:41:37 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll

2015-01-08 20:41:37 ----A---- C:\WINDOWS\system32\WinSCard.dll

2015-01-08 20:41:34 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll

2015-01-08 20:41:34 ----A---- C:\WINDOWS\system32\msvproc.dll

2015-01-08 20:41:34 ----A---- C:\WINDOWS\system32\livessp.dll

2015-01-08 20:41:30 ----A---- C:\WINDOWS\system32\wcncsvc.dll

2015-01-08 20:41:27 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys

2015-01-08 20:41:25 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe

2015-01-08 20:41:23 ----A---- C:\WINDOWS\system32\dwmapi.dll

2015-01-08 20:41:22 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll

2015-01-08 20:41:22 ----A---- C:\WINDOWS\system32\TetheringMgr.dll

2015-01-08 20:41:22 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll

2015-01-08 20:41:22 ----A---- C:\WINDOWS\system32\mftranscode.dll

2015-01-08 20:41:22 ----A---- C:\WINDOWS\system32\dpapisrv.dll

2015-01-08 20:41:21 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS

2015-01-08 20:41:21 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys

2015-01-08 20:41:21 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys

2015-01-08 20:41:20 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll

2015-01-08 20:41:20 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll

2015-01-08 20:41:20 ----A---- C:\WINDOWS\system32\ci.dll

2015-01-08 20:41:19 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll

2015-01-08 20:41:19 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll

2015-01-08 20:41:19 ----A---- C:\WINDOWS\system32\printui.dll

2015-01-08 20:41:19 ----A---- C:\WINDOWS\system32\DscCoreConfProv.dll

2015-01-08 20:41:19 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys

2015-01-08 20:41:18 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll

2015-01-08 20:41:18 ----A---- C:\WINDOWS\system32\WMPhoto.dll

2015-01-08 20:41:18 ----A---- C:\WINDOWS\system32\msra.exe

2015-01-08 20:41:18 ----A---- C:\WINDOWS\system32\DscCore.dll

2015-01-08 20:41:16 ----A---- C:\WINDOWS\system32\fdprint.dll

2015-01-08 20:41:16 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys

2015-01-08 20:41:15 ----A---- C:\WINDOWS\system32\vmrdvcore.dll

2015-01-08 20:41:15 ----A---- C:\WINDOWS\system32\SessEnv.dll

2015-01-08 20:41:12 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys

2015-01-08 20:41:11 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys

2015-01-08 20:41:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll

2015-01-08 20:41:08 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll

2015-01-08 20:41:04 ----A---- C:\WINDOWS\system32\pcasvc.dll

2015-01-08 20:41:04 ----A---- C:\WINDOWS\system32\MDEServer.exe

2015-01-08 20:41:03 ----A---- C:\WINDOWS\system32\thumbcache.dll

2015-01-08 20:41:03 ----A---- C:\WINDOWS\system32\msctfuimanager.dll

2015-01-08 20:41:03 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll

2015-01-08 20:41:02 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll

2015-01-08 20:41:01 ----A---- C:\WINDOWS\system32\usercpl.dll

2015-01-08 20:40:52 ----A---- C:\WINDOWS\system32\WorkFoldersGPExt.dll

2015-01-08 20:40:52 ----A---- C:\WINDOWS\system32\drivers\VerifierExt.sys

2015-01-08 20:40:52 ----A---- C:\WINDOWS\system32\drivers\ks.sys

2015-01-08 20:40:50 ----A---- C:\WINDOWS\system32\PSHED.DLL

2015-01-08 20:40:50 ----A---- C:\WINDOWS\system32\AxInstSv.dll

2015-01-08 20:40:49 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll

2015-01-08 20:40:49 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll

2015-01-08 20:40:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll

2015-01-08 20:40:48 ----A---- C:\WINDOWS\system32\Utilman.exe

2015-01-08 20:40:48 ----A---- C:\WINDOWS\system32\SensorsClassExtension.dll

2015-01-08 20:40:48 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys

2015-01-08 20:40:47 ----A---- C:\WINDOWS\SYSWOW64\printui.dll

2015-01-08 20:40:47 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll

2015-01-08 20:40:46 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll

2015-01-08 20:40:46 ----A---- C:\WINDOWS\system32\recimg.exe

2015-01-08 20:40:46 ----A---- C:\WINDOWS\system32\efswrt.dll

2015-01-08 20:40:46 ----A---- C:\WINDOWS\system32\dhcpcore.dll

2015-01-08 20:40:46 ----A---- C:\WINDOWS\system32\DeviceCenter.dll

2015-01-08 20:40:45 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll

2015-01-08 20:40:45 ----A---- C:\WINDOWS\system32\rascustom.dll

2015-01-08 20:40:45 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys

2015-01-08 20:40:44 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll

2015-01-08 20:40:44 ----A---- C:\WINDOWS\system32\wimgapi.dll

2015-01-08 20:40:44 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll

2015-01-08 20:40:42 ----A---- C:\WINDOWS\SYSWOW64\WorkFoldersRes.dll

2015-01-08 20:40:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll

2015-01-08 20:40:42 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll

2015-01-08 20:40:42 ----A---- C:\WINDOWS\system32\WorkFoldersRes.dll

2015-01-08 20:40:42 ----A---- C:\WINDOWS\system32\pcaui.dll

2015-01-08 20:40:41 ----A---- C:\WINDOWS\system32\WorkFolders.exe

2015-01-08 20:40:41 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll

2015-01-08 20:40:40 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll

2015-01-08 20:40:40 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll

2015-01-08 20:40:40 ----A---- C:\WINDOWS\SYSWOW64\fdprint.dll

2015-01-08 20:40:39 ----A---- C:\WINDOWS\SYSWOW64\pcaui.dll

2015-01-08 20:40:39 ----A---- C:\WINDOWS\SYSWOW64\DeviceCenter.dll

2015-01-08 20:40:39 ----A---- C:\WINDOWS\system32\wlanmsm.dll

2015-01-08 20:40:38 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll

2015-01-08 20:40:38 ----A---- C:\WINDOWS\system32\fontsub.dll

2015-01-08 20:40:38 ----A---- C:\WINDOWS\system32\drivers\appid.sys

2015-01-08 20:40:37 ----A---- C:\WINDOWS\SYSWOW64\mcbuilder.exe

2015-01-08 20:40:37 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll

2015-01-08 20:40:35 ----A---- C:\WINDOWS\SYSWOW64\Utilman.exe

2015-01-08 20:40:35 ----A---- C:\WINDOWS\system32\mcbuilder.exe

2015-01-08 20:40:34 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll

2015-01-08 20:40:33 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll

2015-01-08 20:40:31 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll

2015-01-08 20:40:31 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll

2015-01-08 20:40:31 ----A---- C:\WINDOWS\system32\ReInfo.dll

2015-01-08 20:31:02 ----A---- C:\WINDOWS\system32\msctf.dll

2015-01-08 20:31:01 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll

2015-01-08 20:31:01 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll

2015-01-08 20:31:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll

2015-01-08 20:31:00 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll

2015-01-08 20:30:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll

2015-01-08 20:30:10 ----A---- C:\WINDOWS\SYSWOW64\imagehlp.dll

2015-01-08 20:30:10 ----A---- C:\WINDOWS\system32\imagehlp.dll

2015-01-08 20:30:06 ----A---- C:\WINDOWS\system32\mshtml.dll

2015-01-08 20:30:04 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll

2015-01-08 20:30:00 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll

2015-01-08 20:30:00 ----A---- C:\WINDOWS\system32\mshtmled.dll

2015-01-08 20:29:15 ----A---- C:\WINDOWS\system32\AppReadiness.dll

2015-01-08 20:29:14 ----A---- C:\WINDOWS\explorer.exe

2015-01-08 20:29:11 ----A---- C:\WINDOWS\system32\wuaueng.dll

2015-01-08 20:29:10 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe

2015-01-08 20:29:09 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll

2015-01-08 20:29:08 ----A---- C:\WINDOWS\system32\workfolderssvc.dll

2015-01-08 20:28:58 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll

2015-01-08 20:28:53 ----A---- C:\WINDOWS\system32\d3d9.dll

2015-01-08 20:28:42 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll

2015-01-08 20:28:40 ----A---- C:\WINDOWS\system32\iuilp.dll

2015-01-08 20:28:39 ----A---- C:\WINDOWS\system32\TSWorkspace.dll

2015-01-08 20:28:38 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll

2015-01-08 20:28:34 ----A---- C:\WINDOWS\system32\dnsapi.dll

2015-01-08 20:28:33 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll

2015-01-08 20:28:32 ----A---- C:\WINDOWS\system32\Windows.Media.dll

2015-01-08 20:28:32 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll

2015-01-08 20:28:29 ----A---- C:\WINDOWS\SYSWOW64\user32.dll

2015-01-08 20:28:29 ----A---- C:\WINDOWS\system32\d3d10level9.dll

2015-01-08 20:28:27 ----A---- C:\WINDOWS\system32\WWAHost.exe

2015-01-08 20:28:27 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll

2015-01-08 20:28:26 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll

2015-01-08 20:28:25 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe

2015-01-08 20:28:25 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll

2015-01-08 20:28:25 ----A---- C:\WINDOWS\system32\eapphost.dll

2015-01-08 20:28:23 ----A---- C:\WINDOWS\system32\drivers\acpi.sys

2015-01-08 20:28:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll

2015-01-08 20:28:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll

2015-01-08 20:28:22 ----A---- C:\WINDOWS\system32\kd_02_8086.dll

2015-01-08 20:28:22 ----A---- C:\WINDOWS\system32\AudioSes.dll

2015-01-08 20:28:21 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll

2015-01-08 20:28:21 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll

2015-01-08 20:28:21 ----A---- C:\WINDOWS\system32\tsmf.dll

2015-01-08 20:28:20 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll

2015-01-08 20:28:20 ----A---- C:\WINDOWS\system32\wintrust.dll

2015-01-08 20:28:20 ----A---- C:\WINDOWS\system32\eapp3hst.dll

2015-01-08 20:28:20 ----A---- C:\WINDOWS\system32\comdlg32.dll

2015-01-08 20:28:20 ----A---- C:\WINDOWS\system32\apphelp.dll

2015-01-08 20:28:19 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll

2015-01-08 20:28:19 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll

2015-01-08 20:28:19 ----A---- C:\WINDOWS\system32\drivers\srv.sys

2015-01-08 20:28:18 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll

2015-01-08 20:28:18 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll

2015-01-08 20:28:18 ----A---- C:\WINDOWS\system32\profsvc.dll

2015-01-08 20:28:18 ----A---- C:\WINDOWS\system32\pcsvDevice.dll

2015-01-08 20:28:18 ----A---- C:\WINDOWS\system32\ncryptsslp.dll

2015-01-08 20:28:18 ----A---- C:\WINDOWS\system32\msched.dll

2015-01-08 20:28:17 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll

2015-01-08 20:28:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll

2015-01-08 20:28:17 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll

2015-01-08 20:28:17 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll

2015-01-08 20:28:17 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys

2015-01-08 20:28:16 ----A---- C:\WINDOWS\system32\samsrv.dll

2015-01-08 20:28:16 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys

2015-01-08 20:28:16 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS

2015-01-08 20:28:15 ----A---- C:\WINDOWS\system32\wldp.dll

2015-01-08 20:28:15 ----A---- C:\WINDOWS\system32\miutils.dll

2015-01-08 20:28:15 ----A---- C:\WINDOWS\system32\ipnathlp.dll

2015-01-08 20:28:15 ----A---- C:\WINDOWS\system32\iphlpsvc.dll

2015-01-08 20:28:14 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe

2015-01-08 20:28:14 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys

2015-01-08 20:28:14 ----A---- C:\WINDOWS\system32\drivers\bthport.sys

2015-01-08 20:28:13 ----A---- C:\WINDOWS\system32\dafBth.dll

2015-01-08 20:28:11 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll

2015-01-08 20:28:11 ----A---- C:\WINDOWS\system32\wuauclt.exe

2015-01-08 20:28:11 ----A---- C:\WINDOWS\system32\shsetup.dll

2015-01-08 20:28:11 ----A---- C:\WINDOWS\system32\dnsrslvr.dll

2015-01-08 20:28:11 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll

2015-01-08 20:28:10 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll

2015-01-08 20:28:10 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll

2015-01-08 20:28:10 ----A---- C:\WINDOWS\system32\eappcfg.dll

2015-01-08 20:28:09 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll

2015-01-08 20:28:09 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll

2015-01-08 20:28:09 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll

2015-01-08 20:28:08 ----A---- C:\WINDOWS\SYSWOW64\miutils.dll

2015-01-08 20:28:08 ----A---- C:\WINDOWS\system32\eappgnui.dll

2015-01-08 20:28:06 ----A---- C:\WINDOWS\SYSWOW64\ftp.exe

2015-01-08 20:28:06 ----A---- C:\WINDOWS\system32\wucltux.dll

2015-01-08 20:28:05 ----A---- C:\WINDOWS\system32\rdpclip.exe

2015-01-08 20:28:05 ----A---- C:\WINDOWS\system32\ftp.exe

2015-01-08 20:24:50 ----A---- C:\WINDOWS\system32\winbici.dll

2015-01-08 20:24:03 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll

2015-01-08 20:23:58 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll

2015-01-08 20:23:47 ----A---- C:\WINDOWS\system32\SyncEngine.dll

2015-01-08 20:23:42 ----A---- C:\WINDOWS\system32\winmde.dll

2015-01-08 20:23:42 ----A---- C:\WINDOWS\system32\lsasrv.dll

2015-01-08 20:23:42 ----A---- C:\WINDOWS\system32\drivers\ndis.sys

2015-01-08 20:23:41 ----A---- C:\WINDOWS\system32\authui.dll

2015-01-08 20:23:41 ----A---- C:\WINDOWS\system32\audiosrv.dll

2015-01-08 20:23:40 ----A---- C:\WINDOWS\system32\wmpmde.dll

2015-01-08 20:23:40 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll

2015-01-08 20:23:40 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys

2015-01-08 20:23:39 ----A---- C:\WINDOWS\SYSWOW64\authui.dll

2015-01-08 20:23:39 ----A---- C:\WINDOWS\system32\ubpm.dll

2015-01-08 20:23:38 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll

2015-01-08 20:23:38 ----A---- C:\WINDOWS\system32\wlansvc.dll

2015-01-08 20:23:38 ----A---- C:\WINDOWS\system32\bisrv.dll

2015-01-08 20:23:37 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll

2015-01-08 20:23:36 ----A---- C:\WINDOWS\system32\ploptin.dll

2015-01-08 20:23:36 ----A---- C:\WINDOWS\system32\oleaut32.dll

2015-01-08 20:23:36 ----A---- C:\WINDOWS\system32\mfds.dll

2015-01-08 20:23:35 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll

2015-01-08 20:23:35 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll

2015-01-08 20:23:35 ----A---- C:\WINDOWS\system32\psmsrv.dll

2015-01-08 20:23:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll

2015-01-08 20:23:34 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll

2015-01-08 20:23:34 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS

2015-01-08 20:23:33 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll

2015-01-08 20:23:33 ----A---- C:\WINDOWS\system32\rastls.dll

2015-01-08 20:23:33 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys

2015-01-08 20:23:32 ----A---- C:\WINDOWS\system32\msieftp.dll

2015-01-08 20:23:32 ----A---- C:\WINDOWS\system32\mispace.dll

2015-01-08 20:23:32 ----A---- C:\WINDOWS\system32\drivers\BtaMPM.sys

2015-01-08 20:23:31 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll

2015-01-08 20:23:31 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll

2015-01-08 20:23:31 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll

2015-01-08 20:23:31 ----A---- C:\WINDOWS\system32\bi.dll

2015-01-08 20:23:29 ----A---- C:\WINDOWS\system32\deviceregistration.dll

2015-01-08 20:19:22 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll

2015-01-08 20:19:22 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll

2015-01-08 20:19:22 ----A---- C:\WINDOWS\system32\twinui.appcore.dll

2015-01-08 20:19:22 ----A---- C:\WINDOWS\system32\actxprxy.dll

2015-01-08 20:18:51 ----A---- C:\WINDOWS\system32\msxml3.dll

2015-01-08 20:18:50 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll

2015-01-08 20:18:12 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll

2015-01-08 20:18:11 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll

2015-01-08 20:18:11 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll

2015-01-08 20:18:06 ----A---- C:\WINDOWS\system32\ntoskrnl.exe

2015-01-08 20:18:05 ----A---- C:\WINDOWS\system32\MrmCoreR.dll

2015-01-08 20:18:04 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll

2015-01-08 20:18:03 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll

2015-01-08 20:18:02 ----A---- C:\WINDOWS\system32\SkyDrive.exe

2015-01-08 20:18:02 ----A---- C:\WINDOWS\system32\dcomp.dll

2015-01-08 20:18:01 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll

2015-01-08 20:18:00 ----A---- C:\WINDOWS\system32\wlidcli.dll

2015-01-08 20:18:00 ----A---- C:\WINDOWS\system32\msftedit.dll

2015-01-08 20:17:59 ----A---- C:\WINDOWS\system32\WMPDMC.exe

2015-01-08 20:17:59 ----A---- C:\WINDOWS\system32\winresume.exe

2015-01-08 20:17:58 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll

2015-01-08 20:17:58 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys

2015-01-08 20:17:57 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe

2015-01-08 20:17:57 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll

2015-01-08 20:17:57 ----A---- C:\WINDOWS\system32\wpncore.dll

2015-01-08 20:17:57 ----A---- C:\WINDOWS\system32\drivers\intelpep.sys

2015-01-08 20:17:57 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll

2015-01-08 20:17:56 ----A---- C:\WINDOWS\system32\drivers\SerCx2.sys

2015-01-08 20:17:56 ----A---- C:\WINDOWS\system32\drivers\pdc.sys

2015-01-08 20:17:56 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll

2015-01-08 20:17:56 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll

2015-01-08 20:17:55 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll

2015-01-08 20:17:55 ----A---- C:\WINDOWS\SYSWOW64\Display.dll

2015-01-08 20:17:55 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll

2015-01-08 20:17:55 ----A---- C:\WINDOWS\system32\Display.dll

2015-01-08 20:16:06 ----A---- C:\WINDOWS\system32\winload.exe

2015-01-08 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll

2015-01-08 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll

2015-01-08 20:16:01 ----A---- C:\WINDOWS\system32\iertutil.dll

2015-01-08 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll

2015-01-08 20:15:59 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll

2015-01-08 20:15:59 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll

2015-01-08 20:15:58 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll

2015-01-08 20:15:58 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll

2015-01-08 20:15:54 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll

2015-01-08 20:15:54 ----A---- C:\WINDOWS\system32\iernonce.dll

2015-01-08 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll

2015-01-08 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll

2015-01-08 20:15:53 ----A---- C:\WINDOWS\system32\urlmon.dll

2015-01-08 20:15:53 ----A---- C:\WINDOWS\system32\ieetwcollector.exe

2015-01-08 20:15:52 ----A---- C:\WINDOWS\system32\msfeeds.dll

2015-01-08 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll

2015-01-08 20:15:49 ----A---- C:\WINDOWS\system32\iesetup.dll

2015-01-08 20:15:46 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe

2015-01-08 20:15:46 ----A---- C:\WINDOWS\system32\ie4uinit.exe

2015-01-08 20:15:45 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll

2015-01-08 20:15:44 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll

2015-01-08 20:15:44 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll

2015-01-08 20:15:44 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll

2015-01-08 20:12:56 ----A---- C:\WINDOWS\system32\ieframe.dll

2015-01-08 20:12:52 ----A---- C:\WINDOWS\system32\ieUnatt.exe

2015-01-08 20:12:43 ----A---- C:\WINDOWS\system32\jscript9diag.dll

2015-01-08 20:12:39 ----A---- C:\WINDOWS\system32\jscript9.dll

2015-01-08 20:12:39 ----A---- C:\WINDOWS\system32\ieapfltr.dll

2015-01-08 20:12:36 ----A---- C:\WINDOWS\system32\msrating.dll

2015-01-08 20:12:34 ----A---- C:\WINDOWS\system32\wininet.dll

2015-01-08 20:12:33 ----A---- C:\WINDOWS\system32\jsproxy.dll

2015-01-08 20:12:04 ----A---- C:\WINDOWS\system32\d2d1.dll

2015-01-08 20:12:00 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll

2015-01-08 20:11:58 ----A---- C:\WINDOWS\system32\d3d10warp.dll

2015-01-08 20:11:57 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll

2015-01-08 20:11:55 ----A---- C:\WINDOWS\system32\WSService.dll

2015-01-08 20:11:54 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll

2015-01-08 20:11:54 ----A---- C:\WINDOWS\system32\WSShared.dll

2015-01-08 20:11:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2015-01-08 20:11:53 ----A---- C:\WINDOWS\system32\WSCollect.exe

2015-01-08 20:11:53 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2015-01-08 20:11:49 ----A---- C:\WINDOWS\system32\sppsvc.exe

2015-01-08 20:11:49 ----A---- C:\WINDOWS\system32\mfcore.dll

2015-01-08 20:11:49 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys

2015-01-08 20:11:48 ----A---- C:\WINDOWS\system32\combase.dll

2015-01-08 20:11:47 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll

2015-01-08 20:11:47 ----A---- C:\WINDOWS\SYSWOW64\combase.dll

2015-01-08 20:11:43 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2015-01-08 20:11:41 ----A---- C:\WINDOWS\system32\mstscax.dll

2015-01-08 20:11:39 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll

2015-01-08 20:11:39 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll

2015-01-08 20:11:38 ----A---- C:\WINDOWS\system32\dbghelp.dll

2015-01-08 20:11:38 ----A---- C:\WINDOWS\system32\dbgeng.dll

2015-01-08 20:11:37 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll

2015-01-08 20:11:37 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll

2015-01-08 20:11:37 ----A---- C:\WINDOWS\system32\WerFault.exe

2015-01-08 20:11:37 ----A---- C:\WINDOWS\system32\swprv.dll

2015-01-08 20:11:37 ----A---- C:\WINDOWS\system32\Faultrep.dll

2015-01-08 20:11:36 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe

2015-01-08 20:11:36 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll

2015-01-08 20:11:36 ----A---- C:\WINDOWS\system32\mfps.dll

2015-01-08 20:11:36 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys

2015-01-08 20:11:35 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll

2015-01-08 20:11:35 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll

2015-01-08 20:11:35 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE

2015-01-08 20:11:35 ----A---- C:\WINDOWS\system32\tsgqec.dll

2015-01-08 20:11:35 ----A---- C:\WINDOWS\system32\sppcomapi.dll

2015-01-08 20:11:35 ----A---- C:\WINDOWS\system32\rdvidcrl.dll

2015-01-08 20:11:35 ----A---- C:\WINDOWS\system32\rdpencom.dll

2015-01-08 20:11:35 ----A---- C:\WINDOWS\system32\DWWIN.EXE

2015-01-08 20:11:34 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll

2015-01-08 20:10:49 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys

2015-01-08 20:10:45 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys

2015-01-08 20:10:44 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys

2015-01-08 20:10:41 ----A---- C:\WINDOWS\system32\IKEEXT.DLL

2015-01-08 20:10:41 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys

2015-01-08 20:10:41 ----A---- C:\WINDOWS\system32\BFE.DLL

2015-01-08 20:10:39 ----A---- C:\WINDOWS\system32\mfplat.dll

2015-01-08 20:10:38 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll

2015-01-08 20:10:35 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys

2015-01-08 20:10:34 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll

2015-01-08 20:10:34 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll

2015-01-08 20:10:34 ----A---- C:\WINDOWS\system32\KernelBase.dll

2015-01-08 20:10:34 ----A---- C:\WINDOWS\system32\kernel32.dll

2015-01-08 20:10:34 ----A---- C:\WINDOWS\system32\drivers\clfs.sys

2015-01-08 20:10:33 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll

2015-01-08 20:10:33 ----A---- C:\WINDOWS\system32\gdi32.dll

2015-01-08 20:10:20 ----A---- C:\WINDOWS\system32\shell32.dll

2015-01-08 20:10:18 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll

2015-01-08 20:10:16 ----A---- C:\WINDOWS\system32\win32k.sys

2015-01-08 20:10:15 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll

2015-01-08 20:10:15 ----A---- C:\WINDOWS\system32\vbscript.dll

2015-01-08 20:10:14 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll

2015-01-08 20:10:14 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll

2015-01-08 20:10:14 ----A---- C:\WINDOWS\system32\scrrun.dll

2015-01-08 20:10:14 ----A---- C:\WINDOWS\system32\qedit.dll

2015-01-08 20:10:07 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe

2015-01-08 20:10:07 ----A---- C:\WINDOWS\system32\poqexec.exe

2015-01-08 20:09:46 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll

2015-01-08 20:09:46 ----A---- C:\WINDOWS\system32\crypt32.dll

2015-01-08 17:01:37 ----D---- C:\ProgramData\Microsoft OneDrive

2015-01-08 15:53:18 ----D---- C:\Program Files (x86)\Microsoft SkyDrive

2015-01-08 15:52:59 ----D---- C:\ProgramData\Microsoft SkyDrive

2015-01-08 15:42:43 ----D---- C:\Program Files\Microsoft Office 15

2015-01-08 03:11:09 ----SHD---- C:\System Volume Information

2015-01-08 03:11:09 ----ASH---- C:\swapfile.sys

2015-01-08 03:11:09 ----ASH---- C:\pagefile.sys

2015-01-08 03:11:08 ----ASH---- C:\hiberfil.sys

2015-01-08 03:10:50 ----A---- C:\Recovery.txt

2015-01-07 19:28:18 ----D---- C:\Users\jelmer\AppData\Roaming\Spotify

2015-01-07 19:24:40 ----D---- C:\Program Files (x86)\Google

2015-01-07 19:23:42 ----D---- C:\Users\jelmer\AppData\Roaming\Macromedia

2015-01-07 18:27:44 ----D---- C:\Users\jelmer\AppData\Roaming\Atheros

2015-01-07 18:27:09 ----D---- C:\Program Files (x86)\OEM

2015-01-07 18:26:47 ----D---- C:\ProgramData\OEM_YAHOO

2015-01-07 18:26:13 ----D---- C:\Users\jelmer\AppData\Roaming\Adobe

2015-01-07 18:23:45 ----SD---- C:\Users\jelmer\AppData\Roaming\Microsoft

2014-12-04 06:19:10 ----A---- C:\WINDOWS\system32\sst9clm.dll

2014-12-04 06:19:10 ----A---- C:\WINDOWS\system32\SBuySupplies.exe

2014-12-04 06:19:10 ----A---- C:\WINDOWS\system32\eed_sl.exe

2014-12-04 06:19:08 ----A---- C:\WINDOWS\system32\sst9cci.exe

2014-12-04 06:19:08 ----A---- C:\WINDOWS\system32\sst9cci.dll

2014-12-04 06:19:08 ----A---- C:\WINDOWS\system32\eed_ec.dll

 

======List of files/folders modified in the last 3 months======

 

2015-01-14 16:07:45 ----D---- C:\WINDOWS\Prefetch

2015-01-14 16:07:27 ----RD---- C:\Program Files

2015-01-14 16:03:15 ----D---- C:\WINDOWS\CbsTemp

2015-01-14 16:00:00 ----D---- C:\WINDOWS\system32\sru

2015-01-14 13:54:33 ----D---- C:\WINDOWS\WinSxS

2015-01-14 13:54:33 ----D---- C:\WINDOWS\SysWOW64

2015-01-14 13:54:27 ----SHD---- C:\WINDOWS\Installer

2015-01-14 13:54:27 ----D---- C:\WINDOWS\Temp

2015-01-14 13:52:47 ----A---- C:\WINDOWS\win.ini

2015-01-14 13:52:16 ----D---- C:\WINDOWS\Microsoft.NET

2015-01-14 13:52:06 ----RSD---- C:\WINDOWS\assembly

2015-01-14 13:46:33 ----D---- C:\WINDOWS\system32\config

2015-01-13 13:57:36 ----D---- C:\WINDOWS\system32\wdi

2015-01-13 13:48:56 ----D---- C:\WINDOWS\AppReadiness

2015-01-13 13:48:31 ----HD---- C:\Program Files\WindowsApps

2015-01-13 13:43:15 ----RD---- C:\Program Files (x86)

2015-01-13 13:43:15 ----HD---- C:\ProgramData

2015-01-13 13:42:52 ----RD---- C:\WINDOWS\System32

2015-01-13 13:42:42 ----D---- C:\WINDOWS\Inf

2015-01-13 13:42:35 ----D---- C:\WINDOWS\system32\DriverStore

2015-01-13 13:01:44 ----D---- C:\WINDOWS\system32\drivers

2015-01-13 11:35:15 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2015-01-13 11:30:44 ----D---- C:\ProgramData\boost_interprocess

2015-01-12 11:16:25 ----D---- C:\Program Files\Windows Defender

2015-01-12 11:16:25 ----D---- C:\Program Files (x86)\Windows Defender

2015-01-12 07:33:54 ----D---- C:\Program Files (x86)\Microsoft Office

2015-01-12 07:33:52 ----D---- C:\Windows

2015-01-12 07:31:30 ----D---- C:\WINDOWS\system32\Tasks

2015-01-12 07:31:11 ----D---- C:\Program Files\Common Files\microsoft shared

2015-01-12 07:31:10 ----SD---- C:\ProgramData\Microsoft

2015-01-12 07:30:12 ----D---- C:\WINDOWS\ShellNew

2015-01-12 07:13:18 ----D---- C:\WINDOWS\system32\catroot2

2015-01-11 21:48:32 ----D---- C:\WINDOWS\rescache

2015-01-11 21:24:25 ----D---- C:\WINDOWS\debug

2015-01-11 21:20:53 ----D---- C:\WINDOWS\Logs

2015-01-11 21:14:42 ----D---- C:\WINDOWS\system32\drivers\UMDF

2015-01-11 17:17:07 ----D---- C:\WINDOWS\LiveKernelReports

2015-01-11 17:06:35 ----HD---- C:\WINDOWS\ELAMBKUP

2015-01-11 15:06:50 ----D---- C:\WINDOWS\system32\drivers\NISx64

2015-01-11 14:55:03 ----D---- C:\WINDOWS\system32\Boot

2015-01-11 14:55:02 ----D---- C:\WINDOWS\MediaViewer

2015-01-11 14:55:02 ----D---- C:\WINDOWS\FileManager

2015-01-11 14:55:02 ----D---- C:\WINDOWS\Camera

2015-01-11 14:55:01 ----D---- C:\WINDOWS\SYSWOW64\Dism

2015-01-11 14:55:01 ----D---- C:\WINDOWS\system32\Dism

2015-01-11 14:54:57 ----D---- C:\WINDOWS\apppatch

2015-01-11 14:54:55 ----D---- C:\Program Files\Internet Explorer

2015-01-11 14:54:55 ----D---- C:\Program Files (x86)\Internet Explorer

2015-01-11 14:54:49 ----D---- C:\WINDOWS\WinStore

2015-01-11 14:54:49 ----D---- C:\WINDOWS\system32\migration

2015-01-11 14:54:48 ----RD---- C:\WINDOWS\ToastData

2015-01-11 14:54:35 ----D---- C:\WINDOWS\system32\nl-NL

2015-01-11 14:54:35 ----D---- C:\WINDOWS\system32\migwiz

2015-01-11 14:54:35 ----D---- C:\WINDOWS\system32\en-US

2015-01-11 14:54:35 ----D---- C:\WINDOWS\PolicyDefinitions

2015-01-11 14:54:31 ----D---- C:\WINDOWS\SYSWOW64\nl-NL

2015-01-11 14:54:31 ----D---- C:\WINDOWS\SYSWOW64\en-US

2015-01-11 14:54:23 ----D---- C:\WINDOWS\system32\SecureBootUpdates

2015-01-11 14:54:06 ----D---- C:\WINDOWS\SYSWOW64\migration

2015-01-11 14:54:01 ----RD---- C:\WINDOWS\ImmersiveControlPanel

2015-01-11 14:53:59 ----D---- C:\WINDOWS\system32\oobe

2015-01-08 20:46:21 ----D---- C:\WINDOWS\system32\restore

2015-01-08 15:52:35 ----D---- C:\ProgramData\regid.1991-06.com.microsoft

2015-01-08 15:49:58 ----D---- C:\Program Files (x86)\Common Files

2015-01-08 15:49:54 ----D---- C:\Program Files (x86)\Microsoft.NET

2015-01-08 15:46:13 ----RSD---- C:\WINDOWS\Fonts

2015-01-07 19:24:45 ----D---- C:\WINDOWS\Tasks

2015-01-07 18:33:06 ----D---- C:\WINDOWS\system32\LogFiles

2015-01-07 18:29:44 ----D---- C:\ProgramData\Norton

2015-01-07 18:29:04 ----SHD---- C:\$Recycle.Bin

2015-01-07 18:28:45 ----D---- C:\WINDOWS\SoftwareDistribution

2015-01-07 18:27:24 ----HD---- C:\OEM

2015-01-07 18:26:35 ----D---- C:\WINDOWS\Panther

2015-01-07 18:23:45 ----RD---- C:\Users

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]

R3 athr;@oem16.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athwbx.sys [2013-08-16 3859968]

R3 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.0.100\Definitions\BASHDefs\20141209.001\BHDrvx64.sys [2014-12-09 1587416]

R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2013-07-19 82128]

R3 BTATH_BUS;@oem17.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-09-07 34384]

R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2013-09-07 594120]

R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2013-10-05 81920]

R3 ccSet_NIS;NIS Settings Manager; C:\WINDOWS\system32\drivers\NISx64\1506000.020\ccSetx64.sys [2014-02-21 162392]

R3 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2015-01-07 487216]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2015-01-07 142640]

R3 ETD;@oem14.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2013-09-06 370504]

R3 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.0.100\Definitions\IPSDefs\20150108.002\IDSvia64.sys [2015-01-14 668888]

R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-08-20 4165120]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-08-27 3613528]

R3 iwdbus;@oem7.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-08-08 26008]

R3 k57nd60a;@oem13.inf,%SvcDispName%;Broadcom NetLink Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-07-26 458960]

R3 LMDriver;@oem4.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\WINDOWS\System32\drivers\LMDriver.sys [2013-07-17 21360]

R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel® Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-04 99288]

R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.0.100\Definitions\VirusDefs\20150113.020\ENG64.SYS [2015-01-07 129752]

R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.0.0.100\Definitions\VirusDefs\20150113.020\EX64.SYS [2015-01-07 2137304]

R3 RadioShim;@oem4.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\WINDOWS\System32\drivers\RadioShim.sys [2013-07-17 14680]

R3 SRTSP;Symantec Real Time Storage Protection x64; C:\WINDOWS\System32\Drivers\NISx64\1506000.020\SRTSP64.SYS [2014-08-26 876248]

R3 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\WINDOWS\system32\drivers\NISx64\1506000.020\SRTSPX64.SYS [2014-08-26 37592]

R3 SymDS;Symantec Data Store; C:\WINDOWS\system32\drivers\NISx64\1506000.020\SYMDS64.SYS [2013-08-01 493656]

R3 SymEFA;Symantec Extended File Attributes; C:\WINDOWS\system32\drivers\NISx64\1506000.020\SYMEFA64.SYS [2014-08-26 1148120]

R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2013-10-29 177752]

R3 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NISx64\1506000.020\Ironx64.SYS [2014-08-06 266968]

R3 SymNetS;Symantec Network Security WFP Driver; C:\WINDOWS\System32\Drivers\NISx64\1506000.020\SYMNETS.SYS [2014-08-26 593112]

R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]

R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]

S0 SymELAM;Symantec ELAM Driver; C:\WINDOWS\system32\drivers\NISx64\1506000.020\SymELAM.sys [2013-08-01 23568]

S3 AthBTPort;@oem20.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-09-07 89800]

S3 BTATH_A2DP;@oem19.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-09-07 338120]

S3 btath_avdt;@oem19.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-09-07 116424]

S3 BTATH_HCRP;@oem22.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-09-07 179432]

S3 BTATH_LWFLT;@oem24.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-09-07 77464]

S3 BTATH_RCP;@oem26.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-09-07 137928]

S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]

S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2013-08-22 224768]

S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]

S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2013-10-05 1200640]

S3 ccSet_NARA;NARA Settings Manager; C:\WINDOWS\system32\drivers\NARAx64\0405000.009\ccSetx64.sys [2013-07-30 150104]

S3 intaud_WaveExtensible;@oem6.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-08-08 39320]

S3 IntcDAud;@oem8.inf,%IntcDAud.SvcDesc%;Intel® Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-08-20 449528]

S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2013-09-11 167424]

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2013-09-07 312448]

R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe [2013-07-27 2650696]

R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2013-09-06 101192]

R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2013-07-16 235008]

R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696]

R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2013-09-04 390616]

R2 LMSvc;Launch Manager Service; C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe [2013-08-03 457768]

R2 NAUpdate;@c:\Program Files (x86)\Nero\Update\NASvc.exe,-200; c:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]

R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe [2014-09-21 276376]

R2 NOBU;Norton Online Backup; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2014-11-18 4362056]

R2 OfficeSvc;Microsoft Office-service; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2012-12-07 1854056]

R3 ePowerSvc;ePower Service; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2013-07-06 663592]

R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

R3 QASvc;Quick Access Service; C:\Program Files\Packard Bell\Packard Bell Quick Access\QASvc.exe [2013-08-03 457768]

R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Packard Bell\Packard Bell Quick Access\RMSvc.exe [2013-08-03 448040]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-07 107912]

S3 cphs;Intel® Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-08-26 279024]

S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-22 43696]

S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-07 107912]

S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232]

S3 ose;Office  Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-02-01 150600]

 

-----------------EOF-----------------
Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
Pokki;s
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r64
"Pokki"=-;r64
C:\Users\jelmer\AppData\Local\Pokki;fs
emptyfolderscheck;delete
startupall;
filesrcm;
  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.
Zoek.exe logbestand plaatsen
  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar reactie
Delen op andere sites
kweezie wabbit Grootmeester

kweezie wabbit

Geplaatst:
Geplaatst:

Dit is het inderdaad :)

 

Download adwcleaner.png AdwCleaner by Xplode naar het bureaublad (verwijder eerst eventuele aanwezige oudere versies van deze tool op je PC, zodat je nu de meest recente database van AdwCleaner kan gebruiken).

 

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik op Scan.
  • Klik vervolgens op Clean (Engelse versie)of Verwijderen (Nederlandse versie).
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.

Voeg dit logje toe aan je volgend bericht.
Anders is het hier terug te vinden C:\\AdwCleaner\\AdwCleaner[s0].txt.

Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.