Ga naar inhoud

WLM hoofdmailbox werkt perfect doch andere mailboxen niet


snowi

Aanbevolen berichten

Ik heb Windows 10 en gebruik Windows Live Mail.

Bij Proximus heb ik 5 mailboxen met zijn  4 aliassen per mailbox.

 

Nu kan ik sinds een 4-tal dagen met mijn hoofdaccount (= is de eerste mailbox die ik ooit in gebruik nam en daarom maar hoofdaccount noem ...)  en zijn 4 aliassen wel mails verzenden naar de 4 andere mailboxen  en zijn aliassen, maar ik kan van deze laatst 4 vermelde mailboxen en zijn aliassen geen mails verzenden naar mijn hoofdaccount of naar een van zijn aliassen.

 

Ik vrees daardoor ook mails te ontlopen en een test met mijn zoon levert ook niets op. De verzonden mails vanuit mijn 4 mailboxen buiten de “hoofdaccount-mailbox” naar hem komen niet aan. Wel dus van mijn hoofaccount + aliassen! Die worden wel goed ontvangen door hem.

 

Hetgeen ik al gedaan heb:

 

- Firewall uitgeschakeld en heropgestart (daarna terug ingeschakeld).

- BU-recovery van EeaseUs teruggezet van toen alles naar behoren werkte.

- getest met mijn oude PC (Windows XP) in de hoop (?) dat de fout ergens bij mijn huidige PC (Win 10) zou liggen.

-mijn “B-box 3” modem gereset.  

- naar Proximus gebeld doch die stelden vast dat mijn mailboxen allen normaal functioneerden. Wel raadden ze me aan firewall eens uit te schakelen omdat dat al eens problemen kan veroorzaken na een update van Windows.

Evenzo Avast uitgeschakeld.

Apart Spybot Search & Destroy even geïnstalleerd om te laten zoeken naar eventuele virussen. (daarna verwijderd)

Ook Anti Malwarebytes laten lopen.

 

Geen van allen brachten een oplossing.

 

Gevolg: serieuze problemen en na 3 dagen zoeken is mijn enige hoop nog PCH. 

Ik heb nog zojuist het vorige onderwerp “live mail houdt op te werken?” gelezen. Ik hou mijn hart vast. Vroeger had ik Oulook Express, daarna noodgedwongen werd het W.L.Mail en deze wordt nu vermoedelijk ook weer verwijderd uit Microsoft-service. Service??

Link naar reactie
Delen op andere sites

10 uren geleden, snowi zei:

Ik heb Windows 10 en gebruik Windows Live Mail.

 

10 uren geleden, snowi zei:

Ik heb nog zojuist het vorige onderwerp “live mail houdt op te werken?” gelezen. Ik hou mijn hart vast.

 

WLM 2012 e-mailcliënt (= het e-mailprogramma op de computer) kan niet meer worden gebruikt voor Microsoft-e-mailadressen, zoals live.com, hotmail.com, msn.com, live.nl, msn.nl, outlook.com & live.com na 30 juni 2016.

Met de bovengenoemde e-mailadressen kunt men via de webmail inloggen.

 

Microsoft stopt per 10 januari 2017 met de support van Windows Essentials, en Windows Live Mail is één onderdeel van Windows Essentials.

WLM blijft functioneren, maar het is niet verstandig om WLM te gebruiken, met andere woorden WLM blijven gebruiken is onveilig.

 

Gebruikt één alternatief e-mailcliënt / e-mailprogramma, bijvoorbeeld Thunderbird (freeware) of MS Office Outlook (betaald).

 

Mail app in Windows 10 werkt perfect :top:

Link naar reactie
Delen op andere sites

iEescape,

 

Al die wijzigingen en toepassingen in en naar een nieuw mailprogramma maakt me wel bang. Ik (en zeker zoals zovele anderen) heb al teveel moeilijkheden gekend met die mailprogramma’s en niet alleen met WLM

.

Enkel vragen voor ik het erop waag:

Oké dat Microsoft WLM niet meer ondersteunt, maar dat verklaart toch niet de slechte werking ervan bij mij?

Gisteren nog de vraag gesteld bij de helpdesk van Proximus, of WLM misschien algemeen toch meer problemen opleverde dan andere mailprogramma ‘s? Maar was zeker niet het geval zei men. Zeker niet meer dan andere ...

 

Zou een HiJackThis-log plaatsen bij PCH kunnen helpen om WLM eerst terug in orde te krijgen? Als de gemiste mails dan uiteindelijk terug binnenkomen en kunnen gelezen worden en/of op gereageerd, kan ik met een gerust gemoed overschakelen. Of is het zo dat, indien ik (terug) over een goed mailprogramma beschik, alle “verloren” mails automatisch mee zullen binnenkomen? Dan hoeft het eerst in orde brengen van WLM natuurlijk niet.

Ik mis o.a. 3 mails als bewijs van betaling van producten en die niet binnenkomen in de andere mailboxen buiten de hoofdmailbox.

 

Weet u, ik vind: als iets goed werkt en geen problemen geeft, blijf er dan vanaf. Waarom zo nodig veranderen  als het allemaal goed “marcheert”? ik spreek uit ondervinding. Ik ben dan ook al 49 jaar getrouwd.;)

Link naar reactie
Delen op andere sites

2 uren geleden, snowi zei:

Oké dat Microsoft WLM niet meer ondersteunt, maar dat verklaart toch niet de slechte werking ervan bij mij?

 

Dat weet ik niet.

Is het mogelijk om de computer terug te zetten via een systeemherstel naar een punt voordat het probleem is ontstaan ?

 

2 uren geleden, snowi zei:

Zou een HiJackThis-log plaatsen bij PCH kunnen helpen om WLM eerst terug in orde te krijgen? Als de gemiste mails dan uiteindelijk terug binnenkomen en kunnen gelezen worden en/of op gereageerd, kan ik met een gerust gemoed overschakelen.

 

Een HijackThis log plaatsen mag natuurlijk wel, maar of daarmee WLM weer goed functioneert, dat weet ik niet.

 

Even iets anders:

2 uren geleden, snowi zei:

Ik mis o.a. 3 mails als bewijs van betaling van producten en die niet binnenkomen in de andere mailboxen buiten de hoofdmailbox.

Zijn die e-mailberichten nog aanwezig als u inlog via de Proximus webmail ?

Link naar reactie
Delen op andere sites

3 uren geleden, iEscape zei:

s het mogelijk om de computer terug te zetten via een systeemherstel naar een punt voordat het probleem is ontstaan ?

neen, denk het niet ,omdat zo lees ik toch, de upgrade meer dan 10 dagen geleden is.

 

4 uren geleden, iEscape zei:

Een HijackThis log plaatsen mag natuurlijk wel, maar of daarmee WLM weer goed functioneert, dat weet ik niet.

 

 

 

Op goed geluk en in de hoop dat u wat kunt vinden hier de HijackThis log.:

Alvast bedankt voor de moeite!

 

Logfile of random's system information tool 1.10 (written by random/random)
Run by hugo at 2017-01-11 18:40:06
Microsoft Windows 10 Home
System drive C: has 39 GB (40%) free of 97 GB
Total RAM: 8114 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:40:28, on 11/01/2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\AutoSizer\AutoSizer.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\hugo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking10\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking10\Ereg.ini
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [DelaypluginInstall] C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
O4 - HKLM\..\Run: [ProductUpdater] C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Gadwin PrintScreen] C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash
O4 - HKCU\..\Run: [OneDrive] "C:\Users\hugo\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [AutoSizer] "C:\Program Files (x86)\AutoSizer\AutoSizer.exe"
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKCU\..\Run: [Web Companion] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
O4 - HKCU\..\Run: [ISUSPM Startup] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe -startup
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: AdaptiveSleepService - Unknown owner - C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Dutch Canon IJ Scan Utility register event (CIJSRegister) - CANON INC. - C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EaseUS Agent Service (EaseUS Agent) - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LavasoftTcpService - Lavasoft Limited - C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: IE Search Set (SearchProtectionService) - Unknown owner - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12211 bytes

======Listing Processes======

 

 

 

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
dashost.exe {4486f638-93c1-45dd-a4510cbb6bf6a67d}
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\atiesrxx.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-cab5d36f-679d-4e00-8fab-c0cfe5894ccb -SystemEventPortName:HostProcess-643df11e-3351-4408-94e6-3dc12f5934a0 -IoCancelEventPortName:HostProcess-0f07ad9d-974f-48fa-8d0e-762c8e4f7ca5 -NonStateChangingEventPortName:HostProcess-41b85fd8-1e3a-4c57-aa20-71a68c9c3602 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bc3c3a0b-e0b1-4b57-a1bb-2a3cba10e7fa -DeviceGroupId:WpdFsGroup
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
"C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe"
"C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"

C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\System32\vds.exe
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe"
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" -r "C:\Users\hugo\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" -u S-1-5-21-197245231-2703376343-2098234457-1001 -c 584 -s 418 -g "C:\ProgramData\acer\CCD"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
atieclxx
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
sihost.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks  --log C:\Program Files (x86)\TeamViewer\TeamViewer10_Logfile.log  
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks  --log C:\Program Files (x86)\TeamViewer\TeamViewer10_Logfile.log  
"C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe"
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe" /nosplash
C:\WINDOWS\splwow64.exe 8192
"C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
"C:\Program Files (x86)\AutoSizer\AutoSizer.exe"
"C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE" /tsr
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
"C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"fontdrvhost.exe"
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" task
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe" task
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Acer\Care Center\ACCStd.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.16112.10221.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1612.3341.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x3d4
C:\WINDOWS\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe -Embedding

"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 644 648 656 8192 652
C:\Windows\System32\smartscreen.exe -Embedding
"E:\downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  

=========Mozilla firefox=========

ProfilePath - C:\Users\hugo\AppData\Roaming\Mozilla\Firefox\Profiles\jrv8x4ll.default

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.186 Plugin
"Path"=C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.111.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.111.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.186 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL


C:\Users\hugo\AppData\Roaming\Mozilla\Firefox\Profiles\jrv8x4ll.default\extensions\
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}

C:\Users\hugo\AppData\Roaming\Mozilla\Firefox\Profiles\jrv8x4ll.default\searchplugins\
google-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2017-01-09 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2017-01-09 186944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-01-07 13663448]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2016-10-13 3942864]
"StartCN"=C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [2016-09-16 8027016]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Gadwin PrintScreen"=C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [2011-05-03 487424]
"OneDrive"=C:\Users\hugo\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-10-11 554184]
"OfficeSyncProcess"=C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
"AutoSizer"=C:\Program Files (x86)\AutoSizer\AutoSizer.exe [2015-10-21 131072]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
"Web Companion"=C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [2015-12-05 1445648]
"ISUSPM Startup"=C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [2005-02-16 221184]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-12-06 9288408]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun []
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2017-01-02 9080768]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2015-04-28 2086240]
"ISUSScheduler"=C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [2005-02-16 81920]
"SSBkgdUpdate"=C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"DNS7reminder"=C:\Program Files (x86)\Nuance\NaturallySpeaking10\Ereg\Ereg.exe [2007-04-16 259624]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2015-04-20 1298456]
"DelaypluginInstall"=C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe []
"ProductUpdater"=C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [2016-11-24 75776]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-09-22 587288]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe []

C:\Users\hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OneNote 2010 Schermopname en Snel starten.lnk - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 4171480]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-01-11 18:40:06 ----D---- C:\rsit
2017-01-11 18:40:06 ----D---- C:\Program Files\trend micro
2017-01-11 17:31:53 ----HD---- C:\$SysReset
2017-01-03 11:38:11 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-01-02 13:59:06 ----A---- C:\WINDOWS\avastSS.scr
2016-12-31 12:10:53 ----AD---- C:\Program Files (x86)\PIXresizer
2016-12-31 12:10:53 ----A---- C:\WINDOWS\SYSWOW64\ccrpbds6.dll
2016-12-17 14:53:59 ----A---- C:\WINDOWS\Readiris.ini
2016-12-17 14:53:54 ----AD---- C:\Program Files (x86)\Readiris Pro 12 for IRIScan Book 3
2016-12-14 18:12:30 ----D---- C:\WINDOWS\PCHEALTH
2016-12-14 17:53:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-14 17:53:55 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-12-14 17:53:55 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-12-14 17:53:55 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-12-14 17:53:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-12-14 17:53:54 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-14 17:53:54 ----A---- C:\WINDOWS\system32\ole32.dll
2016-12-14 17:53:54 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-12-14 17:53:53 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-12-14 17:53:53 ----A---- C:\WINDOWS\system32\msi.dll
2016-12-14 17:53:52 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-12-14 17:53:52 ----A---- C:\WINDOWS\system32\hvix64.exe
2016-12-14 17:53:52 ----A---- C:\WINDOWS\system32\hvax64.exe
2016-12-14 17:53:52 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-14 17:53:51 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-12-14 17:53:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-14 17:53:51 ----A---- C:\WINDOWS\system32\hvloader.exe
2016-12-14 17:53:50 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2016-12-14 17:53:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-12-14 17:53:50 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2016-12-14 17:53:50 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2016-12-14 17:53:50 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-14 17:53:49 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-14 17:53:49 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-14 17:53:48 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-12-14 17:53:48 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-12-14 17:53:48 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-14 17:53:48 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-14 17:53:47 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-12-14 17:53:47 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-12-14 17:53:47 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-14 17:53:47 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-14 17:53:46 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-12-14 17:53:46 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-12-14 17:53:45 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-12-14 17:53:45 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-12-14 17:53:44 ----A---- C:\WINDOWS\system32\InputService.dll
2016-12-14 17:53:43 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-12-14 17:53:43 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2016-12-14 17:53:43 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-12-14 17:53:43 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-12-14 17:53:43 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-14 17:53:43 ----A---- C:\WINDOWS\system32\win32k.sys
2016-12-14 17:53:43 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-12-14 17:53:43 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-12-14 17:53:43 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-14 17:53:43 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-14 17:53:42 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-12-14 17:53:42 ----A---- C:\WINDOWS\system32\user32.dll
2016-12-14 17:53:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-14 17:53:41 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-12-14 17:53:41 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-12-14 17:53:40 ----A---- C:\WINDOWS\system32\cdp.dll
2016-12-14 17:53:39 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-12-14 17:53:39 ----A---- C:\WINDOWS\system32\securekernel.exe
2016-12-14 17:53:39 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-12-14 17:53:39 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-14 17:53:38 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-12-14 17:53:38 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-12-14 17:53:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-12-14 17:53:37 ----A---- C:\WINDOWS\system32\winresume.exe
2016-12-14 17:53:37 ----A---- C:\WINDOWS\system32\winload.exe
2016-12-14 17:53:37 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-12-14 17:53:36 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-12-14 17:53:36 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-12-14 17:53:36 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-12-14 17:53:36 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-14 17:53:35 ----A---- C:\WINDOWS\system32\combase.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-12-14 17:53:35 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-12-14 17:53:34 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-12-14 17:53:34 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-12-14 17:53:34 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2016-12-14 17:53:34 ----A---- C:\WINDOWS\system32\wincorlib.dll
2016-12-14 17:53:34 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-12-14 17:53:34 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-12-14 17:53:34 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-12-14 17:53:34 ----A---- C:\WINDOWS\system32\bcrypt.dll
2016-12-14 17:53:33 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2016-12-14 17:53:33 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-12-14 17:53:33 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-12-14 17:53:33 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-12-14 17:53:33 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-12-14 17:53:33 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-12-14 17:53:32 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-12-14 17:53:32 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-12-14 17:53:32 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-12-14 17:53:32 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-12-14 17:53:32 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-12-14 17:53:31 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-12-14 17:53:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-12-14 17:53:30 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-14 17:53:30 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-12-14 17:53:30 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-12-14 17:53:30 ----A---- C:\WINDOWS\system32\cdd.dll
2016-12-14 17:53:29 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-12-14 17:53:29 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-12-14 17:53:28 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-12-14 17:53:28 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-12-14 17:53:27 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-12-14 17:53:27 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-12-14 17:53:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-12-14 17:53:26 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-12-14 17:53:26 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll

======List of files/folders modified in the last 1 month======

2017-01-11 18:40:06 ----RD---- C:\Program Files
2017-01-11 18:38:35 ----D---- C:\Windows
2017-01-11 18:38:13 ----D---- C:\WINDOWS\system32\catroot2
2017-01-11 18:36:59 ----D---- C:\WINDOWS\WinSxS
2017-01-11 18:35:43 ----D---- C:\WINDOWS\Temp
2017-01-11 18:33:34 ----D---- C:\WINDOWS\CbsTemp
2017-01-11 17:50:48 ----D---- C:\WINDOWS\Prefetch
2017-01-11 17:50:46 ----SHDC---- C:\WINDOWS\Installer
2017-01-11 17:50:31 ----D---- C:\WINDOWS\SysWOW64
2017-01-11 17:50:29 ----D---- C:\WINDOWS\system32\Tasks
2017-01-11 17:43:00 ----D---- C:\WINDOWS\system32\sru
2017-01-11 17:31:03 ----D---- C:\WINDOWS\AppReadiness
2017-01-11 15:05:26 ----D---- C:\WINDOWS\system32\SleepStudy
2017-01-11 12:12:43 ----RD---- C:\WINDOWS\Microsoft.NET
2017-01-11 10:37:25 ----D---- C:\WINDOWS\system32\drivers
2017-01-11 10:37:22 ----D---- C:\WINDOWS\LiveKernelReports
2017-01-11 10:37:12 ----D---- C:\WINDOWS\System32
2017-01-10 17:53:07 ----SHD---- C:\System Volume Information
2017-01-10 15:43:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-10 15:34:34 ----HD---- C:\Program Files\WindowsApps
2017-01-10 15:21:19 ----HD---- C:\ProgramData
2017-01-09 20:30:34 ----D---- C:\Program Files (x86)\Common Files
2017-01-09 20:30:18 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2017-01-09 20:30:03 ----D---- C:\Program Files (x86)\Java
2017-01-09 20:24:40 ----AD---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-01-09 20:22:57 ----A---- C:\WINDOWS\wininit.ini
2017-01-09 20:22:56 ----SD---- C:\ProgramData\Microsoft
2017-01-09 19:38:05 ----D---- C:\ProgramData\Spybot - Search & Destroy
2017-01-09 13:21:54 ----D---- C:\WINDOWS\system32\restore
2017-01-09 13:18:45 ----D---- C:\WINDOWS\Logs
2017-01-09 12:55:56 ----D---- C:\Users\hugo\AppData\Roaming\PhotoScape
2017-01-09 11:58:53 ----D---- C:\WINDOWS\INF
2017-01-08 13:24:48 ----D---- C:\Users\hugo\AppData\Roaming\vlc
2017-01-03 13:54:16 ----D---- C:\Users\hugo\AppData\Roaming\MPC-HC
2017-01-02 21:01:44 ----A---- C:\Users\hugo\AppData\Roaming\burnaware.ini
2016-12-31 12:10:53 ----RD---- C:\Program Files (x86)
2016-12-31 10:53:06 ----D---- C:\WINDOWS\debug
2016-12-30 14:12:52 ----AD---- C:\Program Files (x86)\TeamViewer
2016-12-30 12:49:00 ----D---- C:\WINDOWS\SoftwareDistribution
2016-12-29 18:17:07 ----AD---- C:\ProgramData\Temp
2016-12-26 11:26:16 ----D---- C:\WINDOWS\system32\config
2016-12-24 12:09:26 ----D---- C:\WINDOWS\system32\Macromed
2016-12-24 12:09:25 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2016-12-20 15:29:37 ----D---- C:\WINDOWS\system32\DriverStore
2016-12-20 14:20:33 ----AD---- C:\Program Files\CCleaner
2016-12-16 18:21:09 ----D---- C:\WINDOWS\rescache
2016-12-16 15:25:37 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-16 15:25:37 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-12-15 15:22:31 ----RD---- C:\WINDOWS\assembly
2016-12-14 21:11:22 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-12-14 21:11:22 ----D---- C:\WINDOWS\system32\en-US
2016-12-14 21:11:22 ----D---- C:\WINDOWS\ShellExperiences
2016-12-14 21:11:22 ----D---- C:\WINDOWS\AppPatch
2016-12-14 21:11:21 ----D---- C:\WINDOWS\system32\Boot
2016-12-14 18:20:21 ----D---- C:\ProgramData\Microsoft Help
2016-12-14 18:15:04 ----D---- C:\WINDOWS\system32\MRT
2016-12-14 18:12:40 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-12-12 00:56:25 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2014-03-20 81608]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2014-03-20 23752]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-01-02 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-01-02 293352]
R0 EUBAKUP;EUBAKUP; C:\WINDOWS\system32\drivers\eubakup.sys [2014-12-15 60968]
R0 EUBKMON;EUBKMON; C:\WINDOWS\system32\drivers\EUBKMON.sys [2014-12-15 48168]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R0 pwdrvio;pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [2013-09-30 19152]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-01-02 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-01-02 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-01-02 969184]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-01-02 513632]
R1 EUDSKACS;EUDSKACS; \??\C:\WINDOWS\system32\drivers\eudskacs.sys [2014-12-15 18472]
R1 EUFDDISK;EUFDDISK; \??\C:\WINDOWS\system32\drivers\EuFdDisk.sys [2014-12-15 192040]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-01-02 108816]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-01-02 163416]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 speedfan;speedfan; \??\C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0307259.inf_amd64_e75a0a5e82450920\atikmdag.sys [2016-10-26 26568856]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0307259.inf_amd64_e75a0a5e82450920\atikmpag.sys [2016-10-26 536592]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athw8x.sys [2016-07-16 4233728]
R3 AtiHDAudioService;@oem1.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-05-28 102912]
R3 BTATH_BUS;@oem11.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-12-24 34384]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-07-13 610336]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-10-11 114176]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-09-15 249856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-10-11 84992]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-01-07 3811800]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
R3 RTL8168;@oem20.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\System32\drivers\Rt630x64.sys [2014-03-26 843480]
R3 RTSUER;@oem17.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-14 402960]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2015-07-02 80920]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-01-02 37656]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\WINDOWS\System32\drivers\BTHport.sys [2016-11-11 967168]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-10-11 73568]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\WINDOWS\System32\drivers\MarvinBus64.sys [2005-09-23 261120]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 pwdspio;pwdspio; \??\C:\WINDOWS\system32\pwdspio.sys [2013-09-30 12504]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2013-12-24 269528]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-07-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-07-16 50688]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2016-07-16 45568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdaptiveSleepService;AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [2016-09-16 155016]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2016-10-26 305168]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-01-02 197128]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2016-08-15 2267352]
R2 CDPUserSvc_d318d1;CDPUserSvc_d318d1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CIJSRegister;Dutch Canon IJ Scan Utility register event; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [2015-02-19 144464]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 EaseUS Agent;EaseUS Agent Service; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [2015-08-01 36904]
R2 LavasoftTcpService;LavasoftTcpService; C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2015-12-05 2751760]
R2 OneSyncSvc_d318d1;Host synchroniseren_d318d1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R2 SearchProtectionService;IE Search Set; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe [2015-12-05 17168]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 PimIndexMaintenanceSvc_d318d1;Contact Data_d318d1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-06-26 458984]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-24 270936]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_d318d1;MessagingService_d318d1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-16 172488]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ose;Office  Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-10-11 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

 

 

 

 

 

 

Link naar reactie
Delen op andere sites

12 uren geleden, iEscape zei:

Even iets anders:

 

 

15 uren geleden, snowi zei:

Ik mis o.a. 3 mails als bewijs van betaling van producten en die niet binnenkomen in de andere mailboxen buiten de hoofdmailbox.

Zijn die e-mailberichten nog aanwezig als u inlog via de Proximus webmail ?

 

Wat is het antwoord ?

 

Link naar reactie
Delen op andere sites

Op 11-1-2017 om 14:30, iEscape zei:

s het mogelijk om de computer terug te zetten via een systeemherstel naar een punt voordat het probleem is ontstaan ?

 

Op 11-1-2017 om 14:30, iEscape zei:

 

 

(sorry, krijg bovengenoemde tekst niet weg ...)

 

mijn antwoord op uw laatste vraag:

Nee. Niet aanwezig.

 

Bij Proximus  zie ik dat wat betreft de andere mailboxen + aliassen buiten de hoofdaccount, bij “postvak in” de mails toch toekomen en wordt ook zo weergegeven in WLM. Sorry, ik dacht van niet want het is toch opmerkelijk dat 3 voorname mails met bevestiging van betaling, niet zijn toegekomen. Zou natuurlijk aan de afzender kunnen liggen maar is dan wel heel toevallig. Maar daar geef ik voorlopig niet om. Ik zal wel een herbevestiging vragen wanneer  WLM terug in orde zou zijn.

 

Maar ik heb wel vastgesteld zowel bij mij met WLM én bij Proximus, dat verzonden mails vanuit een van de 4 bijkomende mailbox/aliassen, deze na “verzenden” ...niet bij “verzonden items” staan.  

 

De laatste verzonden mail vanuit  zo een aparte mailbox-alias naar mijn zoon kwam dan wonderwel toch bij hem aan zie ik bij mijn WLM ...maar wordt niet vermeld bij Proximus “ verzonden items”.

 

Het is raar. Vanuit mijn “hoofdaccount + aliassen doet WLM alles zoals het moet doen, maar het is met de andere mailboxen + aliassen dat het sinds enkele dagen plots mis loopt.  

 

 

 

 

 

 

 

 

Link naar reactie
Delen op andere sites

Op 11-1-2017 om 14:30, iEscape zei:

s het mogelijk om de computer terug te zetten via een systeemherstel naar een punt voordat het probleem is ontstaan ?

 

Op 11-1-2017 om 14:30, iEscape zei:

 

 

(sorry, krijg bovengenoemde tekst niet weg ... Nu dat weer en dit voor de 2de maal. Alles schijnt zowat verkeerd te lopen.

 

Mag ik daarom vragen om de HijackThis log te bekijken a.u.b.?

 

Link naar reactie
Delen op andere sites

Hallo,

 

Op het eerste gezicht ziet het logje er goed uit maar we doen nog een test:

 

Download de 51deb689c0320-emsisoftemergencykit_100-4Emsisoft Emergency Kit naar het bureaublad.

  • Dubbelklik op "EmsisoftEmergencyKit.exe".
  • Klik vervolgens op de knop "Install" en de bestanden worden nu automatisch uitgepakt naar de systeemschijf "C:\EEK".
  • Wanneer het uitpakken gereed is opent de map "C:\EEK" dubbelklik op "Start Emergency Kit Scanner".
  • "Emsisoft Emergency Kit" opent en wanneer u de melding "Wilt u nu updaten?" krijgt klikt u op "Ja".
  • Wanneer de update gereed is klikt u in op "Malware scan" wanneer u de melding "op PUP's mee scannen" krijgt klikt u op "Ja".
  • Het scannen begint, gebruik bij voorkeur de computer niet voor andere bezigheden tijdens de scan.
  • Wanneer de scan gereed is zorg dat alle items staan aangevinkt en klik op de knop "Quarantaine".
  • Klik vervolgens op de knop "Rapport bekijken" en plaats de inhoud van dit bestand in uw volgende bericht als bijlage.

(Het logbestand is tevens terug te vinden op de systeemschijf (C:\EEK\Run\Reports) met de naam a2scan_130711-154142.txt)

Link naar reactie
Delen op andere sites

Op 11-1-2017 om 14:30, iEscape zei:

s het mogelijk om de computer terug te zetten via een systeemherstel naar een punt voordat het probleem is ontstaan ?

 

Op 11-1-2017 om 14:30, iEscape zei:

 

 

(sorry, krijg bovengenoemde tekst niet weg ... Nu dat weer en dit voor de 2de maal. Alles schijnt zowat verkeerd te lopen.

 

Mag ik daarom vragen om de HijackThis log te bekijken a.u.b.?

 

$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$

Dank u om het logje na te kijken!

Ik heb zowel de “C” als de “E” (documenten) gescand en in het rapport weergegeven.

In de “E” drive is toch ook 1 object gevonden.  

Emsisoft Emergency Kit.docx

 

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.