Jeroen1988

Hoi , Nog altijd zeer traag eigelijk !

Hallo, Hierbij het logbestand van adcleaner: # AdwCleaner v4.105 - Rapport aangemaakt 17/12/2014 op 19:18:36 # Laatste Update 08/12/2014 door Xplode # Database : 2014-12-16.1 [Live] # Besturingssysteem : Windows 8.1 (64 bits) # Gebruikersnaam : Jeroen - BREUGELMANS # Gestart vanuit : C:\Users\Jeroen\Desktop\adwcleaner_4.105.exe # Optie : Verwijderen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** ***** [ Taken ] ***** ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** Sleutel Verwijderd : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3A} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3A} ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17416 -\\ Mozilla Firefox v33.1 (x86 nl) ************************* AdwCleaner[R0].txt - [2170 octets] - [21/11/2014 20:03:19] AdwCleaner[R1].txt - [1117 octets] - [17/12/2014 19:15:51] AdwCleaner[s0].txt - [1864 octets] - [21/11/2014 20:04:46] AdwCleaner[s1].txt - [1038 octets] - [17/12/2014 19:18:36] ########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [1098 octets] ##########

Hoi , Hierbij het logbestand van zoek-result.log Zoek.exe v5.0.0.0 Updated 14-December-2014 Tool run by Jeroen on di 16/12/2014 at 22:00:55,55. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Jeroen\Desktop\zoek.exe [scan current user] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 16/12/2014 22:03:50 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\Fotoservice deleted successfully C:\Program Files\log deleted successfully C:\Users\Jeroen\AppData\Roaming\hpqlog deleted successfully C:\Users\Jeroen\AppData\Local\Adobe deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2106953164-1313762287-1577351424-1001\Software\Microsoft\Internet Explorer\SearchScopes\{617D2AE1-A54B-4F48-8F30-8C4071DF064D} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default user.js not found ---- Lines {58e3c1c9-2dc1-4762-bd45-1df9da9d0820} removed from prefs.js ---- user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.daysPassed", "{\"t2d\":true,\"t10d\":true,\"t7d\":true}"); user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.installtime", "1415997277.896"); user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.isFirstRun", "false"); user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.is_bundle", "true"); user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.lastC", "{\"sm\":394101,\"li\":394101,\"mo\":393955}"); user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.last_version", ""); user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.moEnabled", true); user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.server", "https://s7902.webovernet.com"); user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.src", "7902"); user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.toolbarButtonInstalled", true); user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.user_id", "A89A8347-BB44-4C16-8250-F08285E1206A"); ---- Lines {58e3c1c9-2dc1-4762-bd45-1df9da9d0820} modified from prefs.js ---- user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"url_advisor@kaspersky.com\":{\"descriptor\":\"C:\\\\Program Files ---- Lines {d6b1a471-3776-48de-90e2-a0d90de70fd3} removed from prefs.js ---- user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.daysPassed", "{\"t2d\":true}"); user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.installtime", "1415997277.896"); user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.is_bundle", "true"); user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.isFirstRun", "false"); user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.last_version", ""); user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.lastC", "{\"sm\":393333,\"li\":393425,\"mo\":393425}"); user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.moEnabled", true); user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.server", "https://s7902.webovernet.com"); user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.src", "7902"); user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.toolbarButtonInstalled", true); user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.user_id", "A89A8347-BB44-4C16-8250-F08285E1206A"); ---- FireFox user.js and prefs.js backups ---- prefs_20141612_2209_.backup ==== Deleting Files \ Folders ====================== C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default\extensions\58e3c1c9-2dc1-4762-bd45-1df9da9d0820} not found C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default\extensions\{58e3c1c9-2dc1-4762-bd45-1df9da9d0820} deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Jeroen\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-12-13 09:19:01 A9B598B04606F9869C42728FE95CBC7C 1489072 ----a-w- C:\Windows\SysWOW64\WindowsCodecs.dll 2014-12-13 09:18:55 220505B0B3E96C857DD01729AF0CD369 19749376 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-12-13 09:18:52 B59E370277EDB6643083B62297175628 12836864 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-12-13 09:18:48 F728E7E9937117E0F32F39840EB6D737 4299264 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-12-13 09:18:48 F34F6DC38A21FCDBB50CDD1EE97B1EA3 1307136 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-12-13 09:18:48 5E4E0E43E0A5BF9F089696DFA7A3D677 1888256 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-12-13 09:18:48 01777AB557997E98691E322225314E57 2277888 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-12-13 09:18:47 543ADCEA31CF9C2B4EEB900D4AAFD0F9 2052096 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-12-13 09:18:47 41AFA61E061E98E97272AC02184C8C2C 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2014-12-13 09:18:47 37F078B5B435AFC6BF316F2AD14B469A 501248 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2014-12-13 09:18:46 F25284C763E728E4DAC248C211D1FC5B 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-12-13 09:18:46 D7A98A4CEA2E89F544065A00BF37FC10 688640 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-12-13 09:18:46 86181845803967FC51B64119E80FC18C 340992 ----a-w- C:\Windows\SysWOW64\html.iec 2014-12-13 09:18:46 713407DA59A9DBE5BD64A17D7A267DA1 326656 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2014-12-13 09:18:46 69AC6FD5B0B4DC963723E1EBDEE10A2C 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-12-13 09:18:46 476900A8699F5C3D954ADD4A35D33F89 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll 2014-12-13 09:18:45 C6941899E6B0A1893D2D5A89241A43B6 661504 ----a-w- C:\Windows\SysWOW64\jscript.dll 2014-12-13 09:18:45 98F2784FC4A4A80CE20016C6281834EE 880128 ----a-w- C:\Windows\SysWOW64\inetcomm.dll 2014-12-13 09:18:45 29CED1A4777A43526A4ED8A7B6936883 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2014-12-13 09:18:45 0E4D9A13C7C6C8FC3ACCF1C8C28DE200 128000 ----a-w- C:\Windows\SysWOW64\iepeers.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-12-13 09:19:01 418B5117F187DFFD96C52325CA0DF153 1762840 ----a-w- C:\Windows\Sysnative\WindowsCodecs.dll 2014-12-13 09:18:56 D478A4CF07FB8ADF72FB16B88E8030B8 25059840 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-12-13 09:18:53 556D271F4243B273EDA353512BF3608A 14412800 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-12-13 09:18:50 8D64466AD12CA5677CD0099C43C58569 6039552 ----a-w- C:\Windows\Sysnative\jscript9.dll 2014-12-13 09:18:49 4AF089160FE082E5EA5C4AA72782DCA2 2358272 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-12-13 09:18:48 E7A2061ADF0F4D430FECDA1E8D6B7BA6 1548288 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-12-13 09:18:48 982B871A25B5078093FAD82D0AB0E3FC 2885120 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-12-13 09:18:47 EFBA893429814EA3244C87C2D1256618 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2014-12-13 09:18:47 3FE71E2A5BD3EC652E64FC8BCEFEDD2C 2125312 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-12-13 09:18:46 DDE455CF1B9F43775A53A4E577DFDC54 373760 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2014-12-13 09:18:46 DB10D681314714E0D4623E4C0CF6654A 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-12-13 09:18:46 D248949FCF2B72C1FD4EC15DA92065C0 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll 2014-12-13 09:18:46 62CFEE2A516C68540486EBF26F18ED4C 145408 ----a-w- C:\Windows\Sysnative\iepeers.dll 2014-12-13 09:18:46 39B512C643812FC2D4843C0D4206C759 718848 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2014-12-13 09:18:46 284070B045F8B11B4A1FB32F72023038 417280 ----a-w- C:\Windows\Sysnative\html.iec 2014-12-13 09:18:46 1D294810D3A8A8F722E86AA001F54DCC 580096 ----a-w- C:\Windows\Sysnative\vbscript.dll 2014-12-13 09:18:46 17A157A4225CF562202AC71DB8103177 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2014-12-13 09:18:46 14BA910E7731FC84EB85328BD0F1EE81 800768 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-12-13 09:18:46 0AF0AEF0BA9EF6169E61C78504DCAE55 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-12-13 09:18:45 A41AC7E8D142FD0ECF6EF7F1BB63D478 812544 ----a-w- C:\Windows\Sysnative\jscript.dll 2014-12-13 09:18:45 507DC5EE1363EEB7D986B1026DF4E39D 1032704 ----a-w- C:\Windows\Sysnative\inetcomm.dll ====== C:\Windows\Sysnative\drivers ===== 2014-12-13 09:19:02 B02118A776C368F7EE1A8CC81378D265 153920 ----a-w- C:\Windows\Sysnative\drivers\dumpsd.sys 2014-12-13 09:19:02 A770340FC02B999EF0DE6C2A6BC8437C 39744 ----a-w- C:\Windows\Sysnative\drivers\intelpep.sys 2014-12-13 09:19:02 7B7C482CF48E6EE33664340D1A78E6FE 238912 ----a-w- C:\Windows\Sysnative\drivers\sdbus.sys 2014-12-13 09:19:02 24A8DFC07E4BAF29AEA26E383D4CC886 86336 ----a-w- C:\Windows\Sysnative\drivers\pdc.sys ====== C:\Windows\Tasks ====== 2014-11-21 19:11:50 2C7FB55C7CBD5CB449849EB748E5A5A7 360 ----a-w- C:\Windows\Tasks\HPCeeScheduleForJeroen.job 2014-11-21 19:11:50 1E79EBC86132C34BE5A256A7778B5019 3176 ----a-w- C:\Windows\Sysnative\Tasks\HPCeeScheduleForJeroen ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-12-10 18:53:57 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== ======= C: ===== ====== C:\Users\Jeroen\AppData\Roaming ====== 2014-11-21 19:15:45 -------- d-sh--w- C:\Users\Jeroen\AppData\Local\EmieBrowserModeList ====== C:\Users\Jeroen ====== 2014-12-10 18:51:33 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Jeroen\Desktop\RSITx64.exe ====== C: exe-files == 2014-12-16 08:22:01 C44E931F38BFECBED0F5141DC9D6CDCC 273008 ----a-w- C:\Users\tif_s_000\AppData\Local\Mozilla\updates\E7CF176E110C211B\updates\0\updater.exe 2014-12-13 09:18:46 39B512C643812FC2D4843C0D4206C759 718848 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-12-10 18:53:58 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Jeroen.exe 2014-12-10 18:51:33 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Jeroen\Desktop\RSITx64.exe === C: other files == 2014-12-13 09:19:02 B02118A776C368F7EE1A8CC81378D265 153920 ----a-w- C:\Windows\System32\drivers\dumpsd.sys 2014-12-13 09:19:02 A770340FC02B999EF0DE6C2A6BC8437C 39744 ----a-w- C:\Windows\System32\drivers\intelpep.sys 2014-12-13 09:19:02 7B7C482CF48E6EE33664340D1A78E6FE 238912 ----a-w- C:\Windows\System32\drivers\sdbus.sys 2014-12-13 09:19:02 24A8DFC07E4BAF29AEA26E383D4CC886 86336 ----a-w- C:\Windows\System32\drivers\pdc.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-2106953164-1313762287-1577351424-1001\Software\Microsoft\Windows\CurrentVersion\Run] "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AccelerometerSysTrayApplet"="C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe" "YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s" "AVP"="C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\runner_avp.exe" "HPMessageService"="C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "SimplePass"="C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe /hideui" "OPBHOBroker"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe" "OPBHOBrokerDesktop"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [10/12/2014 20:10] C:\Windows\tasks\HPCeeScheduleForJeroen.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [15/07/2011 04:43] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Apple Diagnostics" [C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CLMLSvc_P2G8" [C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe] "C:\Windows\SysNative\tasks\CLVDLauncher" [C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe] "C:\Windows\SysNative\tasks\HPCeeScheduleForJeroen" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{664F8053-3839-484B-8B03-D1B09CBD86B6}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{6A6989B4-77A7-4975-926B-A41B047BBC07}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" [C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" [] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default - Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com - Undetermined - anti_banner@kaspersky.com - Undetermined - {58e3c1c9-2dc1-4762-bd45-1df9da9d0820} AppDir: C:\Program Files (x86)\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default 9860727E477F17B88E39AF8B69B0407A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll - Shockwave Flash D6ED6EB98E759460AD8C66DE23070132 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll - Microsoft Office 2013 18CF51689186AEB9D1D149AEB0E92D03 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL - Microsoft Office 2013 F7C99E18CDC7E8D45499856770A4110F - C:\Users\Jeroen\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player 0C0C5C207121C7A78414A8250E8E099A - C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll - Shockwave for Director / Shockwave for Director ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions dchlnpcodkpfdpacogkljefecpegganj - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\urladvisor.crx[28/11/2013 12:06] hakdifolhalapjijoafobooafbilfakh - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\online_banking_chrome.crx[28/11/2013 12:06] hghkgaeecgjhjkannahfamoehjmkjail - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\content_blocker_chrome.crx[28/11/2013 12:03] jagncdcchgajhfhijbbhecadmaiegcmh - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\virtkbd.crx[28/11/2013 12:03] lpoimibckejjdjcfbdnajaicnklhfplh - https://chrome.google.com/webstore/detail/lpoimibckejjdjcfbdnajaicnklhfplh[] pjldcfjmnllhmgjclecdnfampinooman - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\ab.crx[28/11/2013 12:06] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS" {D944BB61-2E34-4DBF-A683-47E505C587DC} eBay Url="http://rover.ebay.com/rover/1/1553-29906-12136-18/4" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jeroen\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Jeroen\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Jeroen\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Jeroen\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Jeroen\AppData\Local\Mozilla\Firefox\Profiles\02g5u7e6.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=32 folders=16 7558128 bytes) ==== Empty Temp Folders ====================== C:\Users\Jeroen\AppData\Local\Temp will be emptied at reboot C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Jeroen\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on di 16/12/2014 at 22:17:00,54 ======================

Hoi , Hierbij de log: Logfile of random's system information tool 1.10 (written by random/random) Run by Jeroen at 2014-12-10 19:53:56 Microsoft Windows 8.1 System drive C: has 874 GB (93%) free of 936 GB Total RAM: 8122 MB (73% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:54:06, on 10/12/2014 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.9600.17416) Boot mode: Normal Running processes: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files\trend micro\Jeroen.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCON14/2 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCON14/2 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\OnlineBanking\online_banking_bho.dll O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\UrlAdvisor\klwtbbho.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\runner_avp.exe" O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O8 - Extra context menu item: Toevoegen aan Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ie_banner_deny.htm O9 - Extra button: Virtueel Toetsenbord - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra button: Controle van URL's - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\UrlAdvisor\klwtbbho.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Kaspersky Anti-Virus-service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: HP SimplePass Cachedrv Service (Cachedrv server) - Unknown owner - C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: CryptoStorage control service (CSObjectsSrv) - Infowatch - C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: @oem21.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing) O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel® ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: HP SimplePass Service (omniserv) - Softex Inc. - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 13288 bytes ======Listing Processes====== wininit.exe C:\Windows\system32\lsass.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS "C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe" "C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe" C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\Hpservice.exe "C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe" C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k apphost "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe" -r "C:\Program Files\Bonjour\mDNSResponder.exe" "C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service "C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe" dashost.exe {1943db4a-b35d-484e-bea23b0ac8b63494} "c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe" "C:\Program Files\Intel\iCLS Client\HeciServer.exe" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe" C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7} "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\Windows Media Player\wmpnetwk.exe" "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe" taskhost.exe $(Arg0) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\svchost.exe -k WbioSvcGroup "C:\Program Files\iPod\bin\iPodService.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\WinLogon.exe -SpecialSession -hiberboot "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray C:\Windows\Explorer.EXE "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS taskhostex.exe C:\Windows\System32\skydrive.exe -Embedding "C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe" "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s "C:\Windows\system32\igfxsrvc.exe" -Embedding "C:\Windows\System32\hkcmd.exe" "C:\Windows\System32\igfxpers.exe" "C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe" /hideui "C:\Program Files\Hewlett-Packard\SimplePass\opbhobroker.exe" "C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe" "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE" "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" -Embedding "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac "C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe" "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" "C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey "C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe" C:\Windows\system32\wbem\unsecapp.exe -Embedding "C:\Windows\System32\SettingSyncHost.exe" -Embedding taskeng.exe {FBC92EAB-305B-44BE-8628-E48D0CCF6111} "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" C:\Windows\System32\RuntimeBroker.exe -Embedding "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server "C:\Users\Jeroen\Desktop\RSITx64.exe" ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\HPCeeScheduleForJeroen.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJeroen (null) =========Mozilla firefox========= ProfilePath - C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default prefs.js - "browser.search.useDBForOrder" - "false" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 15.0.0.239 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_239.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer] "Description"=Adobe Shockwave Player "Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=] "Description"=iTunes Detector Plug-in "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0] "Description"= "Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] "Description"=Picasa3 plugin "Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5] "Description"=Intel IPT WebApi plugin "Path"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater] "Description"=This plugin updates Intel WebAPI component "Path"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0] "Description"=Microsoft Lync Plug-in for Firefox "Path"=C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] "Description"=Microsoft SharePoint Plug-in for Firefox "Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 15.0.0.239 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_239.dll C:\Program Files (x86)\Mozilla Firefox\extensions\ belgiumeid@eid.belgium.be C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default\extensions\ {58e3c1c9-2dc1-4762-bd45-1df9da9d0820} ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}] Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-10-14 218776] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}] Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-02 658624] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}] Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-04-02 1074368] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}] Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-02 518336] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}] Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-10-14 2334928] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-02 584384] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}] Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2014-10-14 153248] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}] Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-02 542400] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}] Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-04-02 885952] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}] Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-02 428224] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}] Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2014-10-14 1729752] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-02 488640] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-11-05 7204568] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-10-25 391152] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-10-25 771056] "Persistence"=C:\Windows\system32\igfxpers.exe [2013-10-25 769520] "SimplePass"=C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe [2013-10-14 2758200] "OPBHOBroker"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2013-10-14 155704] "OPBHOBrokerDesktop"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2013-10-14 155704] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-07-26 2771184] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-11-11 21720] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2014-08-08 43816] "ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2014-08-14 43816] "Steam"=C:\Program Files (x86)\Steam\Steam.exe [2014-11-18 1940160] "CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-25 6480664] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-07-24 77088] "YouCam Service"=C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2013-09-02 267224] "AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\runner_avp.exe [2013-11-28 24256] "HPMessageService"=C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [2013-12-25 1045304] "iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-05-26 152392] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2013-10-08 623616] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=8 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "VIDC.YUY2"=msyuv.dll "vidc.i420"=iyuv_32.dll "msacm.msgsm610"=msgsm32.acm "msacm.msg711"=msg711.acm "VIDC.YVYU"=msyuv.dll "VIDC.YVU9"=tsbyuv.dll "wavemapper"=msacm32.drv "midimapper"=midimap.dll "VIDC.UYVY"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.mrle"=msrle32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "vidc.msvc"=msvidc32.dll "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-12-10 19:53:57 ----D---- C:\Program Files\trend micro 2014-12-10 19:53:56 ----D---- C:\rsit 2014-11-21 21:55:53 ----A---- C:\Windows\system32\kerberos.dll 2014-11-21 21:55:52 ----A---- C:\Windows\SYSWOW64\pku2u.dll 2014-11-21 21:55:52 ----A---- C:\Windows\SYSWOW64\kerberos.dll 2014-11-21 21:55:52 ----A---- C:\Windows\system32\pku2u.dll 2014-11-21 20:03:14 ----D---- C:\AdwCleaner 2014-11-14 22:21:22 ----A---- C:\Windows\system32\drivers\5EEA1047.sys 2014-11-14 22:09:16 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys 2014-11-14 22:08:56 ----D---- C:\ProgramData\Malwarebytes 2014-11-14 22:08:56 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-11-14 22:08:56 ----A---- C:\Windows\system32\drivers\mwac.sys 2014-11-14 22:08:56 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys 2014-11-14 22:08:56 ----A---- C:\Windows\system32\drivers\mbam.sys 2014-11-14 21:06:44 ----A---- C:\Windows\system32\mshtml.dll 2014-11-14 21:06:43 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2014-11-14 21:06:17 ----A---- C:\Windows\system32\ieframe.dll 2014-11-14 21:06:12 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2014-11-14 21:06:07 ----A---- C:\Windows\system32\jscript9.dll 2014-11-14 21:06:05 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2014-11-14 21:06:04 ----A---- C:\Windows\SYSWOW64\wininet.dll 2014-11-14 21:06:04 ----A---- C:\Windows\system32\wininet.dll 2014-11-14 21:06:03 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2014-11-14 21:06:03 ----A---- C:\Windows\system32\urlmon.dll 2014-11-14 21:06:03 ----A---- C:\Windows\system32\iertutil.dll 2014-11-14 21:06:02 ----A---- C:\Windows\SYSWOW64\inetcomm.dll 2014-11-14 21:06:02 ----A---- C:\Windows\system32\inetcomm.dll 2014-11-14 21:06:02 ----A---- C:\Windows\system32\actxprxy.dll 2014-11-14 21:06:01 ----A---- C:\Windows\SYSWOW64\jscript.dll 2014-11-14 21:06:01 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2014-11-14 21:06:00 ----A---- C:\Windows\system32\jscript9diag.dll 2014-11-14 21:06:00 ----A---- C:\Windows\system32\jscript.dll 2014-11-14 21:06:00 ----A---- C:\Windows\system32\ieui.dll 2014-11-14 21:05:59 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2014-11-14 21:05:59 ----A---- C:\Windows\system32\msfeeds.dll 2014-11-14 21:05:58 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2014-11-14 21:05:58 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2014-11-14 21:05:58 ----A---- C:\Windows\SYSWOW64\ieui.dll 2014-11-14 21:05:58 ----A---- C:\Windows\system32\vbscript.dll 2014-11-14 21:05:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2014-11-14 21:05:56 ----A---- C:\Windows\system32\dxtmsft.dll 2014-11-14 21:05:55 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2014-11-14 21:05:55 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2014-11-14 21:05:55 ----A---- C:\Windows\system32\ieapfltr.dll 2014-11-14 21:05:55 ----A---- C:\Windows\system32\dxtrans.dll 2014-11-14 21:05:53 ----A---- C:\Windows\SYSWOW64\webcheck.dll 2014-11-14 21:05:53 ----A---- C:\Windows\system32\webcheck.dll 2014-11-14 21:05:53 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-11-14 21:05:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2014-11-14 21:05:51 ----A---- C:\Windows\SYSWOW64\hlink.dll 2014-11-14 21:05:51 ----A---- C:\Windows\system32\iedkcs32.dll 2014-11-14 21:05:50 ----A---- C:\Windows\SYSWOW64\msrating.dll 2014-11-14 21:05:50 ----A---- C:\Windows\system32\ieUnatt.exe 2014-11-14 21:05:50 ----A---- C:\Windows\system32\iesysprep.dll 2014-11-14 21:05:50 ----A---- C:\Windows\system32\iepeers.dll 2014-11-14 21:05:50 ----A---- C:\Windows\system32\ie4uinit.exe 2014-11-14 21:05:50 ----A---- C:\Windows\system32\hlink.dll 2014-11-14 21:05:49 ----A---- C:\Windows\SYSWOW64\inseng.dll 2014-11-14 21:05:49 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2014-11-14 21:05:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2014-11-14 21:05:49 ----A---- C:\Windows\SYSWOW64\iepeers.dll 2014-11-14 21:05:49 ----A---- C:\Windows\SYSWOW64\actxprxy.dll 2014-11-14 21:05:49 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-11-14 21:05:48 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll 2014-11-14 21:05:48 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2014-11-14 21:05:48 ----A---- C:\Windows\system32\mshtmled.dll 2014-11-14 21:05:48 ----A---- C:\Windows\system32\msfeedsbs.dll 2014-11-14 21:05:48 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-11-14 21:05:48 ----A---- C:\Windows\system32\inseng.dll 2014-11-14 21:05:47 ----A---- C:\Windows\SYSWOW64\occache.dll 2014-11-14 21:05:47 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2014-11-14 21:05:47 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll 2014-11-14 21:05:47 ----A---- C:\Windows\system32\jsproxy.dll 2014-11-14 21:05:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2014-11-14 21:05:46 ----A---- C:\Windows\SYSWOW64\iexpress.exe 2014-11-14 21:05:46 ----A---- C:\Windows\system32\occache.dll 2014-11-14 21:05:46 ----A---- C:\Windows\system32\msrating.dll 2014-11-14 21:05:46 ----A---- C:\Windows\system32\MshtmlDac.dll 2014-11-14 21:05:45 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2014-11-14 21:05:45 ----A---- C:\Windows\SYSWOW64\licmgr10.dll 2014-11-14 21:05:45 ----A---- C:\Windows\SYSWOW64\imgutil.dll 2014-11-14 21:05:45 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2014-11-14 21:05:45 ----A---- C:\Windows\system32\pngfilt.dll 2014-11-14 21:05:45 ----A---- C:\Windows\system32\licmgr10.dll 2014-11-14 21:05:45 ----A---- C:\Windows\system32\imgutil.dll 2014-11-14 21:05:44 ----A---- C:\Windows\SYSWOW64\wextract.exe 2014-11-14 21:05:44 ----A---- C:\Windows\SYSWOW64\url.dll 2014-11-14 21:05:44 ----A---- C:\Windows\SYSWOW64\pngfilt.dll 2014-11-14 21:05:44 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2014-11-14 21:05:44 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2014-11-14 21:05:44 ----A---- C:\Windows\system32\iernonce.dll 2014-11-14 21:05:43 ----A---- C:\Windows\system32\wextract.exe 2014-11-14 21:05:43 ----A---- C:\Windows\system32\url.dll 2014-11-14 21:05:43 ----A---- C:\Windows\system32\iesetup.dll 2014-11-14 21:05:43 ----A---- C:\Windows\system32\IEAdvpack.dll 2014-11-14 21:05:42 ----A---- C:\Windows\SYSWOW64\mshta.exe 2014-11-14 21:05:42 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe 2014-11-14 21:05:42 ----A---- C:\Windows\system32\mshta.exe 2014-11-14 21:05:42 ----A---- C:\Windows\system32\msfeedssync.exe 2014-11-14 21:05:42 ----A---- C:\Windows\system32\iexpress.exe 2014-11-12 19:21:14 ----A---- C:\Windows\system32\generaltel.dll 2014-11-12 19:21:14 ----A---- C:\Windows\system32\devinv.dll 2014-11-12 19:21:14 ----A---- C:\Windows\system32\aepic.dll 2014-11-12 19:21:14 ----A---- C:\Windows\system32\aepdu.dll 2014-11-12 19:21:14 ----A---- C:\Windows\system32\aeinv.dll 2014-11-12 19:19:28 ----A---- C:\Windows\system32\shell32.dll 2014-11-12 19:19:27 ----A---- C:\Windows\SYSWOW64\shell32.dll 2014-11-12 19:19:27 ----A---- C:\Windows\system32\ntoskrnl.exe 2014-11-12 19:19:23 ----A---- C:\Windows\system32\twinui.dll 2014-11-12 19:19:23 ----A---- C:\Windows\system32\SettingsHandlers.dll 2014-11-12 19:19:22 ----A---- C:\Windows\SYSWOW64\twinui.dll 2014-11-12 19:19:22 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll 2014-11-12 19:19:22 ----A---- C:\Windows\system32\mfmp4srcsnk.dll 2014-11-12 19:19:22 ----A---- C:\Windows\system32\MFMediaEngine.dll 2014-11-12 19:19:22 ----A---- C:\Windows\system32\localspl.dll 2014-11-12 19:19:22 ----A---- C:\Windows\system32\drivers\tcpip.sys 2014-11-12 19:19:21 ----AC---- C:\Windows\system32\drivers\USBSTOR.SYS 2014-11-12 19:19:21 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll 2014-11-12 19:19:21 ----A---- C:\Windows\SYSWOW64\puiobj.dll 2014-11-12 19:19:21 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll 2014-11-12 19:19:21 ----A---- C:\Windows\system32\WsmSvc.dll 2014-11-12 19:19:21 ----A---- C:\Windows\system32\win32spl.dll 2014-11-12 19:19:21 ----A---- C:\Windows\system32\puiobj.dll 2014-11-12 19:19:21 ----A---- C:\Windows\system32\drivers\netio.sys 2014-11-12 19:19:20 ----A---- C:\Windows\SYSWOW64\untfs.dll 2014-11-12 19:19:20 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll 2014-11-12 19:19:20 ----A---- C:\Windows\system32\untfs.dll 2014-11-12 19:19:20 ----A---- C:\Windows\system32\FXSCOMEX.dll 2014-11-12 19:19:20 ----A---- C:\Windows\system32\FXSAPI.dll 2014-11-12 19:19:20 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS 2014-11-12 19:18:51 ----A---- C:\Windows\SYSWOW64\winshfhc.dll 2014-11-12 19:18:51 ----A---- C:\Windows\SYSWOW64\user32.dll 2014-11-12 19:18:51 ----A---- C:\Windows\system32\winshfhc.dll 2014-11-12 19:18:51 ----A---- C:\Windows\system32\user32.dll 2014-11-12 19:18:51 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys 2014-11-12 19:18:51 ----A---- C:\Windows\system32\drivers\WdFilter.sys 2014-11-12 19:18:51 ----A---- C:\Windows\system32\drivers\WdBoot.sys 2014-11-12 19:17:43 ----A---- C:\Windows\SYSWOW64\msi.dll 2014-11-12 19:17:43 ----A---- C:\Windows\system32\msi.dll 2014-11-12 19:17:43 ----A---- C:\Windows\system32\authui.dll 2014-11-12 19:17:42 ----A---- C:\Windows\SYSWOW64\msihnd.dll 2014-11-12 19:17:42 ----A---- C:\Windows\SYSWOW64\authui.dll 2014-11-12 19:17:42 ----A---- C:\Windows\system32\msihnd.dll 2014-11-12 19:17:42 ----A---- C:\Windows\system32\consent.exe 2014-11-12 19:17:42 ----A---- C:\Windows\system32\appinfo.dll 2014-11-12 19:15:44 ----A---- C:\Windows\SYSWOW64\schannel.dll 2014-11-12 19:15:44 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll 2014-11-12 19:15:44 ----A---- C:\Windows\system32\schannel.dll 2014-11-12 19:15:44 ----A---- C:\Windows\system32\ncryptsslp.dll 2014-11-12 19:15:44 ----A---- C:\Windows\system32\dpapisrv.dll 2014-11-12 19:05:52 ----A---- C:\Windows\SYSWOW64\msaudite.dll 2014-11-12 19:05:52 ----A---- C:\Windows\SYSWOW64\certcli.dll 2014-11-12 19:05:52 ----A---- C:\Windows\SYSWOW64\adtschema.dll 2014-11-12 19:05:52 ----A---- C:\Windows\system32\rfxvmt.dll 2014-11-12 19:05:52 ----A---- C:\Windows\system32\rdpudd.dll 2014-11-12 19:05:52 ----A---- C:\Windows\system32\rdpcorets.dll 2014-11-12 19:05:52 ----A---- C:\Windows\system32\msaudite.dll 2014-11-12 19:05:52 ----A---- C:\Windows\system32\lsasrv.dll 2014-11-12 19:05:52 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys 2014-11-12 19:05:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2014-11-12 19:05:52 ----A---- C:\Windows\system32\drivers\cng.sys 2014-11-12 19:05:52 ----A---- C:\Windows\system32\certcli.dll 2014-11-12 19:05:52 ----A---- C:\Windows\system32\adtschema.dll 2014-11-12 19:03:36 ----A---- C:\Windows\system32\wuaueng.dll 2014-11-12 19:03:36 ----A---- C:\Windows\system32\wuapi.dll 2014-11-12 19:03:35 ----A---- C:\Windows\SYSWOW64\wuwebv.dll 2014-11-12 19:03:35 ----A---- C:\Windows\SYSWOW64\wups.dll 2014-11-12 19:03:35 ----A---- C:\Windows\SYSWOW64\wudriver.dll 2014-11-12 19:03:35 ----A---- C:\Windows\SYSWOW64\wuapp.exe 2014-11-12 19:03:35 ----A---- C:\Windows\SYSWOW64\wuapi.dll 2014-11-12 19:03:35 ----A---- C:\Windows\system32\wuwebv.dll 2014-11-12 19:03:35 ----A---- C:\Windows\system32\WUSettingsProvider.dll 2014-11-12 19:03:35 ----A---- C:\Windows\system32\wups2.dll 2014-11-12 19:03:35 ----A---- C:\Windows\system32\wups.dll 2014-11-12 19:03:35 ----A---- C:\Windows\system32\wudriver.dll 2014-11-12 19:03:35 ----A---- C:\Windows\system32\wucltux.dll 2014-11-12 19:03:35 ----A---- C:\Windows\system32\wuauclt.exe 2014-11-12 19:03:35 ----A---- C:\Windows\system32\wuapp.exe 2014-11-12 19:03:35 ----A---- C:\Windows\system32\wuaext.dll 2014-11-12 19:01:41 ----A---- C:\Windows\SYSWOW64\oleaut32.dll 2014-11-12 19:01:41 ----A---- C:\Windows\system32\oleaut32.dll 2014-11-12 18:50:21 ----A---- C:\Windows\SYSWOW64\msxml3.dll 2014-11-12 18:50:21 ----A---- C:\Windows\system32\msxml3.dll 2014-11-12 18:50:05 ----A---- C:\Windows\SYSWOW64\packager.dll 2014-11-12 18:50:05 ----A---- C:\Windows\system32\packager.dll 2014-11-12 18:50:03 ----A---- C:\Windows\system32\win32k.sys 2014-11-12 18:45:34 ----A---- C:\Windows\SYSWOW64\AudioSes.dll 2014-11-12 18:45:34 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll 2014-11-12 18:45:34 ----A---- C:\Windows\SYSWOW64\AudioEng.dll 2014-11-12 18:45:34 ----A---- C:\Windows\system32\EncDump.dll 2014-11-12 18:45:34 ----A---- C:\Windows\system32\audiosrv.dll 2014-11-12 18:45:34 ----A---- C:\Windows\system32\AudioSes.dll 2014-11-12 18:45:34 ----A---- C:\Windows\system32\AUDIOKSE.dll 2014-11-12 18:45:34 ----A---- C:\Windows\system32\AudioEng.dll 2014-11-12 18:45:34 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll 2014-11-12 18:45:34 ----A---- C:\Windows\system32\audiodg.exe ======List of files/folders modified in the last 1 month====== 2014-12-10 19:53:57 ----RD---- C:\Program Files 2014-12-10 19:52:46 ----D---- C:\Windows\Prefetch 2014-12-10 19:49:30 ----D---- C:\Windows\Temp 2014-12-10 19:47:16 ----D---- C:\Windows\system32\config 2014-12-10 19:42:00 ----D---- C:\ProgramData\Kaspersky Lab 2014-12-10 19:39:36 ----D---- C:\Windows\system32\sru 2014-12-09 18:31:24 ----SHD---- C:\System Volume Information 2014-12-09 18:04:22 ----D---- C:\Windows\AppReadiness 2014-12-09 17:57:26 ----HD---- C:\Program Files\WindowsApps 2014-12-07 22:05:11 ----D---- C:\Windows\WinSxS 2014-12-07 21:58:44 ----D---- C:\Windows\Microsoft.NET 2014-12-07 21:58:11 ----D---- C:\Windows\debug 2014-12-07 21:57:49 ----RSD---- C:\Windows\assembly 2014-12-07 21:36:04 ----D---- C:\Windows 2014-12-07 21:35:16 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt 2014-12-07 21:28:52 ----D---- C:\Program Files (x86)\Steam 2014-11-28 13:20:18 ----D---- C:\Windows\Inf 2014-11-28 09:47:36 ----RD---- C:\Windows\System32 2014-11-28 09:47:36 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-11-26 20:20:01 ----D---- C:\Windows\CbsTemp 2014-11-26 20:19:59 ----D---- C:\Windows\SysWOW64 2014-11-26 20:05:00 ----D---- C:\Windows\Tasks 2014-11-26 20:05:00 ----D---- C:\Windows\system32\Tasks 2014-11-21 22:06:18 ----SHD---- C:\Windows\Installer 2014-11-21 22:06:13 ----D---- C:\Windows\Hewlett-Packard 2014-11-21 22:06:01 ----D---- C:\SWSetup 2014-11-21 21:57:47 ----D---- C:\Program Files (x86)\CyberLink 2014-11-21 21:57:32 ----D---- C:\ProgramData\CyberLink 2014-11-21 21:48:26 ----D---- C:\Windows\SoftwareDistribution 2014-11-21 20:34:26 ----D---- C:\Program Files\Fotoservice 2014-11-21 20:17:05 ----D---- C:\Windows\system32\NDF 2014-11-21 20:04:46 ----RD---- C:\Program Files (x86) 2014-11-21 19:42:25 ----D---- C:\Windows\Logs 2014-11-21 09:12:28 ----D---- C:\ProgramData\regid.1991-06.com.microsoft 2014-11-21 09:11:04 ----D---- C:\Program Files\Microsoft Office 15 2014-11-20 21:51:37 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2014-11-14 23:00:56 ----HD---- C:\ProgramData 2014-11-14 23:00:55 ----HD---- C:\Windows\ELAMBKUP 2014-11-14 23:00:54 ----D---- C:\Windows\system32\drivers 2014-11-14 22:46:27 ----D---- C:\Windows\system32\catroot 2014-11-14 22:11:21 ----D---- C:\Windows\rescache 2014-11-14 22:09:34 ----D---- C:\Windows\system32\DriverStore 2014-11-14 21:54:04 ----D---- C:\Users\Jeroen\AppData\Roaming\CyberLink 2014-11-14 21:37:56 ----D---- C:\Windows\SYSWOW64\migration 2014-11-14 21:37:56 ----D---- C:\Windows\system32\migration 2014-11-14 21:37:56 ----D---- C:\Program Files (x86)\Internet Explorer 2014-11-14 21:37:55 ----D---- C:\Program Files\Internet Explorer 2014-11-14 21:34:46 ----D---- C:\Windows\SYSWOW64\config 2014-11-14 19:12:50 ----D---- C:\Windows\system32\LogFiles 2014-11-14 10:21:41 ----D---- C:\Windows\SYSWOW64\nl-NL 2014-11-14 10:21:40 ----D---- C:\Windows\system32\nl-NL 2014-11-14 10:21:39 ----SD---- C:\Windows\system32\CompatTel 2014-11-14 10:21:38 ----RD---- C:\Windows\ToastData 2014-11-14 10:21:36 ----RD---- C:\Windows\ImmersiveControlPanel 2014-11-14 10:21:36 ----D---- C:\Windows\apppatch 2014-11-14 10:21:34 ----D---- C:\Program Files\Windows Defender 2014-11-14 10:21:34 ----D---- C:\Program Files (x86)\Windows Defender 2014-11-14 10:19:46 ----D---- C:\Windows\system32\wbem 2014-11-14 10:18:51 ----D---- C:\Windows\system32\MRT 2014-11-14 10:15:42 ----A---- C:\Windows\system32\MRT.exe 2014-11-12 18:31:00 ----D---- C:\Windows\system32\catroot2 2014-11-12 17:51:35 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 CSCrySec;InfoWatch Encrypt Sector Library driver; C:\Windows\system32\DRIVERS\CSCrySec.sys [2013-09-25 98504] R0 hpdskflt;@oem21.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2013-07-23 30520] R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-16 644968] R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2014-04-02 458336] R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712] R1 CSVirtualDiskDrv;InfoWatch Virtual Disk driver; C:\Windows\system32\DRIVERS\CSVirtualDiskDrv.sys [2013-09-25 67784] R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2014-06-13 627264] R1 KLIM6;@oem26.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2014-06-13 30304] R1 klwfp;klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [2013-11-28 50448] R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2013-11-28 178448] R3 Accelerometer;@oem21.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2013-07-23 43320] R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2014-01-31 81920] R3 clwvd;@oem23.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2013-03-05 41408] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-10-08 4187648] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-11-06 3707864] R3 iwdbus;@oem15.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2013-10-03 27032] R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2013-11-28 29280] R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2013-11-28 29280] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-10-01 25816] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-12-10 129752] R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-10-01 64216] R3 MEIx64;@oem7.inf,%TEE_SvcDesc%;Intel® Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-04 99288] R3 netr28x;@oem27.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-11-26 2483376] R3 rtbth;@oem24.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\Windows\System32\drivers\rtbth.sys [2013-12-02 1204424] R3 RTL8168;@oem11.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-08-15 830680] R3 RTSPER;@oem9.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-08-22 429272] R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-07-26 34544] R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-07-26 524016] R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224] S0 klelam;klelam; C:\Windows\system32\DRIVERS\klelam.sys [2013-11-28 29792] S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\Windows\System32\drivers\BthEnum.sys [2013-08-22 53248] S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\BthLEEnum.sys [2013-12-04 226304] S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272] S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2014-07-24 1200640] S3 intaud_WaveExtensible;@oem14.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-10-03 39320] S3 IntcDAud;@oem12.inf,%IntcDAud.SvcDesc%;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-10-08 449528] S3 NuidFltr;@oem28.inf,%NuidFltr.SvcDesc%;NUID filter driver; C:\Windows\System32\drivers\NuidFltr.sys [2007-08-31 20392] S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2014-01-27 167424] S3 RSUSBCCID;@oem33.inf,%USBCCID.DeviceDesc%;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys [2009-08-10 50176] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [] S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2013-07-26 30448] S3 USBAAPL64;@oem29.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2013-03-18 54784] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2013-08-22 37768] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336] R2 AVP;Kaspersky Anti-Virus-service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [2013-11-28 356128] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] R2 Cachedrv server; HP SimplePass Cachedrv Service; C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe [2013-10-14 109568] R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-10-30 2443960] R2 CSObjectsSrv;CryptoStorage control service; C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [2013-09-25 818888] R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-12-16 92160] R2 hpsrv;@oem21.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320] R2 HPWMISVC;HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [2013-12-25 1039160] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-04-24 15720] R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696] R2 Intel® ME Service;Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2013-09-04 131544] R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2013-09-04 390616] R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-10-01 1871160] R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-10-01 968504] R2 omniserv; HP SimplePass Service; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [2013-10-14 87552] R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-10-17 289496] R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-23 43696] R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-09-10 1129760] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-05-26 641352] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-26 267440] S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-08-10 50784] S3 cphs;Intel® Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-10-25 279024] S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-03-11 136120] S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-10 114288] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-02-01 150600] S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728] -----------------EOF-----------------

Hallo, Mijn internet werkt de laatste tijd zeer traag! Ik heb al enkele zaken zelf geprobeerd, zoals stekker van modem uitrekken, cookies verwijderen, telemeter controleren, computer scannen (ccleanr + Malwarebytes). Maar helaas zonder resultaat. Ik gebruik mozzilla firefox. Windows 8.. Aangezien ik de computer nog geen jaar heb vind ik het zeer raar. Kan iemand mij hiermee helpen aub? Alvast hartelijk bedankt! Groetjes

Ok bedankt! Ken jij een betrouwbare website waar je deze kan bestellen voor Medion ? Wil dit dan zeggen dat ik heel mijn pc terug moet installeren als ik de harde schijf vervang?

hallo hierbij de screenshot van de error scan. Het allereerste blok is alleen rood.

Ik heb zojuist de test gedaan via hdtune. Dit is het resultaat. Kunnen jullie zeggen of het hier inderdaad aan de harddisk ligt? Zoja hoe kan dit probleem opgelost worden? superbedankt al voor de hulp!! - - - Updated - - - oei precies iets verkeerd gebeurd. PC Helpforum moderator bericht: bij het plaatsen van je afbeelding was iets fout gelopen, dit is bij deze aangepast

Hallo allemaal, Ik heb problemen met mijn beeldscherm. Telkens ik mijn computer wil opstarten als die "koud" staat duurt het vaak een een half uur voor ik beeld krijg. Soms kan het zelfs nog langer duren. Daarna werkt alles terug perfect. Wat zou hier de oorzaak van zijn? beeldscherm is van het merk fijutsji siemens en de computerbak van medion. Kan ik dit testen of dit aan het beeldscherm zelf ligt of iets aan harde schijf? Alvast bedankt voor de tips! Groetjes