jenny1987

hallo bedankt alvast voor de hulp ik krijg het niet in een folder dus zal het geheel hier copieren,sorry hiervoor Logfile of random's system information tool 1.09 (written by random/random) Run by cal at 2014-04-11 14:12:54 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 1287 GB (91%) free of 1418 GB Total RAM: 4079 MB (42% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:12:57, on 11-4-2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.16521) Boot mode: Normal Running processes: C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\ModLEDKey.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Users\cal\AppData\Local\PirritSuggestor\PirritDesktop.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\Winamp\winampa.exe C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\CNYHKEY.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe C:\Program Files (x86)\Battle.net\Battle.net.4403\Battle.net.exe C:\Users\cal\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\cal\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\cal\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\cal\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files\trend micro\cal.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=http://127.0.0.1:9880 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O1 - Hosts: 216.239.32.20 google.com Google O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [LaunchHPOSIAPP] C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exe O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe" O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: CurseClientStartup.ccip O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - MSN Games - Free Online Games O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - MSN Games - Free Online Games O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - MSN Games - Free Online Games O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 15817 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe winlogon.exe C:\Windows\system32\svchost.exe -k DcomLaunch "C:\Windows\system32\nvvsvc.exe" "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe" C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs "C:\Program Files\IDT\WDM\STacSV64.exe" C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files\IDT\WDM\AESTSr64.exe" C:\Windows\SysWOW64\ezSharedSvcHost.exe "C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe" "C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe" "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe" "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" "C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe" C:\Windows\system32\nvvsvc.exe -session -first "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp taskeng.exe {AF3DB6DD-ABCF-4C41-91DF-1C78C24ABEB1} \??\C:\Windows\system32\conhost.exe "1407882070-1444132168-1106952573880263873448034494-20718769451852854952-835331212 "taskhost.exe" "C:\Windows\system32\Dwm.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\ModLEDKey.exe" "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService C:\Windows\Explorer.EXE C:\Users\cal\AppData\Local\PirritSuggestor\PirritService.exe "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe" "C:\Program Files (x86)\WinRST\WinRST.exe" "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe" "C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:2856 "C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE" "C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1 C:/Users/cal/AppData/Local/PirritSuggestor\PirritDesktop.exe C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-23ff104b-df72-4289-9d3c-17725ec82251 -SystemEventPortName:HostProcess-e9fd3f6d-7bd3-4fc7-9d22-b185860383bc -IoCancelEventPortName:HostProcess-83e861ae-0e14-4ed6-8120-ca298adfbd8d -NonStateChangingEventPortName:HostProcess-8be516f1-66ff-40e6-9ca0-296caabad22b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:4a2457f6-4c38-47fb-935a-133f82901532 -DeviceGroupId:WpdFsGroup "C:\Program Files\IDT\WDM\beats64.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe" "C:\Program Files\IDT\WDM\sttray64.exe" "C:\Program Files (x86)\Winamp\winampa.exe" "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\CNYHKEY.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" "C:\Program Files (x86)\Skype\Phone\Skype.exe" "C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe" --locale=enGB --session=1623895686825419934 \??\C:\Windows\system32\conhost.exe "1327228795-630255128-248482705398883040102227323611511088995928470201859927572 "C:\Program Files (x86)\Battle.net\Battle.net.4403\Battle.net.exe" "C:\Users\cal\AppData\Local\Google\Chrome\Application\chrome.exe" "C:\Users\cal\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4916.0.324742473\804923813" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,27,33 --gpu-vendor-id=0x10de --gpu-device-id=0x0de5 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.3489 --ignored=" --type=renderer " /prefetch:822062411 "C:\Users\cal\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4916.4.158857381\282016596" --ppapi-flash-args --lang=nl --ignored=" --type=renderer " /prefetch:-632637702 "C:\Users\cal\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials=AutocompleteDynamicTrial_2/NavSuggestUnification_A4_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/OmniboxBundledExperimentV1/StandardR2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_92/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/ --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4916.6.170145149\674875537" /prefetch:673131151 C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} "C:\Users\cal\Downloads\RSITx64.exe" ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-430754726-3231561420-1812105756-1000Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-430754726-3231561420-1812105756-1000UA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-30 553384] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-04-01 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-30 210856] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-02-19 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-04-01 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-02-19 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-04-01 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-04-01 194504] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "BeatsOSDApp"=C:\Program Files\IDT\WDM\beats64.exe [2011-08-24 37888] "hpsysdrv"=c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [2008-11-20 62768] "NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-02-05 2234144] "ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-02-05 1179576] "SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-04-24 1425408] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "LaunchHPOSIAPP"=C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exe [2009-04-04 385024] "Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2011-02-10 61112] "PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-02-01 656920] "WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2011-07-11 74752] "Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2012-12-10 338864] C:\Users\cal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup CurseClientStartup.ccip [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2011-08-11 52920] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableLockWorkstation"=0 "DisableTaskMgr"=0 "DisableChangePassword"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "HideFastUserSwitching"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 "EnableShellExecuteHooks"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "wave5"=wdmaud.drv "midi5"=wdmaud.drv "mixer5"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-04-11 14:07:21 ----D---- C:\Users\cal\AppData\Roaming\Apple Computer 2014-04-11 14:02:49 ----D---- C:\Program Files\trend micro 2014-04-11 14:02:47 ----D---- C:\rsit 2014-04-11 13:53:25 ----D---- C:\ProgramData\IObit 2014-04-11 13:53:24 ----D---- C:\Users\cal\AppData\Roaming\IObit 2014-04-11 13:53:21 ----D---- C:\Program Files (x86)\IObit 2014-04-11 13:04:38 ----D---- C:\Program Files\CCleaner 2014-04-11 12:54:00 ----A---- C:\DelFix.txt 2014-04-11 12:43:34 ----A---- C:\Windows\system32\drivers\xdkl.sys 2014-04-11 12:34:49 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys 2014-04-11 12:34:33 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-04-11 12:34:33 ----A---- C:\Windows\system32\drivers\mwac.sys 2014-04-11 12:34:33 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys 2014-04-11 12:34:33 ----A---- C:\Windows\system32\drivers\mbam.sys 2014-04-11 09:03:03 ----D---- C:\Windows\Minidump 2014-04-11 00:26:15 ----D---- C:\ProgramData\Spybot - Search & Destroy 2014-04-11 00:26:12 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2 2014-04-11 00:01:50 ----D---- C:\Program Files (x86)\SmartPopupBlocker 2014-04-11 00:00:34 ----D---- C:\Program Files (x86)\MyPC Backup 2014-04-10 19:20:24 ----D---- C:\Users\cal\AppData\Roaming\Avira 2014-04-09 01:24:52 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2014-04-09 01:24:52 ----A---- C:\Windows\system32\mshtml.dll 2014-04-09 01:24:47 ----A---- C:\Windows\SYSWOW64\iologmsg.dll 2014-04-09 01:24:47 ----A---- C:\Windows\system32\iologmsg.dll 2014-04-09 01:24:47 ----A---- C:\Windows\system32\drivers\storport.sys 2014-04-09 01:24:47 ----A---- C:\Windows\system32\drivers\msiscsi.sys 2014-04-09 01:24:47 ----A---- C:\Windows\system32\drivers\Diskdump.sys 2014-04-09 01:24:46 ----A---- C:\Windows\SYSWOW64\kernel32.dll 2014-04-09 01:24:46 ----A---- C:\Windows\system32\wow64.dll 2014-04-09 01:24:46 ----A---- C:\Windows\system32\kernel32.dll 2014-04-09 01:24:45 ----A---- C:\Windows\SYSWOW64\wow32.dll 2014-04-09 01:24:45 ----A---- C:\Windows\SYSWOW64\user.exe 2014-04-09 01:24:45 ----A---- C:\Windows\SYSWOW64\setup16.exe 2014-04-09 01:24:45 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2014-04-09 01:24:45 ----A---- C:\Windows\SYSWOW64\instnm.exe 2014-04-09 01:24:45 ----A---- C:\Windows\system32\wow64win.dll 2014-04-09 01:24:45 ----A---- C:\Windows\system32\wow64cpu.dll 2014-04-09 01:24:45 ----A---- C:\Windows\system32\ntvdm64.dll 2014-04-09 01:24:45 ----A---- C:\Windows\system32\drivers\ntfs.sys 2014-04-09 00:12:48 ----A---- C:\Windows\SYSWOW64\uxtuneup.dll 2014-04-09 00:12:48 ----A---- C:\Windows\system32\uxtuneup.dll 2014-04-09 00:12:03 ----A---- C:\Windows\system32\TURegOpt.exe 2014-04-09 00:12:01 ----A---- C:\Windows\system32\authuitu.dll 2014-04-09 00:12:00 ----A---- C:\Windows\SYSWOW64\authuitu.dll 2014-04-09 00:10:43 ----D---- C:\Users\cal\AppData\Roaming\AVG 2014-04-09 00:09:56 ----D---- C:\ProgramData\AVG 2014-04-09 00:09:42 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} 2014-04-09 00:04:06 ----D---- C:\Users\cal\AppData\Roaming\TuneUp Software 2014-04-09 00:02:32 ----D---- C:\Program Files (x86)\AVG 2014-04-09 00:00:16 ----HD---- C:\ProgramData\Common Files 2014-04-08 23:35:14 ----D---- C:\Program Files (x86)\PC Speed Up 2014-04-08 23:34:46 ----D---- C:\Program Files (x86)\WinRST 2014-03-30 02:36:33 ----A---- C:\Windows\SYSWOW64\sho1AE3.tmp 2014-03-16 17:20:39 ----D---- C:\Users\cal\AppData\Roaming\Belastingdienst 2014-03-13 12:22:25 ----A---- C:\tracert.txt 2014-03-13 12:13:39 ----A---- C:\pathping.txt 2014-03-12 09:11:37 ----A---- C:\Windows\SYSWOW64\wer.dll 2014-03-12 09:11:37 ----A---- C:\Windows\system32\wwansvc.dll 2014-03-12 09:11:37 ----A---- C:\Windows\system32\wer.dll 2014-03-12 09:11:36 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2014-03-12 09:11:36 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2014-03-12 09:11:36 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2014-03-12 09:11:36 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2014-03-12 09:11:36 ----A---- C:\Windows\system32\win32k.sys 2014-03-12 09:11:36 ----A---- C:\Windows\system32\iertutil.dll 2014-03-12 09:11:36 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-03-12 09:11:35 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2014-03-12 09:11:34 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2014-03-12 09:11:34 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2014-03-12 09:11:34 ----A---- C:\Windows\SYSWOW64\ieui.dll 2014-03-12 09:11:34 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2014-03-12 09:11:34 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2014-03-12 09:11:34 ----A---- C:\Windows\system32\urlmon.dll 2014-03-12 09:11:34 ----A---- C:\Windows\system32\msfeeds.dll 2014-03-12 09:11:34 ----A---- C:\Windows\system32\iernonce.dll 2014-03-12 09:11:34 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-03-12 09:11:33 ----A---- C:\Windows\system32\iesetup.dll 2014-03-12 09:11:33 ----A---- C:\Windows\system32\ie4uinit.exe 2014-03-12 09:11:32 ----A---- C:\Windows\SYSWOW64\wininet.dll 2014-03-12 09:11:32 ----A---- C:\Windows\SYSWOW64\msrating.dll 2014-03-12 09:11:32 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2014-03-12 09:11:32 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2014-03-12 09:11:32 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2014-03-12 09:11:32 ----A---- C:\Windows\system32\jsproxy.dll 2014-03-12 09:11:32 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-03-12 09:11:31 ----A---- C:\Windows\system32\jscript9diag.dll 2014-03-12 09:11:31 ----A---- C:\Windows\system32\jscript9.dll 2014-03-12 09:11:31 ----A---- C:\Windows\system32\ieUnatt.exe 2014-03-12 09:11:31 ----A---- C:\Windows\system32\ieui.dll 2014-03-12 09:11:31 ----A---- C:\Windows\system32\ieframe.dll 2014-03-12 09:11:30 ----A---- C:\Windows\system32\wininet.dll 2014-03-12 09:11:30 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-03-12 09:11:30 ----A---- C:\Windows\system32\msrating.dll 2014-03-12 09:11:30 ----A---- C:\Windows\system32\ieapfltr.dll 2014-03-12 09:11:02 ----A---- C:\Windows\SYSWOW64\qedit.dll 2014-03-12 09:11:02 ----A---- C:\Windows\system32\qedit.dll 2014-03-12 09:11:01 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll 2014-03-12 09:11:01 ----A---- C:\Windows\system32\WindowsCodecs.dll ======List of files/folders modified in the last 1 month====== 2014-04-11 14:11:21 ----D---- C:\Users\cal\AppData\Roaming\Skype 2014-04-11 14:07:21 ----D---- C:\Windows\system32\Tasks 2014-04-11 14:02:49 ----RD---- C:\Program Files 2014-04-11 14:01:15 ----D---- C:\Windows\Temp 2014-04-11 13:53:25 ----HD---- C:\ProgramData 2014-04-11 13:53:21 ----RD---- C:\Program Files (x86) 2014-04-11 13:05:52 ----D---- C:\Users\cal\AppData\Roaming\TS3Client 2014-04-11 13:05:51 ----D---- C:\Windows\inf 2014-04-11 13:05:51 ----D---- C:\Windows\debug 2014-04-11 13:05:51 ----AD---- C:\Windows 2014-04-11 12:54:49 ----SHD---- C:\System Volume Information 2014-04-11 12:43:34 ----D---- C:\Windows\system32\drivers 2014-04-11 12:43:34 ----D---- C:\Windows\PolicyDefinitions 2014-04-11 12:43:27 ----D---- C:\Windows\System32 2014-04-11 12:34:33 ----D---- C:\ProgramData\Malwarebytes 2014-04-11 12:27:07 ----D---- C:\Windows\system32\config 2014-04-11 12:23:30 ----D---- C:\Windows\Prefetch 2014-04-11 12:17:31 ----D---- C:\ProgramData\Trymedia 2014-04-11 12:16:58 ----SHD---- C:\Windows\Installer 2014-04-11 12:16:58 ----HD---- C:\Config.Msi 2014-04-11 12:16:12 ----AD---- C:\Windows\SysWOW64 2014-04-11 12:15:19 ----A---- C:\Windows\SYSWOW64\log.txt 2014-04-11 12:13:19 ----D---- C:\ProgramData\PDFC 2014-04-11 12:11:38 ----D---- C:\ProgramData\NVIDIA 2014-04-11 10:39:07 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-04-11 10:12:25 ----D---- C:\Program Files (x86)\Hearthstone 2014-04-11 10:11:20 ----D---- C:\Program Files (x86)\Battle.net 2014-04-11 08:35:23 ----D---- C:\Windows\Tasks 2014-04-11 08:35:23 ----D---- C:\Windows\system32\wfp 2014-04-11 08:35:21 ----D---- C:\Windows\system32\wbem 2014-04-11 08:34:39 ----D---- C:\Windows\system32\DriverStore 2014-04-11 08:34:39 ----D---- C:\Windows\system32\catroot2 2014-04-11 08:34:34 ----D---- C:\Windows\AppCompat 2014-04-11 08:34:33 ----D---- C:\Users\cal\AppData\Roaming\Ventrilo 2014-04-11 08:34:33 ----D---- C:\Users\cal\AppData\Roaming\QuickScan 2014-04-11 08:34:33 ----D---- C:\Users\cal\AppData\Roaming\Battle.net 2014-04-11 08:34:24 ----RD---- C:\Program Files (x86)\Skype 2014-04-11 08:34:24 ----D---- C:\Program Files (x86)\TeamSpeak 3 Client 2014-04-11 08:34:04 ----D---- C:\Windows\registration 2014-04-11 08:33:55 ----D---- C:\Windows\system32\catroot 2014-04-11 08:32:27 ----SD---- C:\ProgramData\Microsoft 2014-04-10 19:19:21 ----D---- C:\ProgramData\Avira 2014-04-10 19:19:21 ----D---- C:\Program Files (x86)\Avira 2014-04-09 03:57:20 ----D---- C:\Windows\rescache 2014-04-09 03:21:24 ----D---- C:\Windows\winsxs 2014-04-09 03:18:15 ----D---- C:\Windows\SYSWOW64\nl-NL 2014-04-09 03:18:15 ----D---- C:\Windows\system32\nl-NL 2014-04-09 03:18:15 ----D---- C:\Windows\AppPatch 2014-04-09 03:02:53 ----D---- C:\Windows\system32\MRT 2014-04-09 03:01:03 ----A---- C:\Windows\system32\MRT.exe 2014-04-09 00:43:05 ----D---- C:\Program Files (x86)\World of Warcraft Beta 2014-04-09 00:17:56 ----D---- C:\ProgramData\{E91883C8-8CDC-46A4-A45F-CB40EB82ED60} 2014-04-09 00:17:56 ----D---- C:\ProgramData\{6CDCEBFA-D5FA-4ED0-A11F-AC1F8BD76DF2} 2014-04-06 18:43:12 ----D---- C:\Program Files (x86)\WTFast 2014-04-03 10:00:52 ----D---- C:\Program Files (x86)\World of Warcraft 2014-03-28 19:24:16 ----D---- C:\Users\cal\AppData\Roaming\SoftGrid Client 2014-03-28 08:36:56 ----D---- C:\Windows\system32\wdi 2014-03-12 15:27:23 ----D---- C:\Program Files\Internet Explorer 2014-03-12 15:27:23 ----D---- C:\Program Files (x86)\Internet Explorer 2014-03-12 15:27:17 ----D---- C:\Program Files\Microsoft Silverlight 2014-03-12 15:27:16 ----D---- C:\Program Files (x86)\Microsoft Silverlight ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStor;Intel RAID Controller; C:\Windows\system32\drivers\iaStor.sys [2010-11-05 438808] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-04-03 25816] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-04-11 119512] R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-04-03 63192] R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\drivers\HECIx64.sys [2010-10-19 56344] R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2012-12-06 2350176] R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408] R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-27 39200] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-12-28 412776] R3 rzudd;Razer Mouse Driver; C:\Windows\system32\DRIVERS\rzudd.sys [2012-11-07 113664] R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144] R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576] R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840] R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208] R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10305; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-04-24 536576] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2014-02-10 14112] R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S0 cnljyo;cnljyo; C:\Windows\System32\drivers\xdkl.sys [2014-04-11 79064] S3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2; C:\Windows\system32\DRIVERS\aabed2.sys [2008-03-20 28672] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 48488] S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] S3 usb_rndisx;USB RNDIS-adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600] R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504] R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232] R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496] R2 HPClientSvc;HP Client Services; C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168] R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-01-26 92216] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2011-02-01 326168] R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-04-03 1809720] R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-04-03 857912] R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-02-05 1593632] R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-02-05 16941856] R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-02-08 923936] R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448] R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944] R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2012-04-24 318464] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-02-08 411936] R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2014-03-31 2183992] R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-02-01 2656280] R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 27136] R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] S2 gupdate;Google Updateservice (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-09-05 136176] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-11 257928] S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-09-05 136176] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-15 194032] S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-01-26 791608] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-01 111616] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-07 1255736] S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------

hallo sinds 2/3 dagen heb ik last van allerlei reclames die zomaar opduiken,in chrome heb ik pop up blokkeren aanstaan,maar blijf overal irritante reclames houden. verder had ik mijn virus scan Avira vervangen voor AVG. Ik heb onder tussen AVG eraf gegooit omdat ik dacht dat het daar mischien door kwam.Ik heb nog wel AVG tune up erop staan en krijg dit met geen mogelijkheid verwijderd. Als ik het probeer te verwijderen krijg ik de melding dat ik rtl120.bpl mis. Geen idee hoe of wat dat is. Ik heb met malware bites gescant maar kan niks vinden wat kan ik nog meer doen? groetjes Jenny