Ga naar inhoud

Welkom op PC Helpforum!
PC Helpforum helpt GRATIS computergebruikers sinds 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!


    Aanbevolen berichten


    Voer eens het volgende uit zodat we een overzicht krijgen van alle processen en programma's die mee opstarten.

    Ga via Start > Alle programma's > Bureau-accessoires en rechtsklik op de opdrachtprompt en

    kies voor Als administrator uitvoeren.

    Typ in de opdrachtprompt tasklist /svc >C:\tasklist.txt en druk op Enter

    Ga naar de root van je C-schijf waar je het tekst bestand tasklist.txt terug vind en plaats de inhoud in je volgende bericht.

    Download CCleaner. (Als je het nog niet hebt)

    Installeer het (Als je niet wil dat Google Chrome op je pc als standaard webbrowser wordt geïnstalleerd, moet je de 2 vinkjes wegdoen !!!) en start CCleaner op.

    Klik in de linkse kolom op "Gereedschap". Klik achtereenvolgens op "Opstarten".

    Klik vervolgens rechtsonder in het programmavenster op "Opslaan als tekstdocument..."

    Browse naar de door jou gewenste locatie en klik op "Opslaan"

    Voeg dit tekstbestand toe in je volgende bericht ;-)

    Deel dit bericht


    Link naar bericht
    Delen op andere sites
  • Topicstarter
  •    0

    al bedankt voor het antwoord.

    hierbij de bestanden

    Imagenaam Proces-i Services

    ========================= ======== ============================================

    System Idle Process 0 n.v.t.

    System 4 n.v.t.

    smss.exe 580 n.v.t.

    csrss.exe 780 n.v.t.

    csrss.exe 860 n.v.t.

    wininit.exe 868 n.v.t.

    winlogon.exe 916 n.v.t.

    services.exe 964 n.v.t.

    lsass.exe 980 KeyIso, SamSs, VaultSvc

    lsm.exe 996 n.v.t.

    svchost.exe 616 DcomLaunch, PlugPlay, Power

    TrueSuiteService.exe 976 FPLService

    svchost.exe 1056 RpcEptMapper, RpcSs

    atiesrxx.exe 1168 AMD External Events Utility

    svchost.exe 1224 AudioSrv, Dhcp, eventlog,

    HomeGroupProvider, lmhosts, wscsvc

    svchost.exe 1264 AudioEndpointBuilder, HomeGroupListener,

    IPBusEnum, Netman, PcaSvc, SysMain, TrkWks,

    UxSms, Wlansvc, WPDBusEnum, wudfsvc

    svchost.exe 1288 EventSystem, fdPHost, FontCache, netprofm,

    nsi, WdiServiceHost, WinHttpAutoProxySvc

    svchost.exe 1316 AeLookupSvc, Appinfo, AppMgmt, BITS,

    Browser, EapHost, IKEEXT, iphlpsvc,

    LanmanServer, MMCSS, ProfSvc, Schedule,

    SENS, ShellHWDetection, Themes, Winmgmt,

    wuauserv

    stacsv64.exe 1376 STacSV

    svchost.exe 1524 gpsvc

    DisplayLinkManager.exe 1744 DisplayLinkService

    atieclxx.exe 1856 n.v.t.

    DisplayLinkUserAgent.exe 2012 n.v.t.

    svchost.exe 1568 CryptSvc, Dnscache, LanmanWorkstation,

    NlaSvc

    svchost.exe 1816 BFE, DPS, MpsSvc, WwanSvc

    spoolsv.exe 2124 Spooler

    coreServiceShell.exe 2420 Amsp

    uiWatchDog.exe 2620 n.v.t.

    armsvc.exe 2628 AdobeARMservice

    conhost.exe 2640 n.v.t.

    AESTSr64.exe 2672 AESTFilters

    coreFrameworkHost.exe 2716 n.v.t.

    conhost.exe 2728 n.v.t.

    almsrv64x.exe 2764 almservice

    AppleMobileDeviceService. 2792 Apple Mobile Device

    Connect.Service.ContentSe 2828 Autodesk Content Service

    mDNSResponder.exe 2960 Bonjour Service

    svchost.exe 2988 FDResPub, SSDPSRV, upnphost, wcncsvc

    FreemakeUtilsService.exe 3048 Freemake Improver

    taskhost.exe 2492 n.v.t.

    DisplayLinkUI.exe 3204 n.v.t.

    dwm.exe 3288 n.v.t.

    explorer.exe 3312 n.v.t.

    GoogleCrashHandler.exe 3476 n.v.t.

    GoogleCrashHandler64.exe 3640 n.v.t.

    hasplms.exe 3700 hasplms

    HPClientServices.exe 3824 HPClientSvc

    jhi_service.exe 3848 jhi_service

    mbamscheduler.exe 3916 MBAMScheduler

    mbamservice.exe 3944 MBAMService

    mitsijm.exe 3972 mitsijm2012

    NETGEARGenieDaemon64.exe 4048 NETGEARGenieDaemon

    NIHardwareService.exe 3492 NIHardwareService

    pdfsvc.exe 1944 pdfcDispatcher

    PnkBstrA.exe 2460 PnkBstrA

    svchost.exe 3776 RemoteRegistry

    s7hspsvx.exe 3232 s7hspsvx

    s7oiehsx64.exe 4112 s7oiehsx64

    S7TraceService64x.exe 4140 S7TraceServiceX

    svchost.exe 4256 stisvc

    TeamViewer_Service.exe 4348 TeamViewer8

    s7epasrv64x.exe 4404 n.v.t.

    pniomgr.exe 4420 n.v.t.

    conhost.exe 4432 n.v.t.

    pniopcac.exe 4480 n.v.t.

    VirtualRouterService.exe 4512 Virtual Router

    WLIDSVC.EXE 4564 wlidsvc

    VmbService.exe 4784 VmbService

    WLIDSVCM.EXE 4804 n.v.t.

    WmiPrvSE.exe 5444 n.v.t.

    SearchIndexer.exe 5908 WSearch

    WUDFHost.exe 5624 n.v.t.

    beats64.exe 6716 n.v.t.

    hpsysdrv.exe 6744 n.v.t.

    sttray64.exe 6756 n.v.t.

    DTShellHlp.exe 6764 n.v.t.

    SetPoint.exe 6800 n.v.t.

    uiSeAgnt.exe 6876 n.v.t.

    HydraGrd.exe 7032 n.v.t.

    HydraDM.exe 7080 n.v.t.

    HydraDM64.exe 7120 n.v.t.

    KHALMNPR.exe 7136 n.v.t.

    Grid64.exe 7160 n.v.t.

    HydraMD.exe 6656 n.v.t.

    Dropbox.exe 7244 n.v.t.

    hpwuschd2.exe 7560 n.v.t.

    wmpnetwk.exe 7620 WMPNetworkSvc

    HydraMD64.exe 7664 n.v.t.

    iTunesHelper.exe 7864 n.v.t.

    jusched.exe 7912 n.v.t.

    acrotray.exe 7960 n.v.t.

    S7ubTstx.exe 7988 n.v.t.

    iPodService.exe 7324 iPod Service

    S7ubtoox.exe 6496 n.v.t.

    DiscSoftBusService.exe 6484 Disc Soft Bus Service

    MOM.exe 8136 n.v.t.

    dbsrv9.exe 8036 n.v.t.

    CCC.exe 1472 n.v.t.

    svchost.exe 5988 p2pimsvc, p2psvc, PNRPsvc

    HPSA_Service.exe 8948 HP Support Assistant Service

    dllhost.exe 7512 n.v.t.

    LMS.exe 9444 LMS

    UNS.exe 6116 UNS

    wuauclt.exe 2928 n.v.t.

    AAM Updates Notifier.exe 6320 n.v.t.

    pniopcac.exe 10824 n.v.t.

    taskmgr.exe 13408 n.v.t.

    taskmgr.exe 11424 n.v.t.

    PresentationFontCache.exe 12232 FontCache3.0.0.0

    TouchControl.exe 13896 n.v.t.

    BioMonitor.exe 6060 n.v.t.

    unsecapp.exe 11996 n.v.t.

    dllhost.exe 11764 COMSysApp

    msdtc.exe 9928 MSDTC

    prevhost.exe 8472 n.v.t.

    netsession_win.exe 3132 n.v.t.

    netsession_win.exe 12892 n.v.t.

    audiodg.exe 9456 n.v.t.

    chrome.exe 12572 n.v.t.

    chrome.exe 13252 n.v.t.

    chrome.exe 7920 n.v.t.

    chrome.exe 12316 n.v.t.

    chrome.exe 15116 n.v.t.

    chrome.exe 8956 n.v.t.

    chrome.exe 8300 n.v.t.

    conhost.exe 11396 n.v.t.

    ToolbarNativeMsgHost.exe 13924 n.v.t.

    chrome.exe 11680 n.v.t.

    chrome.exe 7364 n.v.t.

    dllhost.exe 13272 n.v.t.

    cmd.exe 9844 n.v.t.

    conhost.exe 1544 n.v.t.

    tasklist.exe 11752 n.v.t.

    Ja HKCU:Run Akamai NetSession Interface Akamai Technologies, Inc. "C:\Users\Ruben\AppData\Local\Akamai\netsession_win.exe"

    Ja HKCU:Run ApplePhotoStreams Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

    Nee HKCU:Run DAEMON Tools Lite "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

    Ja HKCU:Run DAEMON Tools Pro Agent DT Soft Ltd "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun

    Ja HKCU:Run DAEMON Tools Ultra Agent Disc Soft Ltd "C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe" -autorun

    Nee HKCU:Run Google Update Google Inc. "C:\Users\Ruben\AppData\Local\Google\Update\GoogleUpdate.exe" /c

    Ja HKCU:Run Grid "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraGrd.exe"

    Ja HKCU:Run HydraVisionDesktopManager AMD "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"

    Ja HKCU:Run HydraVisionMDEngine AMD "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe"

    Ja HKCU:Run iCloudServices Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

    Ja HKCU:Run Itibiti.exe C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe

    Ja HKCU:Run NETGEARGenie NETGEAR Inc. "C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe" -mini -redirect

    Ja HKCU:Run Raptr Raptr, Inc C:\PROGRA~2\Raptr\raptrstub.exe --startup

    Nee HKCU:Run Skype Skype Technologies S.A. "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

    Nee HKCU:Run Steam Valve Corporation "C:\Program Files (x86)\Steam\Steam.exe" -silent

    Ja HKCU:Run uTorrent BitTorrent Inc. "C:\Users\Ruben\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

    Ja HKLM:Run Acrobat Assistant 8.0 Adobe Systems Inc. "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"

    Ja HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

    Ja HKLM:Run AdobeAAMUpdater-1.0 Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

    Nee HKLM:Run Aeria Ignite "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent

    Ja HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

    Ja HKLM:Run BeatsOSDApp Hewlett-Packard C:\Program Files\IDT\WDM\beats64.exe

    Nee HKLM:Run CanonSolutionMenuEx CANON INC. C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon

    Ja HKLM:Run EvtMgr6 Logitech, Inc. C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming

    Ja HKLM:Run HP Software Update Hewlett-Packard c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

    Ja HKLM:Run hpsysdrv Hewlett-Packard c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe

    Ja HKLM:Run InstallerLauncher "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\Installer.exe"

    Ja HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

    Nee HKLM:Run Logitech Download Assistant Microsoft Corporation C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch

    Ja HKLM:Run MobileBroadband Vodafone C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe /silent

    Ja HKLM:Run mobilegeni daemon C:\Program Files (x86)\Mobogenie\DaemonProcess.exe

    Nee HKLM:Run MyStart Anti-phishing Domain Advisor "C:\ProgramData\MyStart Anti-phishing Domain Advisor\MyStart_antiphishing.exe"

    Nee HKLM:Run PDF Complete PDF Complete Inc C:\Program Files (x86)\PDF Complete\pdfsty.exe

    Nee HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

    Ja HKLM:Run S7UB Start SIEMENS AG "C:\Program Files (x86)\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB

    Nee HKLM:Run Start WingMan Profiler Logitech Inc. C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui

    Ja HKLM:Run StartCCC Advanced Micro Devices, Inc. "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun

    Ja HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    Ja HKLM:Run SysTrayApp IDT, Inc. C:\Program Files\IDT\WDM\sttray64.exe

    Ja HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"

    Ja HKLM:Run VmbNotifier Vodafone C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbNotifier.exe

    Nee HKLM:Run vProt "C:\Program Files (x86)\AVG Secure Search\vprot.exe"

    Nee HKLM:Run Wondershare Helper Compact.exe Wondershare C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

    Nee HKLM:Run Zune Launcher Microsoft Corporation "C:\Program Files\Zune\ZuneLauncher.exe"

    Nee Startup Common CineForm Status.lnk GoPro C:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe

    Ja Startup User Dropbox.lnk Dropbox, Inc. C:\Users\Ruben\AppData\Roaming\Dropbox\bin\Dropbox.exe

    mvg,

    pavilion

    Deel dit bericht


    Link naar bericht
    Delen op andere sites

    Even een paar vragen voor jou,

    -De versie van Malware Bytes is dit een betaal versie of de gratis versie?

    -Je gebruikt Bitdefender en Trend Micro, gebruik je ze samen op je systeem?

    -Maak je veel gebruik van Siemens Step?

    Deel dit bericht


    Link naar bericht
    Delen op andere sites
  • Topicstarter
  •    0

    Beste

    -De versie van Malware Bytes is dit een betaal versie of de gratis versie? gratis

    -Je gebruikt Bitdefender en Trend Micro, gebruik je ze samen op je systeem? normaal heb ik Bitdefender verwijdert van mijn systeem

    -Maak je veel gebruik van Siemens Step? momenteel gebruik ik dit niet. binnen een maand zal ik het terug gaan gerbuiken.

    mvg,

    Pavilion

    Deel dit bericht


    Link naar bericht
    Delen op andere sites

    Om Malware Bytes niet automatisch mee op te starten kun je het volgende doen.

    post-24526-1417705662,7761_thumb.png

    Klikk op het icoon van MBAM in je taakbalk en vink de optie Bescherming automatisch opstarten uit en herstart de pc.

    Vervolgens kun je via Ccleaner de volgende programma's uitschakelen van het automatisch met Windows op te starten.

    Als je de programma's dagelijks veel gebruikt kun je nog kiezen om ze naderhand terug in te schakelen.

    -HKCU:Run ApplePhotoStreams Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

    -HKCU:Run iCloudServices Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

    -HKCU:Run Itibiti.exe C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe

    - HKCU:Run uTorrent BitTorrent Inc. "C:\Users\Ruben\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

    -HKLM:Run InstallerLauncher "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\Installer.exe"

    -HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

    -HKLM:Run S7UB Start SIEMENS AG "C:\Program Files (x86)\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB

    Dan nog even over DropBox als je deze services niet zo vaak gebruikt kun je ook deze opstart op nee zetten.

    Startup User Dropbox.lnk Dropbox, Inc. C:\Users\Ruben\AppData\Roaming\Dropbox\bin\Dropbox.exe

    Herstart je pc.

    Voer dan ook eens het volgende uit

    Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

    Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

    Dubbelklik op RSIT.exe om de tool te starten.

    • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
    • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
    • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
    • Plaats de inhoud hiervan in het volgende bericht.

    Bekijk ook de instructievideo.

    Deel dit bericht


    Link naar bericht
    Delen op andere sites

  • Topicstarter
  •    0

    hierbij het log bestand

    Logfile of random's system information tool 1.09 (written by random/random)

    Run by Ruben at 2014-02-01 13:43:57

    Microsoft Windows 7 Ultimate Service Pack 1

    System drive C: has 693 GB (49%) free of 1416 GB

    Total RAM: 8096 MB (62% free)

    Logfile of Trend Micro HijackThis v2.0.4

    Scan saved at 13:44:18, on 1/02/2014

    Platform: Windows 7 SP1 (WinNT 6.00.3505)

    MSIE: Internet Explorer v11.0 (11.00.9600.16428)

    Boot mode: Normal

    Running processes:

    C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe

    C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe

    C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe

    C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe

    C:\Users\Ruben\AppData\Local\Akamai\netsession_win.exe

    C:\Program Files (x86)\ATI Technologies\HydraVision\HydraGrd.exe

    C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe

    C:\Users\Ruben\AppData\Local\Akamai\netsession_win.exe

    C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe

    C:\Users\Ruben\AppData\Roaming\Dropbox\bin\Dropbox.exe

    C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe

    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

    C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe

    C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\chromeextension\NativeMessageHost\ToolbarNativeMsgHost.exe

    C:\Program Files\trend micro\Ruben.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

    F2 - REG:system.ini: UserInit=userinit.exe,

    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

    O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll

    O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll

    O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll

    O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll

    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll

    O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll

    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL

    O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1135\8.0.1135\TmBpIe32.dll

    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll

    O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

    O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll

    O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)

    O3 - Toolbar: Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll

    O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll

    O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

    O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

    O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"

    O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun

    O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Ruben\AppData\Local\Akamai\netsession_win.exe"

    O4 - HKCU\..\Run: [Grid] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraGrd.exe"

    O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun

    O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"

    O4 - HKCU\..\Run: [HydraVisionMDEngine] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe"

    O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-18\..\Run: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" (User 'SYSTEM')

    O4 - HKUS\.DEFAULT\..\Run: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" (User 'Default user')

    O4 - Startup: Dropbox.lnk = Ruben\AppData\Roaming\Dropbox\bin\Dropbox.exe

    O8 - Extra context menu item: Download with &Media Finder - C:\Program Files (x86)\Media Finder\hook.html

    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000

    O8 - Extra context menu item: Klant openen op monitor &1 - C:\Windows\web\AOpenClient.htm

    O8 - Extra context menu item: Klant openen op monitor &2 - C:\Windows\web\AOpenClient.htm

    O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105

    O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

    O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

    O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

    O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

    O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

    O10 - Unknown file in Winsock LSP: c:\windows\system32\easyredirect.dll

    O10 - Unknown file in Winsock LSP: c:\windows\system32\easyredirect.dll

    O10 - Unknown file in Winsock LSP: c:\windows\system32\easyredirect.dll

    O10 - Unknown file in Winsock LSP: c:\windows\system32\easyredirect.dll

    O10 - Unknown file in Winsock LSP: c:\windows\system32\easyredirect.dll

    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

    O15 - Trusted Zone: http://*.aeriagames.com

    O16 - DPF: {6E718D87-6909-4FCE-92D4-EDCB2F725727} (Navigram Control) - http://navigram.com/engine/v1140/Navigram.cab

    O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - Automatically Find HP Updates | HP Support

    O16 - DPF: {B8FB8104-FDC9-4339-8AFF-2EE4C8C92998} (AMCCtrl Class) - http://81.82.9.105:8080/AVC_AX_NVR.cab

    O16 - DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} (Battlefield Play4Free Updater) - https://battlefield.play4free.com/static/updater/BP4FUpdater_1.0.66.2.cab

    O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL

    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

    O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1135\8.0.1135\TmBpIe32.dll

    O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll

    O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll

    O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll

    O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

    O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL

    O21 - SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll

    O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll

    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

    O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe

    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

    O23 - Service: Automation License Manager Service (almservice) - SIEMENS AG - C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe

    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

    O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe

    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

    O23 - Service: Autodesk Content Service - Unknown owner - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe

    O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

    O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe

    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

    O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

    O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe

    O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

    O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

    O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Sentinel HASP License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing)

    O23 - Service: HomeGuard AMC - Unknown owner - C:\Program Files\HomeGuard_x64\vglset.exe

    O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

    O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

    O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

    O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe

    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

    O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

    O23 - Service: Intel® Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe

    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe

    O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

    O23 - Service: Autodesk Moldflow Inventor Tool Suite Integration 2012 Job Manager (mitsijm2012) - Autodesk, Inc. - C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe

    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

    O23 - Service: NETGEARGenieDaemon - NETGEAR - C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe

    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe

    O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe

    O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

    O23 - Service: S7 HSP Service (s7hspsvx) - SIEMENS AG - C:\Program Files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe

    O23 - Service: SIMATIC IEPG Help Service (s7oiehsx64) - SIEMENS AG - C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe

    O23 - Service: S7TraceServiceX - SIEMENS AG - C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64x.exe

    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

    O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

    O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

    O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

    O23 - Service: VirtualRouterService (Virtual Router) - Chris Pietschmann (Chris Pietschmann | husband, father, hacker, entrepreneur, futurist, innovator, autodidact) - C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe

    O23 - Service: Vodafone Mobile Broadband-service (VmbService) - Vodafone - C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe

    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

    --

    End of file - 20169 bytes

    ======Listing Processes======

    \SystemRoot\System32\smss.exe

    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

    wininit.exe

    winlogon.exe

    C:\Windows\system32\services.exe

    C:\Windows\system32\lsass.exe

    C:\Windows\system32\lsm.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    "C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe"

    C:\Windows\system32\svchost.exe -k RPCSS

    C:\Windows\system32\atiesrxx.exe

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\svchost.exe -k netsvcs

    "C:\Program Files\IDT\WDM\STacSV64.exe"

    C:\Windows\system32\svchost.exe -k GPSvcGroup

    "C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe"

    atieclxx

    "C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe"

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    C:\Windows\System32\spoolsv.exe

    "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0

    uiWatchDog.exe 2440

    "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

    \??\C:\Windows\system32\conhost.exe "13516350451454737488-1552393519-795159841-1474687933724372390-1658315504-1141704675

    "C:\Program Files\IDT\WDM\AESTSr64.exe"

    coreFrameworkHost.exe 2440 1

    \??\C:\Windows\system32\conhost.exe "-3539780811632193609383829421435369414-15373623111012866982-3490215071876286055

    "C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe"

    "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"

    "C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"

    "taskhost.exe"

    taskeng.exe {C04530F7-4A39-4956-AB8D-2C1C49B48B32}

    taskeng.exe {B2550A5A-215C-47EE-9288-013F054F8337}

    "C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe"

    "C:\Windows\system32\Dwm.exe"

    "C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe"

    C:\Windows\Explorer.EXE

    "C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe"

    "C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe" -Embedding

    "C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe"

    "C:\Program Files\Bonjour\mDNSResponder.exe"

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    "C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe"

    C:\Windows\system32\hasplms.exe -run

    "C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe"

    "C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe"

    "C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"

    "C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe"

    "C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe"

    "C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"

    "C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService

    C:\Windows\SysWOW64\PnkBstrA.exe

    C:\Windows\system32\svchost.exe -k regsvc

    "C:\Program Files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe"

    "C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe"

    "C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64x.exe"

    C:\Windows\system32\svchost.exe -k imgsvc

    "C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"

    "C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7epasrv64x.exe"

    "C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\PNIOMGR.exe" --start 0

    \??\C:\Windows\system32\conhost.exe "88594544965417605270906758-701088542-2026624473980265673-1343924448292244599

    C:\Windows\SysWOW64\pniopcac.exe 0 {DDD931BF-72B6-414B-B07E-51A7DFB9FBB1}

    C:\Windows\SysWOW64\pniopcac.exe 0 {C69578B3-57AB-48C6-82CD-C7DCA9CA9AEE}

    "C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe"

    "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

    "C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe"

    WLIDSvcM.exe 4672

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Windows\system32\SearchIndexer.exe /Embedding

    "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-964d2210-5d10-40bd-a065-3816726c0c51 -SystemEventPortName:HostProcess-c9e98f26-3b4c-4123-b3ac-7eab1ad4e9ba -IoCancelEventPortName:HostProcess-218ea8b4-c8b5-46aa-bbb3-dd23aaf5b569 -NonStateChangingEventPortName:HostProcess-9fbe1bb1-55a6-422f-803f-d66c25bfc43f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3d22de87-aef0-45a3-8937-870937741728 -DeviceGroupId:WpdFsGroup

    C:\Windows\system32\wbem\unsecapp.exe -Embedding

    "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

    "C:\Program Files\IDT\WDM\beats64.exe"

    "C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe"

    "C:\Program Files\IDT\WDM\sttray64.exe"

    "C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe"

    "C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming

    "C:\Users\Ruben\AppData\Local\Akamai\netsession_win.exe"

    "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe"

    "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraGrd.exe"

    "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"

    "C:/Users/Ruben/AppData/Local/Akamai/netsession_win.exe" --client

    "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe"

    "C:\Users\Ruben\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup

    KHALMNPR.EXE /API

    Grid64.exe -h:66108 -t:0 "&Bevestigen aan raster" "&Loshalen van raster" "Raster bewerken..."

    "C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe"

    HydraMD64.exe -h:131718

    HydraDM64.exe -h:66188 "Maximaliseren tot volledig bureaublad" "Maximaliseren tot volledig venster" "Bureaublad herstellen"

    "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe"

    "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow

    C:\Windows\System32\svchost.exe -k LocalServicePeerNet

    "C:\Program Files\Windows Media Player\wmpnetwk.exe"

    "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0

    C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}

    "C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe"

    "C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="8972.0.333732378\1495522671" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,18,24,26 --gpu-vendor-id=0x1002 --gpu-device-id=0x6739 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=12.104.0.0 --ignored=" --type=renderer " /prefetch:822062411

    "C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InstantExtended/Group5 pct:10d stable:pp3 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="8972.1.1779959170\466499607" /prefetch:673131151

    "C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InstantExtended/Group5 pct:10d stable:pp3 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="8972.2.1245175722\1362079998" /prefetch:673131151

    "C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InstantExtended/Group5 pct:10d stable:pp3 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="8972.3.843700910\1571323093" /prefetch:673131151

    "C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InstantExtended/Group5 pct:10d stable:pp3 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="8972.4.114326\1834138906" /prefetch:673131151

    "C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InstantExtended/Group5 pct:10d stable:pp3 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="8972.5.352496689\971142423" /prefetch:673131151

    "C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InstantExtended/Group5 pct:10d stable:pp3 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_60/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="8972.6.1762855158\1099076141" /prefetch:673131151

    "C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Ruben\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmiabdepfhhiieiipmeecdmeljggmfee\8.0.0.1135_1\nptmbep.dll" --lang=nl --channel="8972.10.1619144039\1669225901" /prefetch:-390060480

    "C:\Users\Ruben\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Ruben\AppData\Local\Google\Chrome\User Data\Default\Extensions\dflinnddekagfkncpgojoppgnppfkbkj\6.8.0.1118_1\tmChromeExt.dll" --lang=nl --channel="8972.11.1781908345\795661882" /prefetch:-390060480

    \??\C:\Windows\system32\conhost.exe "2041594066-115155354984911215-12529768-617438479-1352207015-820211135452978037

    "C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\chromeextension\NativeMessageHost\ToolbarNativeMsgHost.exe" --parent-window=198146 chrome-extension://heoldelcflnigdllmlopiefhkkobendj/

    "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"

    "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

    C:\Windows\system32\sppsvc.exe

    C:\Windows\system32\PrintIsolationHost.exe -Embedding

    "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"

    "C:\Users\Ruben\Desktop\RSITx64.exe"

    "C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540

    "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskrestart

    ======Scheduled tasks folder======

    C:\Windows\tasks\Adobe Flash Player Updater.job

    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

    C:\Windows\tasks\GoogleUpdateTaskMachineCore1cec399a43c319e.job

    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

    C:\Windows\tasks\GoogleUpdateTaskMachineUA1cec399a8637caf.job

    C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1351815258-1978260228-951490462-1000Core.job

    C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1351815258-1978260228-951490462-1000UA.job

    C:\Windows\tasks\HPCeeScheduleForRuben.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]

    TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg.dll [2013-07-10 449048]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

    Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-02-12 551840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]

    TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-06-09 1747272]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

    Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]

    Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2013-07-31 433944]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

    Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office15\URLREDIR.DLL [2013-09-13 878296]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]

    TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1135\8.0.1135\TmBpIe64.dll [2013-12-17 1342488]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]

    Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2013-11-02 2331336]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

    Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-02-12 209824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

    HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

    Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]

    TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll [2013-07-10 332824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43C6D902-A1C5-45c9-91F6-FD9E90337E18}]

    TSToolbarBHO - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-12-18 515880]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

    Java Plug-In SSV Helper - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-05-04 453504]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]

    TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2011-06-09 1598792]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

    Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]

    Adobe Acrobat Create PDF Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]

    Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2013-07-31 364824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

    Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2013-09-13 705240]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]

    TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1135\8.0.1135\TmBpIe32.dll [2013-12-17 1376792]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

    Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-05-04 157576]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

    HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]

    Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

    {ae07101b-46d4-4a98-af68-0333ea26e113}

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

    {ae07101b-46d4-4a98-af68-0333ea26e113}

    {CCAC5586-44D7-4c43-B64A-F042461A97D2} - Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-12-18 515880]

    {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

    "BeatsOSDApp"=C:\Program Files\IDT\WDM\beats64.exe [2010-10-22 37888]

    "hpsysdrv"=c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [2008-11-20 62768]

    "SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-04-24 1425408]

    "AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-06-13 472984]

    "EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2013-07-31 3091224]

    "Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [2013-10-09 229824]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

    "NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-01-28 21720]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

    "Akamai NetSession Interface"=C:\Users\Ruben\AppData\Local\Akamai\netsession_win.exe [2013-06-05 4489472]

    "Grid"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraGrd.exe [2011-10-23 409600]

    "DAEMON Tools Pro Agent"=C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [2012-10-23 3108480]

    "HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2011-10-23 393216]

    "HydraVisionMDEngine"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe [2011-10-23 569344]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]

    C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2012-09-23 3477640]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aeria Ignite]

    C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe silent []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]

    C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenuEx]

    C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2011-08-04 1637496]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]

    C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]

    C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [2012-10-23 3108480]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EvtMgr6]

    C:\Program Files\Logitech\SetPointP\SetPoint.exe [2013-07-31 3091224]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

    C:\Users\Ruben\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-19 116648]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InstallerLauncher]

    C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe /run:C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\Installer.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

    C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-05-31 152392]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Download Assistant]

    C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileBroadband]

    C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [2013-02-05 76288]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyStart Anti-phishing Domain Advisor]

    C:\ProgramData\MyStart Anti-phishing Domain Advisor\MyStart_antiphishing.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NETGEARGenie]

    C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [2013-11-14 602880]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]

    C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-05-06 658424]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

    C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\S7UB Start]

    C:\Program Files (x86)\Common Files\Siemens\S7ubtoox\s7ubtstx.exe [2010-06-03 102453]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

    C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-15 20588704]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Start WingMan Profiler]

    C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2009-01-21 123400]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]

    C:\Program Files (x86)\Steam\Steam.exe [2014-01-07 1815464]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]

    C:\Users\Ruben\AppData\Roaming\uTorrent\uTorrent.exe [2013-11-16 900440]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VmbNotifier]

    C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbNotifier.exe [2013-02-05 1861632]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]

    C:\Program Files (x86)\AVG Secure Search\vprot.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wondershare Helper Compact.exe]

    C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2012-02-28 1679360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zune Launcher]

    C:\Program Files\Zune\ZuneLauncher.exe [2011-08-05 163552]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CineForm Status.lnk]

    C:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe [2013-09-05 144384]

    [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

    "HP Software Update"=c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]

    "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

    "APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

    "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

    ""= []

    "Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2012-09-23 3477640]

    "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-12-06 766208]

    C:\Users\Ruben\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

    Dropbox.lnk - C:\Users\Ruben\AppData\Roaming\Dropbox\bin\Dropbox.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]

    c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2013-06-13 66328]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

    WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

    EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll [2012-04-09 190480]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]

    Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2012-06-28 275360]

    Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll [2012-04-09 190480]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

    "SecurityProviders"=credssp.dll

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EasyRedirect]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]

    "LogonHoursAction"=2

    "DontDisplayLogonHoursWarnings"=1

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

    "ConsentPromptBehaviorAdmin"=5

    "EnableUIADesktopToggle"=0

    "dontdisplaylastusername"=0

    "legalnoticecaption"=

    "legalnoticetext"=

    "shutdownwithoutlogon"=1

    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

    "NoDriveTypeAutoRun"=255

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

    "NoActiveDesktop"=1

    "NoActiveDesktopChanges"=1

    "ForceActiveDesktopOn"=0

    "AllowLegacyWebView"=1

    "AllowUnhashedWebView"=1

    "NoDriveTypeAutoRun"=255

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    "C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe"="C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    "C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe"="C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

    "vidc.mrle"=msrle32.dll

    "vidc.msvc"=msvidc32.dll

    "msacm.imaadpcm"=imaadp32.acm

    "msacm.msg711"=msg711.acm

    "msacm.msgsm610"=msgsm32.acm

    "msacm.msadpcm"=msadp32.acm

    "midimapper"=midimap.dll

    "wavemapper"=msacm32.drv

    "VIDC.UYVY"=msyuv.dll

    "VIDC.YUY2"=msyuv.dll

    "VIDC.YVYU"=msyuv.dll

    "VIDC.IYUV"=iyuv_32.dll

    "vidc.i420"=iyuv_32.dll

    "VIDC.YVU9"=tsbyuv.dll

    "msacm.l3acm"=C:\Windows\System32\l3codeca.acm

    "vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll

    "vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll

    "VIDC.XFR1"=xfcodec64.dll

    "wave"=wdmaud.drv

    "midi"=wdmaud.drv

    "mixer"=wdmaud.drv

    "VIDC.CFHD"=CFHD.dll

    "wave2"=wdmaud.drv

    "mixer2"=wdmaud.drv

    "MSVideo8"=VfWWDM32.dll

    "wave1"=wdmaud.drv

    "midi1"=wdmaud.drv

    "mixer1"=wdmaud.drv

    "aux"=wdmaud.drv

    ======File associations======

    .js - edit - C:\Windows\System32\Notepad.exe %1

    .scr - open - C:\Windows\system32\notepad.exe "%1"

    .scr - install -

    .scr - config -

    ======List of files/folders created in the last 1 month======

    2014-01-31 15:49:22 ----D---- C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}

    2014-01-31 14:41:30 ----A---- C:\tasklist.txt

    2014-01-31 12:58:11 ----D---- C:\Windows\Hewlett-Packard

    2014-01-29 16:50:16 ----A---- C:\Windows\system32\drivers\dlkmdldr.sys

    2014-01-29 16:50:16 ----A---- C:\Windows\system32\drivers\dlkmd.sys

    2014-01-25 19:12:08 ----D---- C:\rsit

    2014-01-23 23:07:35 ----D---- C:\Program Files (x86)\Sonos

    2014-01-23 23:06:41 ----D---- C:\ProgramData\Sonos,_Inc

    2014-01-22 17:21:42 ----D---- C:\ProgramData\HitmanPro

    2014-01-21 20:37:31 ----D---- C:\d67583d6950d564792c2c9bba133ca

    2014-01-21 20:27:38 ----A---- C:\Windows\SYSWOW64\javaws.exe

    2014-01-21 20:27:32 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll

    2014-01-21 20:27:32 ----A---- C:\Windows\SYSWOW64\javaw.exe

    2014-01-21 20:27:32 ----A---- C:\Windows\SYSWOW64\java.exe

    2014-01-20 21:29:54 ----D---- C:\Program Files (x86)\Counter-Strike 1.6

    2014-01-20 17:42:06 ----D---- C:\Users\Ruben\AppData\Roaming\FLUIDSIM3

    2014-01-15 18:43:26 ----A---- C:\Windows\system32\drivers\usbuhci.sys

    2014-01-15 18:43:26 ----A---- C:\Windows\system32\drivers\usbport.sys

    2014-01-15 18:43:26 ----A---- C:\Windows\system32\drivers\usbohci.sys

    2014-01-15 18:43:26 ----A---- C:\Windows\system32\drivers\usbhub.sys

    2014-01-15 18:43:26 ----A---- C:\Windows\system32\drivers\usbehci.sys

    2014-01-15 18:43:26 ----A---- C:\Windows\system32\drivers\usbd.sys

    2014-01-15 18:43:26 ----A---- C:\Windows\system32\drivers\usbccgp.sys

    2014-01-15 18:43:21 ----A---- C:\Windows\system32\win32k.sys

    2014-01-15 18:43:21 ----A---- C:\Windows\system32\drivers\netio.sys

    2014-01-12 17:33:52 ----D---- C:\Program Files (x86)\Euro Truck Simulator 2

    2014-01-12 13:16:06 ----A---- C:\Windows\Eplan.INI

    2014-01-12 09:02:14 ----A---- C:\Windows\SYSWOW64\mfcm110u.dll

    2014-01-12 09:02:12 ----A---- C:\Windows\SYSWOW64\mfcm110.dll

    2014-01-12 09:02:12 ----A---- C:\Windows\SYSWOW64\mfc110.dll

    2014-01-12 09:02:10 ----A---- C:\Windows\SYSWOW64\mfc110u.dll

    2014-01-08 20:28:27 ----D---- C:\My Backups

    2014-01-08 20:28:26 ----A---- C:\Windows\system32\drivers\EuFdDisk.sys

    2014-01-08 20:28:26 ----A---- C:\Windows\system32\drivers\eudskacs.sys

    2014-01-08 20:28:26 ----A---- C:\Windows\system32\drivers\eubakup.sys

    2014-01-08 20:28:25 ----A---- C:\Windows\system32\drivers\EUBKMON.sys

    2014-01-08 20:25:42 ----D---- C:\Program Files (x86)\EaseUS

    2014-01-08 17:28:08 ----D---- C:\Users\Ruben\AppData\Roaming\VMware

    2014-01-08 17:26:44 ----D---- C:\ProgramData\VMware

    2014-01-08 17:26:30 ----D---- C:\Program Files (x86)\VMware

    2014-01-03 20:57:34 ----D---- C:\Program Files (x86)\Vodafone

    2014-01-03 20:36:07 ----D---- C:\Users\Ruben\AppData\Roaming\Dekart

    2014-01-03 20:17:10 ----D---- C:\Program Files (x86)\Dekart

    2014-01-03 11:47:00 ----D---- C:\ProgramData\ATI

    2014-01-03 11:46:58 ----D---- C:\Program Files (x86)\AMD AVT

    2014-01-03 11:44:37 ----D---- C:\Program Files\AMD

    2014-01-03 11:34:45 ----D---- C:\Program Files (x86)\AMD

    ======List of files/folders modified in the last 1 month======

    2014-02-01 13:44:18 ----D---- C:\Windows\Prefetch

    2014-02-01 13:44:13 ----D---- C:\Program Files\Trend Micro

    2014-02-01 13:43:06 ----D---- C:\Windows\Temp

    2014-02-01 13:43:06 ----A---- C:\Windows\SYSWOW64\log.txt

    2014-02-01 13:42:30 ----D---- C:\Users\Ruben\AppData\Roaming\Raptr

    2014-02-01 13:41:47 ----D---- C:\Users\Ruben\AppData\Roaming\Dropbox

    2014-02-01 13:40:51 ----D---- C:\ProgramData\PDFC

    2014-02-01 13:39:10 ----D---- C:\Windows\system32\config

    2014-02-01 09:47:53 ----D---- C:\Windows\inf

    2014-02-01 09:47:53 ----AD---- C:\Windows\System32

    2014-02-01 09:47:53 ----A---- C:\Windows\system32\PerfStringBackup.INI

    2014-02-01 09:43:14 ----D---- C:\Users\Ruben\AppData\Roaming\uTorrent

    2014-02-01 00:37:42 ----D---- C:\ProgramData\truesuite

    2014-01-31 18:05:49 ----AD---- C:\Windows

    2014-01-31 18:02:40 ----D---- C:\Config.Msi

    2014-01-31 17:01:52 ----D---- C:\Windows\winsxs

    2014-01-31 16:55:54 ----RD---- C:\Program Files

    2014-01-31 16:55:41 ----A---- C:\Windows\RegBootClean64.exe

    2014-01-31 16:55:09 ----D---- C:\Program Files (x86)\BreezeSys

    2014-01-31 16:51:50 ----SHD---- C:\Windows\Installer

    2014-01-31 16:51:10 ----D---- C:\System Volume Information

    2014-01-31 16:49:28 ----D---- C:\Program Files (x86)\Farming Simulator 2013

    2014-01-31 16:48:42 ----D---- C:\Program Files (x86)

    2014-01-31 16:48:40 ----D---- C:\Windows\system32\drivers

    2014-01-31 16:45:02 ----D---- C:\Windows\SysWOW64

    2014-01-31 16:40:15 ----D---- C:\Windows\Tasks

    2014-01-31 16:40:15 ----D---- C:\Windows\system32\Tasks

    2014-01-31 16:28:29 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt

    2014-01-31 16:11:06 ----D---- C:\Users\Ruben\AppData\Roaming\Apple Computer

    2014-01-31 16:10:58 ----D---- C:\Program Files\Common Files\Apple

    2014-01-31 15:58:03 ----D---- C:\ProgramData\Hewlett-Packard

    2014-01-31 15:55:59 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

    2014-01-31 15:55:48 ----D---- C:\Windows\Help

    2014-01-31 15:50:33 ----RSD---- C:\Windows\assembly

    2014-01-31 15:50:15 ----D---- C:\Program Files (x86)\Hewlett-Packard

    2014-01-31 15:49:22 ----D---- C:\ProgramData

    2014-01-31 15:46:46 ----D---- C:\SWSETUP

    2014-01-31 15:38:13 ----D---- C:\Program Files (x86)\Steam

    2014-01-31 15:36:17 ----D---- C:\Program Files (x86)\Origin

    2014-01-31 15:01:14 ----HD---- C:\TMRescueDisk

    2014-01-31 13:50:44 ----D---- C:\Windows\registration

    2014-01-31 12:04:04 ----D---- C:\Windows\system32\drivers\etc

    2014-01-30 23:41:53 ----D---- C:\Windows\system32\catroot

    2014-01-29 17:14:28 ----D---- C:\Windows\system32\catroot2

    2014-01-29 17:06:04 ----D---- C:\Program Files\Lenovo USB Graphics

    2014-01-29 16:49:44 ----D---- C:\Program Files\DisplayLink Core Software

    2014-01-29 16:49:43 ----D---- C:\Windows\system32\DriverStore

    2014-01-27 17:33:53 ----D---- C:\Users\Ruben\AppData\Roaming\HpUpdate

    2014-01-27 17:33:53 ----D---- C:\Users\Ruben\AppData\Roaming\HP Support Assistant

    2014-01-26 11:28:51 ----D---- C:\Windows\system32\wfp

    2014-01-26 11:28:50 ----D---- C:\Program Files (x86)\DAEMON Tools Pro

    2014-01-26 11:28:47 ----D---- C:\Windows\system32\wbem

    2014-01-26 11:27:50 ----D---- C:\Windows\system32\NDF

    2014-01-26 11:27:44 ----D---- C:\Windows\AppCompat

    2014-01-26 11:27:08 ----D---- C:\ProgramData\Trend Micro

    2014-01-26 11:27:08 ----D---- C:\ProgramData\FLEXnet

    2014-01-26 11:27:07 ----D---- C:\Program Files (x86)\SpeedFan

    2014-01-26 11:27:07 ----D---- C:\Program Files (x86)\Pixum

    2014-01-26 11:27:07 ----D---- C:\Program Files (x86)\NETGEAR Genie

    2014-01-26 11:27:05 ----D---- C:\Program Files (x86)\Codemasters

    2014-01-26 11:27:05 ----D---- C:\Program Files (x86)\AmpereSoft

    2014-01-26 11:13:39 ----SD---- C:\Users\Ruben\AppData\Roaming\Microsoft

    2014-01-26 11:11:58 ----D---- C:\Program Files (x86)\Mozilla Firefox

    2014-01-25 19:34:38 ----D---- C:\ProgramData\Codemasters

    2014-01-23 23:07:51 ----D---- C:\Users\Ruben\AppData\Roaming\vlc

    2014-01-22 20:37:40 ----D---- C:\Windows\system32\LogFiles

    2014-01-22 20:36:21 ----D---- C:\Program Files (x86)\TamoGraph

    2014-01-22 17:38:41 ----D---- C:\ProgramData\WinZip

    2014-01-22 17:38:32 ----A---- C:\Windows\system32\bootdelete.exe

    2014-01-22 16:42:47 ----D---- C:\Program Files (x86)\i-Funbox DevTeam

    2014-01-22 16:42:10 ----AD---- C:\ProgramData\Temp

    2014-01-22 16:40:31 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin

    2014-01-22 16:35:58 ----D---- C:\ProgramData\TamoSoft

    2014-01-22 16:31:31 ----D---- C:\Program Files (x86)\Mixxx

    2014-01-22 16:30:01 ----D---- C:\Program Files (x86)\iExplorer

    2014-01-22 16:29:42 ----D---- C:\Program Files (x86)\teraterm

    2014-01-22 16:29:02 ----D---- C:\Program Files\Eltima Software

    2014-01-22 16:11:56 ----D---- C:\tmp

    2014-01-22 16:09:23 ----RSD---- C:\Windows\Fonts

    2014-01-22 13:21:08 ----D---- C:\Windows\Minidump

    2014-01-21 20:43:52 ----D---- C:\Program Files (x86)\Raptr

    2014-01-21 20:31:41 ----D---- C:\ProgramData\Oracle

    2014-01-21 20:27:32 ----D---- C:\Program Files (x86)\Java

    2014-01-21 18:08:06 ----D---- C:\ProgramData\Sony Corporation

    2014-01-19 13:04:31 ----D---- C:\Users\Ruben\AppData\Roaming\Autodesk

    2014-01-19 13:04:31 ----D---- C:\ProgramData\Autodesk

    2014-01-19 12:51:06 ----D---- C:\Program Files\Autodesk

    2014-01-19 12:49:28 ----D---- C:\Autodesk

    2014-01-16 01:28:43 ----D---- C:\Windows\system32\MRT

    2014-01-16 01:23:51 ----A---- C:\Windows\system32\MRT.exe

    2014-01-14 00:51:02 ----D---- C:\Users\Ruben\AppData\Roaming\Skype

    2014-01-12 13:10:27 ----D---- C:\Program Files (x86)\EPLAN

    2014-01-11 18:58:30 ----D---- C:\Boot

    2014-01-11 18:56:56 ----D---- C:\Program Files (x86)\Common Files

    2014-01-11 18:56:48 ----D---- C:\Windows\SYSWOW64\drivers

    2014-01-08 17:26:46 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

    2014-01-04 11:39:40 ----D---- C:\Program Files (x86)\MyPC Backup

    2014-01-03 20:58:58 ----D---- C:\Windows\Microsoft.NET

    2014-01-03 20:57:42 ----D---- C:\ProgramData\Vodafone

    2014-01-03 16:27:10 ----D---- C:\Users\Ruben\AppData\Roaming\iSpy

    2014-01-03 11:46:58 ----D---- C:\ProgramData\AMD

    2014-01-03 11:46:33 ----D---- C:\Program Files\ATI Technologies

    2014-01-03 11:40:06 ----D---- C:\Windows\SYSWOW64\nl-NL

    2014-01-03 11:40:06 ----D---- C:\Windows\system32\nl-NL

    2014-01-03 11:38:02 ----D---- C:\Windows\SYSWOW64\en-US

    2014-01-03 11:38:02 ----D---- C:\Windows\system32\en-US

    2014-01-02 22:41:38 ----D---- C:\Program Files (x86)\Safari

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R0 dlkmdldr;dlkmdldr; C:\Windows\system32\drivers\dlkmdldr.sys [2013-10-07 15664]

    R0 iaStor;Intel RAID Controller; C:\Windows\system32\drivers\iaStor.sys [2011-04-26 557848]

    R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]

    R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]

    R0 tmcomm;tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [2013-09-04 282624]

    R0 TMEBC;TMEBC; C:\Windows\system32\DRIVERS\TMEBC64.sys [2013-07-01 50976]

    R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-20 283200]

    R1 tmactmon;tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [2013-09-04 116264]

    R1 tmevtmgr;tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [2013-09-04 85424]

    R1 tmtdi;Trend Micro TDI Driver; C:\Windows\system32\DRIVERS\tmtdi.sys [2011-08-22 105744]

    R2 aksdf;aksdf; \??\C:\Windows\system32\drivers\aksdf.sys [2010-07-27 75648]

    R2 aksfridge;aksfridge; \??\C:\Windows\system32\drivers\aksfridge.sys [2010-09-27 131072]

    R2 hardlock;hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2009-03-13 318464]

    R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432]

    R2 s7ousbu64x;SIMATIC USB Service; C:\Windows\system32\DRIVERS\s7ousbu64x.sys [2011-09-29 193024]

    R2 s7sn2srtx;PROFINET IO RT-Protocol V2.0; C:\Windows\system32\DRIVERS\s7sn2srtx.sys [2011-06-16 83032]

    R2 SNTIE;SIMATIC Industrial Ethernet (ISO); C:\Windows\system32\DRIVERS\sntie.sys [2011-10-11 179288]

    R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-03-29 11658752]

    R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-03-29 581120]

    R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-09-24 94208]

    R3 cbfs3;EldoS Callback File System driver v3; C:\Windows\system32\DRIVERS\cbfs3.sys [2012-04-09 352144]

    R3 DisplayLinkUsbIo_x64;DisplayLinkUsbIo_x64; C:\Windows\system32\DRIVERS\DisplayLinkUsbIo_x64_7.4.51572.0.sys [2013-10-08 46384]

    R3 dlkmd;dlkmd; C:\Windows\system32\drivers\dlkmd.sys [2013-10-07 388912]

    R3 dpmconv;SIMATIC NET DP Driver; C:\Windows\system32\DRIVERS\dpmconv.sys [2011-04-19 259072]

    R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]

    R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\drivers\HECIx64.sys [2010-10-19 56344]

    R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2012-12-06 2350176]

    R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-05-16 533096]

    R3 s7odpx2x64;SIMATIC Knotentaufe; C:\Windows\system32\DRIVERS\s7odpx2x64.sys [2011-10-20 71168]

    R3 s7oppinx64;SIMATIC PPI Transport; C:\Windows\system32\DRIVERS\s7oppinx64.sys [2011-10-20 107520]

    R3 s7oserix64;Siemens PC Serial Cable; C:\Windows\System32\Drivers\s7oserix64.sys [2011-05-06 121344]

    R3 s7osmcax64;SIMATIC PC Adapter RS232; C:\Windows\system32\DRIVERS\s7osmcax64.sys [2011-09-29 195584]

    R3 s7osobux64;SIMATIC SoftBus; C:\Windows\system32\DRIVERS\s7osobux64.sys [2011-05-06 152576]

    R3 s7otmcd64x;SIMATIC Memory Cards; C:\Windows\System32\Drivers\s7otmcd64x.sys [2011-05-06 199680]

    R3 s7otranx64;SIMATIC Transport; C:\Windows\system32\DRIVERS\s7otranx64.sys [2011-05-06 260096]

    R3 s7otsadx64;SIMATIC TS Adapter RS232; C:\Windows\system32\DRIVERS\s7otsadx64.sys [2011-09-29 192000]

    R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-04-24 536576]

    R3 tihub3;TI USB3 Hub Service; C:\Windows\system32\DRIVERS\tihub3.sys [2011-04-21 131656]

    R3 tixhci;TI XHCI Service; C:\Windows\system32\drivers\tixhci.sys [2011-04-21 399944]

    R3 tmeevw;tmeevw; C:\Windows\system32\DRIVERS\tmeevw.sys [2013-06-13 100640]

    R3 tmnciesc;tmnciesc; C:\Windows\system32\DRIVERS\tmnciesc.sys [2013-05-15 303392]

    R3 TotRec8;Total Recorder WDM audio filter driver; \??\C:\Windows\system32\drivers\TotRec8.sys [2012-08-13 122640]

    S1 rluoobqm;rluoobqm; \??\C:\Windows\system32\drivers\rluoobqm.sys []

    S2 mvCmdemo;mvCmdemo; C:\Windows\System32\Drivers\mvCmdemo.SYS [2011-04-07 15568]

    S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]

    S3 Bridge;@%SystemRoot%\system32\bridgeres.dll,-3; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]

    S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]

    S3 BthAvrcp;Bluetooth AVRCP Profile; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 29184]

    S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]

    S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]

    S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]

    S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]

    S3 CpqDfw;Compaq Dfw; C:\Windows\system32\drivers\CpqDfw.sys [2012-05-29 27456]

    S3 cpudrv64;cpudrv64; \??\C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-06-02 17864]

    S3 DisplayLinkUsbPort;DisplayLink USB Device; C:\Windows\system32\DRIVERS\DisplayLinkUsbPort_6.3.40660.0.sys []

    S3 e1yexpress;Intel® Gigabit Network Connections Driver; C:\Windows\system32\DRIVERS\e1y60x64.sys [2009-06-10 281088]

    S3 eustub;Usb Stub (Eltima software); C:\Windows\System32\DRIVERS\eusbstub.sys [2012-09-13 16176]

    S3 evserial7;Virtual Serial Ports Driver 7 (Eltima Software); C:\Windows\System32\DRIVERS\evserial7.sys [2011-10-31 71432]

    S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2011-04-18 117248]

    S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2011-04-18 13952]

    S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\Windows\system32\DRIVERS\ewusbnet.sys [2011-04-18 413696]

    S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]

    S3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2011-04-18 85504]

    S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2011-04-18 219008]

    S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]

    S3 KINONI_Wave;Kinoni Audio Source; C:\Windows\system32\drivers\kinonivad.sys [2013-02-26 23040]

    S3 kinonivd;Kinoni Video Source; C:\Windows\system32\DRIVERS\kinonivd.sys [2013-02-26 2782848]

    S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\Windows\system32\DRIVERS\LEqdUsb.Sys [2011-09-02 76056]

    S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; C:\Windows\system32\DRIVERS\LHidEqd.Sys [2011-09-02 15128]

    S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2013-05-23 76568]

    S3 libusb0;LibUsb-Win32 - Kernel Driver 08/27/2006, 0.1.12.0; C:\Windows\system32\DRIVERS\libusb0.sys [2008-09-07 31744]

    S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2013-05-23 59160]

    S3 LNonPnP;LNonPnP; \??\C:\Windows\System32\Drivers\LNonPnP.sys [2013-10-15 18960]

    S3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2013-05-23 40728]

    S3 ManyCam;ManyCam Virtual Webcam; C:\Windows\system32\DRIVERS\mcvidrv_x64.sys [2012-10-11 44928]

    S3 mcaudrv_simple;ManyCam Virtual Microphone; C:\Windows\system32\drivers\mcaudrv_x64.sys [2013-01-31 28160]

    S3 mirrorv3;mirrorv3; C:\Windows\system32\DRIVERS\rminiv3.sys [2012-12-18 5632]

    S3 MOBIOLA_Wave;Mobiola Wave Audio Device (WDM); C:\Windows\system32\drivers\mobiolawave.sys [2011-04-06 29120]

    S3 mobiolavs;Mobiola Web Camera Video Source; C:\Windows\system32\DRIVERS\mobiolavs.sys [2011-04-06 28304]

    S3 mvvideodemo;MaxiVista Virtual Video Demo; C:\Windows\system32\DRIVERS\mvvideodemo.sys [2011-04-07 14544]

    S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]

    S3 NPF;WinPcap Packet Driver (NPF); C:\Windows\system32\drivers\NPF.sys []

    S3 NSNDIS5;NSNDIS5 NDIS Protocol Driver; \??\C:\Windows\syswow64\NSNDIS5.SYS [2004-03-24 17280]

    S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

    S3 pmxdrv;pmxdrv; \??\C:\Windows\system32\drivers\pmxdrv.sys [2012-02-23 31152]

    S3 pspdisp;pspdisp; C:\Windows\system32\DRIVERS\pspdisp_x64.sys [2011-01-18 4608]

    S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]

    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]

    S3 RemoteControl-USBLAN;RemoteControl-USBLAN; C:\Windows\system32\DRIVERS\rcblan.sys [2007-01-24 46616]

    S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]

    S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []

    S3 taphss6;Anchorfree HSS VPN Adapter; C:\Windows\system32\DRIVERS\taphss6.sys [2013-09-17 42184]

    S3 TIEHDUSB;TI Core USB Driver; C:\Windows\system32\DRIVERS\tiehdusb.sys [2012-03-07 128512]

    S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]

    S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]

    S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []

    S4 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-05 65640]

    R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]

    R2 almservice;Automation License Manager Service; C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe [2011-10-28 1542792]

    R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-03-29 241152]

    R2 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2013-07-15 305760]

    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]

    R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]

    R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]

    R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2013-10-07 9281840]

    R2 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [2011-06-09 264008]

    R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2013-07-10 101888]

    R2 hasplms;Sentinel HASP License Manager; C:\Windows\system32\hasplms.exe [2010-09-27 4180576]

    R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]

    R2 HPClientSvc;HP Client Services; C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]

    R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2013-12-17 46904]

    R2 jhi_service;Intel® Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-24 212944]

    R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2011-02-01 326168]

    R2 mitsijm2012;Autodesk Moldflow Inventor Tool Suite Integration 2012 Job Manager; C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe [2010-12-07 848184]

    R2 NETGEARGenieDaemon;NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [2012-09-25 231752]

    R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2011-12-16 5827072]

    R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-05-06 1128952]

    R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-09 76888]

    R2 s7hspsvx;S7 HSP Service; C:\Program Files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe [2011-10-31 61493]

    R2 s7oiehsx64;SIMATIC IEPG Help Service; C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe [2011-11-03 139864]

    R2 S7TraceServiceX;S7TraceServiceX; C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64x.exe [2011-11-03 229976]

    R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2012-04-24 318464]

    R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-01 5087584]

    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]

    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]

    S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-06-19 116648]

    S2 HomeGuard AMC;HomeGuard AMC; C:\Program Files\HomeGuard_x64\vglset.exe [2013-03-13 1153536]

    S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]

    S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]

    S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]

    S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]

    S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-09-09 1431888]

    S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]

    S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-06-19 116648]

    S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-05-13 1129760]

    S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]

    S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]

    S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-05-31 641352]

    S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2013-06-13 357144]

    S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-01 150648]

    S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]

    S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

    S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-09 565672]

    S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]

    S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

    S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

    S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

    -----------------EOF-----------------

    mvg,

    Pavilion

    Deel dit bericht


    Link naar bericht
    Delen op andere sites

    Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

    Download 51a612a8b27e2-Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

    • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
    • Dubbelklik op Zoek.exe om de tool te starten.
    • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
    • Kopieer nu onderstaande code en plak die in het grote invulvenster:
    • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

      {ae07101b-46d4-4a98-af68-0333ea26e113};c
     C:\Program Files\Bitdefender;fs
     C:\Program Files (x86)\Media Finder;fs
     [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}];r
     [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}];r
     [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InstallerLauncher];r
     [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt];r
     [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wondershare Helper Compact.exe];r
     [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r
     ""=-;r
     emptyfolderscheck;delete 
    startupall; 
    filesrcm;

    • Klik op de knop "Options" en vink nu de onderstaande opties aan.
    • Installed Programs

    • Startup Information
    • Running Processes
    • Installer List
    • Auto Clean
    • De optie "Scan All Users" staat standaard aangevinkt.
    • Klik nu op de knop "Run script".
    • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
    • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
    • Post het geopende logje in het volgende bericht.

    Deel dit bericht


    Link naar bericht
    Delen op andere sites
    Gast
    Dit topic is nu gesloten voor nieuwe reacties.
    Log in om dit te volgen  

    • Welkom op PC Helpforum

    • Leden statistieken

      • Aantal leden
        38.984
      • Meeste online
        1.622

      Nieuwste lid
      Sven Onderbeke
      Registratiedatum
    • Gerelateerde inhoud

      • Door SAHAT
        Hallo allemaal, ik ben nieuw hier.
         
        Ik zou graag mijn contextmenu willen opschonen (zie bijlagen), alleen weet ik niet hoe ik dit moet doen.
        Zo zou ik bijvoorbeeld graag "Kopiëren naar", "Snelkoppeling maken",  "Verwijderen" en "Op apparaat weergeven" uit mijn file context menu willen halen. Niet alleen de locaties die de pijltjes weergeven, maar de kopjes zelf ook.
        Uit mijn explorer context menu zou ik graag "Delen met" wilen verwijderen.
        Ook, indien mogelijk, dat een nieuw tekstdocument aanmaken (via explorer context menu) niet via "Nieuw --> Tekstdocument" gaat maar dat "Tekstdocument" gewoon in (explorer) contextmenu staat onder de andere opties.
         
        Ik weet bijna zeker dat dit mogelijk is, maar hoe weet ik niet..
         

         

         

      • Door JDAV
        Ik weet niet of dit ermee te maken heeft maar sinds ik mijn laptop op mijn stagebedrijf heb gebruikt (met de wifi daar) heb ik dit probleem. Ik probeer de scannen, en krijg dan de melding dat het programma is uitgeschakeld. Hopelijk kunnen jullie helpen en wordt het niet erger. Ik gebruik Windows 8.1, 64.
      • Door Frans van wessel
        Geachte heer Karel ,
        Ik heb wimdows 7 ultimate 64 bits geinstalleerd en Systeem herstel en backup wekt niet.
        Heeft u daar een oplossing voor ?
        Met vriendelijke groet,
        Frans v. Wessel
      • Door gwnAndy
        I am going to build a new pc verry soon, my old pc just has all of the files on one 1T hdd but i want to try an (M.2) ssd. I would like to only have the Windows folder on an ssd but not my other folders in the 'C:' drive letter (users, program files, program files (x86), ...) those i would like to have on an 2T hdd but still being in the same 'C:' drive letter, while i have tried many tutorials i can't find anything appropriate for what i would like to achieve. If you know how ik could achieve this please let me know.
         
        tanks in advance
      • Door Indy De Jong
        Ik heb echt geen idee. 
        Al de methode geprobeerd van regback. Loop alleen al vast bij stap 1
         
        c:\windows\system32\config 
          alleen hier zegt hij ..... path not found
        Bij me windows map op me D schijf is geen config file... geen idee..
        Helluuup!  System restore doet het niet startup settings doen het niet go back to previous version doet het niet en startup repair... naja helemaal niet


    Logo

    OVER ONS

    PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

    ×
    ×
    • Nieuwe aanmaken...

    Belangrijke informatie

    We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.