Ga naar inhoud

Zeer Traag Internet


Jeroen1988
 Delen

Aanbevolen berichten

Hallo,

 

Mijn internet werkt de laatste tijd zeer traag!

Ik heb al enkele zaken zelf geprobeerd, zoals stekker van modem uitrekken, cookies verwijderen, telemeter controleren, computer scannen (ccleanr + Malwarebytes). Maar helaas zonder resultaat.
Ik gebruik mozzilla firefox. Windows 8.. Aangezien ik de computer nog geen jaar heb vind ik het zeer raar.

Kan iemand mij hiermee helpen aub?

 

 

Alvast hartelijk bedankt!

Groetjes

Link naar reactie
Delen op andere sites


  • Reacties 27
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Download icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Bekijk ook de instructievideo.

Link naar reactie
Delen op andere sites

Hoi ,

Hierbij de log:

 

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jeroen at 2014-12-10 19:53:56
Microsoft Windows 8.1
System drive C: has 874 GB (93%) free of 936 GB
Total RAM: 8122 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:54:06, on 10/12/2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Jeroen.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCON14/2
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCON14/2
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\UrlAdvisor\klwtbbho.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\runner_avp.exe"
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Toevoegen aan Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ie_banner_deny.htm
O9 - Extra button: Virtueel Toetsenbord - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Controle van URL's - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\UrlAdvisor\klwtbbho.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus-service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service:  HP SimplePass Cachedrv Service (Cachedrv server) - Unknown owner - C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CryptoStorage control service (CSObjectsSrv) - Infowatch - C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem21.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel® ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service:  HP SimplePass Service (omniserv) - Softex Inc. - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13288 bytes

======Listing Processes======





wininit.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe"
"C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe" -r
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe"
dashost.exe {1943db4a-b35d-484e-bea23b0ac8b63494}
"c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
taskhost.exe $(Arg0)
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\WinLogon.exe -SpecialSession
 -hiberboot
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
taskhostex.exe
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe" /hideui
"C:\Program Files\Hewlett-Packard\SimplePass\opbhobroker.exe"
"C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
"C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" -Embedding
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
taskeng.exe {FBC92EAB-305B-44BE-8628-E48D0CCF6111}
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"

C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\Users\Jeroen\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  
C:\Windows\tasks\HPCeeScheduleForJeroen.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe  HPCeeScheduleForJeroen (null)

=========Mozilla firefox=========

ProfilePath - C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default

prefs.js - "browser.search.useDBForOrder" -  "false"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.239 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_239.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.239 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_239.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
belgiumeid@eid.belgium.be

C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default\extensions\
{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-10-14 218776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-02 658624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-04-02 1074368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-02 518336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-10-14 2334928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-02 584384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2014-10-14 153248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-02 542400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-04-02 885952]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-02 428224]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2014-10-14 1729752]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-02 488640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-11-05 7204568]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-10-25 391152]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-10-25 771056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-10-25 769520]
"SimplePass"=C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe [2013-10-14 2758200]
"OPBHOBroker"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2013-10-14 155704]
"OPBHOBrokerDesktop"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2013-10-14 155704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-07-26 2771184]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-11-11 21720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2014-08-08 43816]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2014-08-14 43816]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2014-11-18 1940160]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-25 6480664]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-07-24 77088]
"YouCam Service"=C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2013-09-02 267224]
"AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\runner_avp.exe [2013-11-28 24256]
"HPMessageService"=C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [2013-12-25 1045304]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-05-26 152392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-10-08 623616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=8

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-12-10 19:53:57 ----D---- C:\Program Files\trend micro
2014-12-10 19:53:56 ----D---- C:\rsit
2014-11-21 21:55:53 ----A---- C:\Windows\system32\kerberos.dll
2014-11-21 21:55:52 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-21 21:55:52 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-21 21:55:52 ----A---- C:\Windows\system32\pku2u.dll
2014-11-21 20:03:14 ----D---- C:\AdwCleaner
2014-11-14 22:21:22 ----A---- C:\Windows\system32\drivers\5EEA1047.sys
2014-11-14 22:09:16 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-11-14 22:08:56 ----D---- C:\ProgramData\Malwarebytes
2014-11-14 22:08:56 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-14 22:08:56 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-11-14 22:08:56 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-11-14 22:08:56 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-11-14 21:06:44 ----A---- C:\Windows\system32\mshtml.dll
2014-11-14 21:06:43 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-14 21:06:17 ----A---- C:\Windows\system32\ieframe.dll
2014-11-14 21:06:12 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-14 21:06:07 ----A---- C:\Windows\system32\jscript9.dll
2014-11-14 21:06:05 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-14 21:06:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-14 21:06:04 ----A---- C:\Windows\system32\wininet.dll
2014-11-14 21:06:03 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-14 21:06:03 ----A---- C:\Windows\system32\urlmon.dll
2014-11-14 21:06:03 ----A---- C:\Windows\system32\iertutil.dll
2014-11-14 21:06:02 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-11-14 21:06:02 ----A---- C:\Windows\system32\inetcomm.dll
2014-11-14 21:06:02 ----A---- C:\Windows\system32\actxprxy.dll
2014-11-14 21:06:01 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-11-14 21:06:01 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-14 21:06:00 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-14 21:06:00 ----A---- C:\Windows\system32\jscript.dll
2014-11-14 21:06:00 ----A---- C:\Windows\system32\ieui.dll
2014-11-14 21:05:59 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-14 21:05:59 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-14 21:05:58 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-14 21:05:58 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-14 21:05:58 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-14 21:05:58 ----A---- C:\Windows\system32\vbscript.dll
2014-11-14 21:05:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-14 21:05:56 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-14 21:05:55 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-14 21:05:55 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-14 21:05:55 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-14 21:05:55 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-14 21:05:53 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-11-14 21:05:53 ----A---- C:\Windows\system32\webcheck.dll
2014-11-14 21:05:53 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-14 21:05:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-14 21:05:51 ----A---- C:\Windows\SYSWOW64\hlink.dll
2014-11-14 21:05:51 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-14 21:05:50 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-14 21:05:50 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-14 21:05:50 ----A---- C:\Windows\system32\iesysprep.dll
2014-11-14 21:05:50 ----A---- C:\Windows\system32\iepeers.dll
2014-11-14 21:05:50 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-14 21:05:50 ----A---- C:\Windows\system32\hlink.dll
2014-11-14 21:05:49 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-11-14 21:05:49 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-14 21:05:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-11-14 21:05:49 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-11-14 21:05:49 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-11-14 21:05:49 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-14 21:05:48 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-11-14 21:05:48 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-14 21:05:48 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-14 21:05:48 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-11-14 21:05:48 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-14 21:05:48 ----A---- C:\Windows\system32\inseng.dll
2014-11-14 21:05:47 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-11-14 21:05:47 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-14 21:05:47 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-11-14 21:05:47 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-14 21:05:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-14 21:05:46 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-11-14 21:05:46 ----A---- C:\Windows\system32\occache.dll
2014-11-14 21:05:46 ----A---- C:\Windows\system32\msrating.dll
2014-11-14 21:05:46 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-14 21:05:45 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-14 21:05:45 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-11-14 21:05:45 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-11-14 21:05:45 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-14 21:05:45 ----A---- C:\Windows\system32\pngfilt.dll
2014-11-14 21:05:45 ----A---- C:\Windows\system32\licmgr10.dll
2014-11-14 21:05:45 ----A---- C:\Windows\system32\imgutil.dll
2014-11-14 21:05:44 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-11-14 21:05:44 ----A---- C:\Windows\SYSWOW64\url.dll
2014-11-14 21:05:44 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-11-14 21:05:44 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-14 21:05:44 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-14 21:05:44 ----A---- C:\Windows\system32\iernonce.dll
2014-11-14 21:05:43 ----A---- C:\Windows\system32\wextract.exe
2014-11-14 21:05:43 ----A---- C:\Windows\system32\url.dll
2014-11-14 21:05:43 ----A---- C:\Windows\system32\iesetup.dll
2014-11-14 21:05:43 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-11-14 21:05:42 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-11-14 21:05:42 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-11-14 21:05:42 ----A---- C:\Windows\system32\mshta.exe
2014-11-14 21:05:42 ----A---- C:\Windows\system32\msfeedssync.exe
2014-11-14 21:05:42 ----A---- C:\Windows\system32\iexpress.exe
2014-11-12 19:21:14 ----A---- C:\Windows\system32\generaltel.dll
2014-11-12 19:21:14 ----A---- C:\Windows\system32\devinv.dll
2014-11-12 19:21:14 ----A---- C:\Windows\system32\aepic.dll
2014-11-12 19:21:14 ----A---- C:\Windows\system32\aepdu.dll
2014-11-12 19:21:14 ----A---- C:\Windows\system32\aeinv.dll
2014-11-12 19:19:28 ----A---- C:\Windows\system32\shell32.dll
2014-11-12 19:19:27 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-11-12 19:19:27 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-11-12 19:19:23 ----A---- C:\Windows\system32\twinui.dll
2014-11-12 19:19:23 ----A---- C:\Windows\system32\SettingsHandlers.dll
2014-11-12 19:19:22 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-11-12 19:19:22 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2014-11-12 19:19:22 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2014-11-12 19:19:22 ----A---- C:\Windows\system32\MFMediaEngine.dll
2014-11-12 19:19:22 ----A---- C:\Windows\system32\localspl.dll
2014-11-12 19:19:22 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-11-12 19:19:21 ----AC---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-11-12 19:19:21 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-11-12 19:19:21 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2014-11-12 19:19:21 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2014-11-12 19:19:21 ----A---- C:\Windows\system32\WsmSvc.dll
2014-11-12 19:19:21 ----A---- C:\Windows\system32\win32spl.dll
2014-11-12 19:19:21 ----A---- C:\Windows\system32\puiobj.dll
2014-11-12 19:19:21 ----A---- C:\Windows\system32\drivers\netio.sys
2014-11-12 19:19:20 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-11-12 19:19:20 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2014-11-12 19:19:20 ----A---- C:\Windows\system32\untfs.dll
2014-11-12 19:19:20 ----A---- C:\Windows\system32\FXSCOMEX.dll
2014-11-12 19:19:20 ----A---- C:\Windows\system32\FXSAPI.dll
2014-11-12 19:19:20 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-11-12 19:18:51 ----A---- C:\Windows\SYSWOW64\winshfhc.dll
2014-11-12 19:18:51 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-11-12 19:18:51 ----A---- C:\Windows\system32\winshfhc.dll
2014-11-12 19:18:51 ----A---- C:\Windows\system32\user32.dll
2014-11-12 19:18:51 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2014-11-12 19:18:51 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2014-11-12 19:18:51 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2014-11-12 19:17:43 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 19:17:43 ----A---- C:\Windows\system32\msi.dll
2014-11-12 19:17:43 ----A---- C:\Windows\system32\authui.dll
2014-11-12 19:17:42 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-11-12 19:17:42 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-11-12 19:17:42 ----A---- C:\Windows\system32\msihnd.dll
2014-11-12 19:17:42 ----A---- C:\Windows\system32\consent.exe
2014-11-12 19:17:42 ----A---- C:\Windows\system32\appinfo.dll
2014-11-12 19:15:44 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 19:15:44 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2014-11-12 19:15:44 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 19:15:44 ----A---- C:\Windows\system32\ncryptsslp.dll
2014-11-12 19:15:44 ----A---- C:\Windows\system32\dpapisrv.dll
2014-11-12 19:05:52 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 19:05:52 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-11-12 19:05:52 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 19:05:52 ----A---- C:\Windows\system32\rfxvmt.dll
2014-11-12 19:05:52 ----A---- C:\Windows\system32\rdpudd.dll
2014-11-12 19:05:52 ----A---- C:\Windows\system32\rdpcorets.dll
2014-11-12 19:05:52 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 19:05:52 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 19:05:52 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-11-12 19:05:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 19:05:52 ----A---- C:\Windows\system32\drivers\cng.sys
2014-11-12 19:05:52 ----A---- C:\Windows\system32\certcli.dll
2014-11-12 19:05:52 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 19:03:36 ----A---- C:\Windows\system32\wuaueng.dll
2014-11-12 19:03:36 ----A---- C:\Windows\system32\wuapi.dll
2014-11-12 19:03:35 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-11-12 19:03:35 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-11-12 19:03:35 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-11-12 19:03:35 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-11-12 19:03:35 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-11-12 19:03:35 ----A---- C:\Windows\system32\wuwebv.dll
2014-11-12 19:03:35 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-11-12 19:03:35 ----A---- C:\Windows\system32\wups2.dll
2014-11-12 19:03:35 ----A---- C:\Windows\system32\wups.dll
2014-11-12 19:03:35 ----A---- C:\Windows\system32\wudriver.dll
2014-11-12 19:03:35 ----A---- C:\Windows\system32\wucltux.dll
2014-11-12 19:03:35 ----A---- C:\Windows\system32\wuauclt.exe
2014-11-12 19:03:35 ----A---- C:\Windows\system32\wuapp.exe
2014-11-12 19:03:35 ----A---- C:\Windows\system32\wuaext.dll
2014-11-12 19:01:41 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 19:01:41 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-12 18:50:21 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 18:50:21 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 18:50:05 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 18:50:05 ----A---- C:\Windows\system32\packager.dll
2014-11-12 18:50:03 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 18:45:34 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 18:45:34 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 18:45:34 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 18:45:34 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 18:45:34 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 18:45:34 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 18:45:34 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 18:45:34 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 18:45:34 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-12 18:45:34 ----A---- C:\Windows\system32\audiodg.exe

======List of files/folders modified in the last 1 month======

2014-12-10 19:53:57 ----RD---- C:\Program Files
2014-12-10 19:52:46 ----D---- C:\Windows\Prefetch
2014-12-10 19:49:30 ----D---- C:\Windows\Temp
2014-12-10 19:47:16 ----D---- C:\Windows\system32\config
2014-12-10 19:42:00 ----D---- C:\ProgramData\Kaspersky Lab
2014-12-10 19:39:36 ----D---- C:\Windows\system32\sru
2014-12-09 18:31:24 ----SHD---- C:\System Volume Information
2014-12-09 18:04:22 ----D---- C:\Windows\AppReadiness
2014-12-09 17:57:26 ----HD---- C:\Program Files\WindowsApps
2014-12-07 22:05:11 ----D---- C:\Windows\WinSxS
2014-12-07 21:58:44 ----D---- C:\Windows\Microsoft.NET
2014-12-07 21:58:11 ----D---- C:\Windows\debug
2014-12-07 21:57:49 ----RSD---- C:\Windows\assembly
2014-12-07 21:36:04 ----D---- C:\Windows
2014-12-07 21:35:16 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-12-07 21:28:52 ----D---- C:\Program Files (x86)\Steam
2014-11-28 13:20:18 ----D---- C:\Windows\Inf
2014-11-28 09:47:36 ----RD---- C:\Windows\System32
2014-11-28 09:47:36 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-26 20:20:01 ----D---- C:\Windows\CbsTemp
2014-11-26 20:19:59 ----D---- C:\Windows\SysWOW64
2014-11-26 20:05:00 ----D---- C:\Windows\Tasks
2014-11-26 20:05:00 ----D---- C:\Windows\system32\Tasks
2014-11-21 22:06:18 ----SHD---- C:\Windows\Installer
2014-11-21 22:06:13 ----D---- C:\Windows\Hewlett-Packard
2014-11-21 22:06:01 ----D---- C:\SWSetup
2014-11-21 21:57:47 ----D---- C:\Program Files (x86)\CyberLink
2014-11-21 21:57:32 ----D---- C:\ProgramData\CyberLink
2014-11-21 21:48:26 ----D---- C:\Windows\SoftwareDistribution
2014-11-21 20:34:26 ----D---- C:\Program Files\Fotoservice
2014-11-21 20:17:05 ----D---- C:\Windows\system32\NDF
2014-11-21 20:04:46 ----RD---- C:\Program Files (x86)
2014-11-21 19:42:25 ----D---- C:\Windows\Logs
2014-11-21 09:12:28 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-11-21 09:11:04 ----D---- C:\Program Files\Microsoft Office 15
2014-11-20 21:51:37 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-14 23:00:56 ----HD---- C:\ProgramData
2014-11-14 23:00:55 ----HD---- C:\Windows\ELAMBKUP
2014-11-14 23:00:54 ----D---- C:\Windows\system32\drivers
2014-11-14 22:46:27 ----D---- C:\Windows\system32\catroot
2014-11-14 22:11:21 ----D---- C:\Windows\rescache
2014-11-14 22:09:34 ----D---- C:\Windows\system32\DriverStore
2014-11-14 21:54:04 ----D---- C:\Users\Jeroen\AppData\Roaming\CyberLink
2014-11-14 21:37:56 ----D---- C:\Windows\SYSWOW64\migration
2014-11-14 21:37:56 ----D---- C:\Windows\system32\migration
2014-11-14 21:37:56 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-14 21:37:55 ----D---- C:\Program Files\Internet Explorer
2014-11-14 21:34:46 ----D---- C:\Windows\SYSWOW64\config
2014-11-14 19:12:50 ----D---- C:\Windows\system32\LogFiles
2014-11-14 10:21:41 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-11-14 10:21:40 ----D---- C:\Windows\system32\nl-NL
2014-11-14 10:21:39 ----SD---- C:\Windows\system32\CompatTel
2014-11-14 10:21:38 ----RD---- C:\Windows\ToastData
2014-11-14 10:21:36 ----RD---- C:\Windows\ImmersiveControlPanel
2014-11-14 10:21:36 ----D---- C:\Windows\apppatch
2014-11-14 10:21:34 ----D---- C:\Program Files\Windows Defender
2014-11-14 10:21:34 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-14 10:19:46 ----D---- C:\Windows\system32\wbem
2014-11-14 10:18:51 ----D---- C:\Windows\system32\MRT
2014-11-14 10:15:42 ----A---- C:\Windows\system32\MRT.exe
2014-11-12 18:31:00 ----D---- C:\Windows\system32\catroot2
2014-11-12 17:51:35 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 CSCrySec;InfoWatch Encrypt Sector Library driver; C:\Windows\system32\DRIVERS\CSCrySec.sys [2013-09-25 98504]
R0 hpdskflt;@oem21.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-16 644968]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2014-04-02 458336]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 CSVirtualDiskDrv;InfoWatch Virtual Disk driver; C:\Windows\system32\DRIVERS\CSVirtualDiskDrv.sys [2013-09-25 67784]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2014-06-13 627264]
R1 KLIM6;@oem26.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2014-06-13 30304]
R1 klwfp;klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [2013-11-28 50448]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2013-11-28 178448]
R3 Accelerometer;@oem21.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2013-07-23 43320]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 clwvd;@oem23.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2013-03-05 41408]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-10-08 4187648]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-11-06 3707864]
R3 iwdbus;@oem15.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2013-10-03 27032]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2013-11-28 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2013-11-28 29280]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-10-01 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-12-10 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-10-01 64216]
R3 MEIx64;@oem7.inf,%TEE_SvcDesc%;Intel® Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-04 99288]
R3 netr28x;@oem27.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-11-26 2483376]
R3 rtbth;@oem24.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\Windows\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@oem11.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-08-15 830680]
R3 RTSPER;@oem9.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-08-22 429272]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-07-26 34544]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-07-26 524016]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S0 klelam;klelam; C:\Windows\system32\DRIVERS\klelam.sys [2013-11-28 29792]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\Windows\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 intaud_WaveExtensible;@oem14.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-10-03 39320]
S3 IntcDAud;@oem12.inf,%IntcDAud.SvcDesc%;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-10-08 449528]
S3 NuidFltr;@oem28.inf,%NuidFltr.SvcDesc%;NUID filter driver; C:\Windows\System32\drivers\NuidFltr.sys [2007-08-31 20392]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 RSUSBCCID;@oem33.inf,%USBCCID.DeviceDesc%;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys [2009-08-10 50176]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys []
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2013-07-26 30448]
S3 USBAAPL64;@oem29.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2013-03-18 54784]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2013-08-22 37768]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336]
R2 AVP;Kaspersky Anti-Virus-service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [2013-11-28 356128]
R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 Cachedrv server; HP SimplePass Cachedrv Service; C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe [2013-10-14 109568]
R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-10-30 2443960]
R2 CSObjectsSrv;CryptoStorage control service; C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [2013-09-25 818888]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-12-16 92160]
R2 hpsrv;@oem21.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 HPWMISVC;HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [2013-12-25 1039160]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-04-24 15720]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 Intel® ME Service;Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2013-09-04 131544]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]
R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2013-09-04 390616]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-10-01 1871160]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-10-01 968504]
R2 omniserv; HP SimplePass Service; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [2013-10-14 87552]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-10-17 289496]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-23 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-09-10 1129760]
R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-05-26 641352]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-26 267440]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-08-10 50784]
S3 cphs;Intel® Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-10-25 279024]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-03-11 136120]
S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-10 114288]
S3 ose;Office  Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-02-01 150600]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]

-----------------EOF-----------------
 

Link naar reactie
Delen op andere sites


Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default\extensions\58e3c1c9-2dc1-4762-bd45-1df9da9d0820};fs
emptyfolderscheck;delete
startupall;
filesrcm;
  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.
Zoek.exe logbestand plaatsen
  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
aangepast door kape
Link naar reactie
Delen op andere sites

Hoi ,

 

Hierbij het logbestand van zoek-result.log

 

Zoek.exe v5.0.0.0 Updated 14-December-2014
Tool run by Jeroen on di 16/12/2014 at 22:00:55,55.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jeroen\Desktop\zoek.exe [scan current user] [script inserted] [Checkboxes used]

==== System Restore Info ======================

16/12/2014 22:03:50 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\Fotoservice deleted successfully
C:\Program Files\log deleted successfully
C:\Users\Jeroen\AppData\Roaming\hpqlog deleted successfully
C:\Users\Jeroen\AppData\Local\Adobe deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2106953164-1313762287-1577351424-1001\Software\Microsoft\Internet Explorer\SearchScopes\{617D2AE1-A54B-4F48-8F30-8C4071DF064D} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default

user.js not found
---- Lines {58e3c1c9-2dc1-4762-bd45-1df9da9d0820} removed from prefs.js ----
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.daysPassed", "{\"t2d\":true,\"t10d\":true,\"t7d\":true}");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.installtime", "1415997277.896");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.isFirstRun", "false");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.is_bundle", "true");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.lastC", "{\"sm\":394101,\"li\":394101,\"mo\":393955}");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.last_version", "");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.moEnabled", true);
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.server", "https://s7902.webovernet.com");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.src", "7902");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.toolbarButtonInstalled", true);
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.user_id", "A89A8347-BB44-4C16-8250-F08285E1206A");
---- Lines {58e3c1c9-2dc1-4762-bd45-1df9da9d0820} modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"url_advisor@kaspersky.com\":{\"descriptor\":\"C:\\\\Program Files
---- Lines {d6b1a471-3776-48de-90e2-a0d90de70fd3} removed from prefs.js ----
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.daysPassed", "{\"t2d\":true}");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.installtime", "1415997277.896");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.is_bundle", "true");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.isFirstRun", "false");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.last_version", "");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.lastC", "{\"sm\":393333,\"li\":393425,\"mo\":393425}");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.moEnabled", true);
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.server", "https://s7902.webovernet.com");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.src", "7902");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.toolbarButtonInstalled", true);
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.user_id", "A89A8347-BB44-4C16-8250-F08285E1206A");
---- FireFox user.js and prefs.js backups ----

prefs_20141612_2209_.backup

==== Deleting Files \ Folders ======================

C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default\extensions\58e3c1c9-2dc1-4762-bd45-1df9da9d0820} not found
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default\extensions\{58e3c1c9-2dc1-4762-bd45-1df9da9d0820} deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Jeroen\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-12-13 09:19:01    A9B598B04606F9869C42728FE95CBC7C    1489072    ----a-w-    C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-13 09:18:55    220505B0B3E96C857DD01729AF0CD369    19749376    ----a-w-    C:\Windows\SysWOW64\mshtml.dll
2014-12-13 09:18:52    B59E370277EDB6643083B62297175628    12836864    ----a-w-    C:\Windows\SysWOW64\ieframe.dll
2014-12-13 09:18:48    F728E7E9937117E0F32F39840EB6D737    4299264    ----a-w-    C:\Windows\SysWOW64\jscript9.dll
2014-12-13 09:18:48    F34F6DC38A21FCDBB50CDD1EE97B1EA3    1307136    ----a-w-    C:\Windows\SysWOW64\urlmon.dll
2014-12-13 09:18:48    5E4E0E43E0A5BF9F089696DFA7A3D677    1888256    ----a-w-    C:\Windows\SysWOW64\wininet.dll
2014-12-13 09:18:48    01777AB557997E98691E322225314E57    2277888    ----a-w-    C:\Windows\SysWOW64\iertutil.dll
2014-12-13 09:18:47    543ADCEA31CF9C2B4EEB900D4AAFD0F9    2052096    ----a-w-    C:\Windows\SysWOW64\inetcpl.cpl
2014-12-13 09:18:47    41AFA61E061E98E97272AC02184C8C2C    710144    ----a-w-    C:\Windows\SysWOW64\ieapfltr.dll
2014-12-13 09:18:47    37F078B5B435AFC6BF316F2AD14B469A    501248    ----a-w-    C:\Windows\SysWOW64\vbscript.dll
2014-12-13 09:18:46    F25284C763E728E4DAC248C211D1FC5B    76288    ----a-w-    C:\Windows\SysWOW64\mshtmled.dll
2014-12-13 09:18:46    D7A98A4CEA2E89F544065A00BF37FC10    688640    ----a-w-    C:\Windows\SysWOW64\msfeeds.dll
2014-12-13 09:18:46    86181845803967FC51B64119E80FC18C    340992    ----a-w-    C:\Windows\SysWOW64\html.iec
2014-12-13 09:18:46    713407DA59A9DBE5BD64A17D7A267DA1    326656    ----a-w-    C:\Windows\SysWOW64\iedkcs32.dll
2014-12-13 09:18:46    69AC6FD5B0B4DC963723E1EBDEE10A2C    285696    ----a-w-    C:\Windows\SysWOW64\dxtrans.dll
2014-12-13 09:18:46    476900A8699F5C3D954ADD4A35D33F89    230400    ----a-w-    C:\Windows\SysWOW64\webcheck.dll
2014-12-13 09:18:45    C6941899E6B0A1893D2D5A89241A43B6    661504    ----a-w-    C:\Windows\SysWOW64\jscript.dll
2014-12-13 09:18:45    98F2784FC4A4A80CE20016C6281834EE    880128    ----a-w-    C:\Windows\SysWOW64\inetcomm.dll
2014-12-13 09:18:45    29CED1A4777A43526A4ED8A7B6936883    64000    ----a-w-    C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-13 09:18:45    0E4D9A13C7C6C8FC3ACCF1C8C28DE200    128000    ----a-w-    C:\Windows\SysWOW64\iepeers.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-12-13 09:19:01    418B5117F187DFFD96C52325CA0DF153    1762840    ----a-w-    C:\Windows\Sysnative\WindowsCodecs.dll
2014-12-13 09:18:56    D478A4CF07FB8ADF72FB16B88E8030B8    25059840    ----a-w-    C:\Windows\Sysnative\mshtml.dll
2014-12-13 09:18:53    556D271F4243B273EDA353512BF3608A    14412800    ----a-w-    C:\Windows\Sysnative\ieframe.dll
2014-12-13 09:18:50    8D64466AD12CA5677CD0099C43C58569    6039552    ----a-w-    C:\Windows\Sysnative\jscript9.dll
2014-12-13 09:18:49    4AF089160FE082E5EA5C4AA72782DCA2    2358272    ----a-w-    C:\Windows\Sysnative\wininet.dll
2014-12-13 09:18:48    E7A2061ADF0F4D430FECDA1E8D6B7BA6    1548288    ----a-w-    C:\Windows\Sysnative\urlmon.dll
2014-12-13 09:18:48    982B871A25B5078093FAD82D0AB0E3FC    2885120    ----a-w-    C:\Windows\Sysnative\iertutil.dll
2014-12-13 09:18:47    EFBA893429814EA3244C87C2D1256618    800768    ----a-w-    C:\Windows\Sysnative\ieapfltr.dll
2014-12-13 09:18:47    3FE71E2A5BD3EC652E64FC8BCEFEDD2C    2125312    ----a-w-    C:\Windows\Sysnative\inetcpl.cpl
2014-12-13 09:18:46    DDE455CF1B9F43775A53A4E577DFDC54    373760    ----a-w-    C:\Windows\Sysnative\iedkcs32.dll
2014-12-13 09:18:46    DB10D681314714E0D4623E4C0CF6654A    92160    ----a-w-    C:\Windows\Sysnative\mshtmled.dll
2014-12-13 09:18:46    D248949FCF2B72C1FD4EC15DA92065C0    262144    ----a-w-    C:\Windows\Sysnative\webcheck.dll
2014-12-13 09:18:46    62CFEE2A516C68540486EBF26F18ED4C    145408    ----a-w-    C:\Windows\Sysnative\iepeers.dll
2014-12-13 09:18:46    39B512C643812FC2D4843C0D4206C759    718848    ----a-w-    C:\Windows\Sysnative\ie4uinit.exe
2014-12-13 09:18:46    284070B045F8B11B4A1FB32F72023038    417280    ----a-w-    C:\Windows\Sysnative\html.iec
2014-12-13 09:18:46    1D294810D3A8A8F722E86AA001F54DCC    580096    ----a-w-    C:\Windows\Sysnative\vbscript.dll
2014-12-13 09:18:46    17A157A4225CF562202AC71DB8103177    88064    ----a-w-    C:\Windows\Sysnative\MshtmlDac.dll
2014-12-13 09:18:46    14BA910E7731FC84EB85328BD0F1EE81    800768    ----a-w-    C:\Windows\Sysnative\msfeeds.dll
2014-12-13 09:18:46    0AF0AEF0BA9EF6169E61C78504DCAE55    316928    ----a-w-    C:\Windows\Sysnative\dxtrans.dll
2014-12-13 09:18:45    A41AC7E8D142FD0ECF6EF7F1BB63D478    812544    ----a-w-    C:\Windows\Sysnative\jscript.dll
2014-12-13 09:18:45    507DC5EE1363EEB7D986B1026DF4E39D    1032704    ----a-w-    C:\Windows\Sysnative\inetcomm.dll
====== C:\Windows\Sysnative\drivers =====
2014-12-13 09:19:02    B02118A776C368F7EE1A8CC81378D265    153920    ----a-w-    C:\Windows\Sysnative\drivers\dumpsd.sys
2014-12-13 09:19:02    A770340FC02B999EF0DE6C2A6BC8437C    39744    ----a-w-    C:\Windows\Sysnative\drivers\intelpep.sys
2014-12-13 09:19:02    7B7C482CF48E6EE33664340D1A78E6FE    238912    ----a-w-    C:\Windows\Sysnative\drivers\sdbus.sys
2014-12-13 09:19:02    24A8DFC07E4BAF29AEA26E383D4CC886    86336    ----a-w-    C:\Windows\Sysnative\drivers\pdc.sys
====== C:\Windows\Tasks ======
2014-11-21 19:11:50    2C7FB55C7CBD5CB449849EB748E5A5A7    360    ----a-w-    C:\Windows\Tasks\HPCeeScheduleForJeroen.job
2014-11-21 19:11:50    1E79EBC86132C34BE5A256A7778B5019    3176    ----a-w-    C:\Windows\Sysnative\Tasks\HPCeeScheduleForJeroen
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-12-10 18:53:57    --------    d-----w-    C:\Program Files\trend micro
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\Jeroen\AppData\Roaming ======
2014-11-21 19:15:45    --------    d-sh--w-    C:\Users\Jeroen\AppData\Local\EmieBrowserModeList
====== C:\Users\Jeroen ======
2014-12-10 18:51:33    8045ABB21A3BDD66A48E1ED5C0F0EF6A    1222144    ----a-w-    C:\Users\Jeroen\Desktop\RSITx64.exe

====== C: exe-files ==
2014-12-16 08:22:01    C44E931F38BFECBED0F5141DC9D6CDCC    273008    ----a-w-    C:\Users\tif_s_000\AppData\Local\Mozilla\updates\E7CF176E110C211B\updates\0\updater.exe
2014-12-13 09:18:46    39B512C643812FC2D4843C0D4206C759    718848    ----a-w-    C:\Windows\System32\ie4uinit.exe
2014-12-10 18:53:58    9A2347903D6EDB84C10F288BC0578C1C    388608    ----a-w-    C:\Program Files\trend micro\Jeroen.exe
2014-12-10 18:51:33    8045ABB21A3BDD66A48E1ED5C0F0EF6A    1222144    ----a-w-    C:\Users\Jeroen\Desktop\RSITx64.exe
=== C: other files ==
2014-12-13 09:19:02    B02118A776C368F7EE1A8CC81378D265    153920    ----a-w-    C:\Windows\System32\drivers\dumpsd.sys
2014-12-13 09:19:02    A770340FC02B999EF0DE6C2A6BC8437C    39744    ----a-w-    C:\Windows\System32\drivers\intelpep.sys
2014-12-13 09:19:02    7B7C482CF48E6EE33664340D1A78E6FE    238912    ----a-w-    C:\Windows\System32\drivers\sdbus.sys
2014-12-13 09:19:02    24A8DFC07E4BAF29AEA26E383D4CC886    86336    ----a-w-    C:\Windows\System32\drivers\pdc.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-2106953164-1313762287-1577351424-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AccelerometerSysTrayApplet"="C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe"
"YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s"
"AVP"="C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\runner_avp.exe"
"HPMessageService"="C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"SimplePass"="C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe /hideui"
"OPBHOBroker"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe"
"OPBHOBrokerDesktop"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [10/12/2014 20:10]
C:\Windows\tasks\HPCeeScheduleForJeroen.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [15/07/2011 04:43]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\Apple Diagnostics" [C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CLMLSvc_P2G8" [C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe]
"C:\Windows\SysNative\tasks\CLVDLauncher" [C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForJeroen" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{664F8053-3839-484B-8B03-D1B09CBD86B6}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{6A6989B4-77A7-4975-926B-A41B047BBC07}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" [C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default
- Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com
- Undetermined - anti_banner@kaspersky.com
- Undetermined - {58e3c1c9-2dc1-4762-bd45-1df9da9d0820}

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Jeroen\AppData\Roaming\Mozilla\Firefox\Profiles\02g5u7e6.default
9860727E477F17B88E39AF8B69B0407A    - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll -    Shockwave Flash
D6ED6EB98E759460AD8C66DE23070132    - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll -    Microsoft Office 2013
18CF51689186AEB9D1D149AEB0E92D03    - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL -    Microsoft Office 2013
F7C99E18CDC7E8D45499856770A4110F    - C:\Users\Jeroen\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll -    Unity Player
0C0C5C207121C7A78414A8250E8E099A    - C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll -    Shockwave for Director / Shockwave for Director


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dchlnpcodkpfdpacogkljefecpegganj - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\urladvisor.crx[28/11/2013 12:06]
hakdifolhalapjijoafobooafbilfakh - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\online_banking_chrome.crx[28/11/2013 12:06]
hghkgaeecgjhjkannahfamoehjmkjail - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\content_blocker_chrome.crx[28/11/2013 12:03]
jagncdcchgajhfhijbbhecadmaiegcmh - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\virtkbd.crx[28/11/2013 12:03]
lpoimibckejjdjcfbdnajaicnklhfplh - https://chrome.google.com/webstore/detail/lpoimibckejjdjcfbdnajaicnklhfplh[]
pjldcfjmnllhmgjclecdnfampinooman - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\ab.crx[28/11/2013 12:06]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS"
{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay  Url="http://rover.ebay.com/rover/1/1553-29906-12136-18/4"

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jeroen\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Jeroen\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Jeroen\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Jeroen\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Jeroen\AppData\Local\Mozilla\Firefox\Profiles\02g5u7e6.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=32 folders=16 7558128 bytes)

==== Empty Temp Folders ======================

C:\Users\Jeroen\AppData\Local\Temp will be emptied at reboot
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Jeroen\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on di 16/12/2014 at 22:17:00,54 ======================
 

Link naar reactie
Delen op andere sites

Download adwcleaner.pngAdwCleaner by Xplode naar het bureaublad.

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik op Scan.
  • Klik vervolgens op Clean.
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.

Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[s0].txt.

Logbestand plaatsen

  • Voeg het logbestand met de naam C:\AdwCleaner\AdwCleaner[s0].txt als bijlage toe aan het volgende bericht.
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Link naar reactie
Delen op andere sites


Hallo,

 

Hierbij het logbestand van adcleaner:

 

# AdwCleaner v4.105 - Rapport aangemaakt 17/12/2014 op 19:18:36
# Laatste Update 08/12/2014 door Xplode
# Database : 2014-12-16.1 [Live]
# Besturingssysteem : Windows 8.1  (64 bits)
# Gebruikersnaam : Jeroen - BREUGELMANS
# Gestart vanuit : C:\Users\Jeroen\Desktop\adwcleaner_4.105.exe
# Optie : Verwijderen

***** [ Services ] *****


***** [ Bestanden / Mappen ] *****


***** [ Taken ] *****


***** [ Snelkoppelingen ] *****


***** [ Register ] *****

Sleutel Verwijderd : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v33.1 (x86 nl)


*************************

AdwCleaner[R0].txt - [2170 octets] - [21/11/2014 20:03:19]
AdwCleaner[R1].txt - [1117 octets] - [17/12/2014 19:15:51]
AdwCleaner[s0].txt - [1864 octets] - [21/11/2014 20:04:46]
AdwCleaner[s1].txt - [1038 octets] - [17/12/2014 19:18:36]

########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [1098 octets] ##########
 

Link naar reactie
Delen op andere sites

  • 2 weken later...
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen


×
×
  • Nieuwe aanmaken...