Mededeling

Collapse
No announcement yet.

laptop met een gekaapte browser

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • laptop met een gekaapte browser

    Zoals de titel het al zegt de browsers doen\deden niet meer wat ze moeten doen.
    Bijna alles werkt weer behalve 1 site die is niet te openen vanaf deze pc.
    mobile telefoon en tablet willen wel naar die site.
    het gaat dan om deze site www.propart-international.com/

    de logjes die in de uitleg gevraagd worden om te kijken of er nog iets vreemds te zien is staan hieronder.

    DDS (Ver_2012-11-20.01) - NTFS_AMD64
    Internet Explorer: 11.0.14393.0 BrowserJavaVersion: 11.121.2
    Run by Alfons Nijland at 7:47:06 on 2017-03-07
    Microsoft Windows 10 Home 10.0.14393.0.1252.31.1043.18.8092.5843 [GMT 1:00]
    .
    AV: Avira Antivirus *Enabled/Updated* {B3F630BD-538D-1B4A-14FA-14B63235278F}
    AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Avira Antivirus *Enabled/Updated* {0897D159-75B7-14C4-2E4A-2FC449B26D32}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\WINDOWS\system32\svchost.exe -k DcomLaunch
    C:\WINDOWS\system32\svchost.exe -k RPCSS
    C:\WINDOWS\system32\svchost.exe -k LocalService
    C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\WINDOWS\system32\svchost.exe -k netsvcs
    C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
    C:\WINDOWS\system32\igfxCUIService.exe
    C:\WINDOWS\system32\dashost.exe
    C:\WINDOWS\System32\svchost.exe -k NetworkService
    C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
    C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
    C:\WINDOWS\System32\spoolsv.exe
    C:\Program Files (x86)\Avira\Antivirus\sched.exe
    C:\Program Files (x86)\Avira\Antivirus\avguard.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\WINDOWS\System32\svchost.exe -k utcsvc
    C:\Windows\system32\EscSvc64.exe
    C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe
    C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
    C:\Program Files\Intel\iCLS Client\HeciServer.exe
    C:\Program Files\Hercules\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE
    C:\Windows\SysWOW64\OSDSrv\OSDSrv.exe
    C:\Program Files (x86)\Microsoft SQL Server\MSSQL\Binn\sqlservr.exe
    C:\WINDOWS\system32\svchost.exe -k appmodel
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
    C:\WINDOWS\system32\svchost.exe -k SDRSVC
    c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    C:\WINDOWS\System32\dwm.exe
    C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
    C:\WINDOWS\system32\taskhostw.exe
    C:\WINDOWS\system32\sihost.exe
    C:\Windows\System32\RuntimeBroker.exe
    C:\Program Files (x86)\TeamViewer\TeamViewer.exe
    C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\igfxEM.exe
    C:\WINDOWS\system32\igfxHK.exe
    C:\WINDOWS\system32\igfxTray.exe
    C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
    C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
    C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe
    C:\Program Files (x86)\TeamViewer\tv_w32.exe
    C:\Program Files (x86)\TeamViewer\tv_x64.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
    C:\Program Files\Hercules\Audio\DJ Console Series\HDJSeriesCPL.exe
    C:\Users\Alfons Nijland\AppData\Local\Microsoft\BingSvc\BingSvc.exe
    C:\Windows\SysWOW64\OSDSrv\OSDApp.exe
    C:\WINDOWS\system32\wbem\unsecapp.exe
    C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
    C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
    C:\Program Files\CCleaner\CCleaner64.exe
    C:\WINDOWS\System32\fontdrvhost.exe
    C:\WINDOWS\system32\ApplicationFrameHost.exe
    C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
    C:\WINDOWS\system32\SearchIndexer.exe
    c:\program files (x86)\teamviewer\TeamViewer_Desktop.exe
    C:\WINDOWS\system32\AUDIODG.EXE
    C:\Windows\System32\smartscreen.exe
    C:\WINDOWS\system32\SearchProtocolHost.exe
    C:\WINDOWS\system32\SearchFilterHost.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    C:\WINDOWS\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.com/
    uSearch Bar = Preserve
    uDefault_Page_URL = www.google.com
    mStart Page = hxxp://www.google.com/
    mSearch Page = hxxp://www.google.com/?q={searchTerms}
    mDefault_Page_URL = hxxp://www.google.com/
    mDefault_Search_URL = hxxp://www.google.com/
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
    TB: <No Name>: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - LocalServer32 - <no file>
    EB: F12 Developer Tools: {28BCCB9A-E66B-463C-82A4-09F320DE94D7} - C:\Windows\SysWOW64\F12\F12App.dll
    uRun: [DymoQuickPrint] "C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe" /startup
    uRun: [iCloudServices] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
    uRun: [BingSvc] C:\Users\Alfons Nijland\AppData\Local\Microsoft\BingSvc\BingSvc.exe
    uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
    uRun: [World of Tanks] "C:\Games\World_of_Tanks\WargamingGameUpdater.exe"
    mRun: [OSDAPP] C:\Windows\SysWOW64\OSDSrv\OSDApp.exe
    mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    mRun: [Hercules DJ Series 2] C:\Program Files\Hercules\Audio\DJ USB Audio\HDJSeries2CPL.exe /boot
    mRun: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
    mRun: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mExplorerRun: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\SERVIC~1.LNK - C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
    mPolicies-System: DSCAutomationHostEnabled = dword:2
    IE: &Verzenden naar OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
    IE: E&xporteren naar Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
    IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    Trusted Zone: propart-international.com
    TCP: NameServer = 89.101.251.228 89.101.251.229
    TCP: Interfaces\{662c07e2-f50f-4273-ad56-bbbb31b087ac} : DHCPNameServer = 89.101.251.228 89.101.251.229
    TCP: Interfaces\{662c07e2-f50f-4273-ad56-bbbb31b087ac}\A5967676F66403132393 : DHCPNameServer = 89.101.251.228 89.101.251.229
    TCP: Interfaces\{693ae082-34a4-4d94-b017-8f48b20c6558} : DHCPNameServer = 89.101.251.228 89.101.251.229
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
    Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
    SSODL: WebCheck - <orphaned>
    SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
    LSA: Security Packages = ""
    mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
    CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
    x64-mStart Page = hxxp://www.google.com/
    x64-mSearch Page = hxxp://www.google.com/?q={searchTerms}
    x64-mDefault_Page_URL = hxxp://www.google.com/
    x64-mDefault_Search_URL = hxxp://www.google.com/
    x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
    x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
    x64-Run: [RtHDVBg_Dolby] "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
    x64-Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
    x64-Run: [Hercules DJ Series TrayAgent] C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe /boot
    x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    x64-ExplorerRun: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
    x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
    x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
    x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
    x64-SSODL: WebCheck - <orphaned>
    x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
    x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
    x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
    x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Alfons Nijland\AppData\Roaming\Mozilla\Firefox\Profiles\2gyiyp57.default\
    FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
    FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
    FF - plugin: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
    FF - plugin: C:\Program Files (x86)\DYMO\DYMO Label Software\Framework\npDYMOLabelFramework.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
    FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
    FF - plugin: C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npdeployJava1.dll
    FF - plugin: C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrlui.dll
    FF - plugin: C:\Users\Alfons Nijland\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 avusbflt;avusbflt;C:\WINDOWS\System32\drivers\avusbflt.sys [2017-1-30 48584]
    R0 intelpep;Stuurprogramma voor Intel(R) Power Engine-invoegtoepassing ;C:\WINDOWS\System32\drivers\intelpep.sys [2016-7-16 48152]
    R0 iorate;iorate;C:\WINDOWS\System32\drivers\iorate.sys [2016-11-9 48992]
    R0 volume;Volumestuurprogramma;C:\WINDOWS\System32\drivers\volume.sys [2016-7-16 16224]
    R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2016-7-16 107032]
    R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2016-7-16 17944]
    R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2016-9-5 199008]
    R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2016-10-28 227328]
    R1 avkmgr;avkmgr;C:\WINDOWS\System32\drivers\avkmgr.sys [2017-1-30 44488]
    R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2016-7-16 88576]
    R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-7-16 8192]
    R2 AntiVirSchedulerService;Avira Planner;C:\Program Files (x86)\Avira\Antivirus\sched.exe [2017-1-30 487424]
    R2 AntiVirService;Avira Real-Time Protection;C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2017-1-30 487424]
    R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-9-22 83768]
    R2 avgntflt;avgntflt;C:\WINDOWS\System32\drivers\avgntflt.sys [2017-1-30 161824]
    R2 Avira.ServiceHost;Avira Service Host;C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-12-29 372272]
    R2 avnetflt;avnetflt;C:\WINDOWS\System32\drivers\avnetflt.sys [2017-1-30 88488]
    R2 CDPSvc;Service Platform voor verbonden apparaten;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496]
    R2 CDPUserSvc_3a1d805;CDPUserSvc_3a1d805;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
    R2 clreg;Virtual Registry for Containers;C:\WINDOWS\System32\drivers\registry.sys [2016-7-16 70144]
    R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork [2016-7-16 44496]
    R2 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc [2016-7-16 44496]
    R2 DymoPnpService;DYMO PnP Service;C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe [2014-3-20 33072]
    R2 EPSON_PM_RPCV4_06;EPSON V3 Service4(06);C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [2015-8-7 152640]
    R2 EpsonScanSvc;Epson Scanner Service;C:\WINDOWS\System32\escsvc64.exe [2014-11-14 144560]
    R2 HerculesDJControlMP3;Hercules DJ Control MP3;C:\Program Files\Hercules\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE [2015-7-3 47104]
    R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service;C:\WINDOWS\System32\igfxCUIService.exe [2016-5-27 373744]
    R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-8-27 747520]
    R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-7-26 131544]
    R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-7-26 169432]
    R2 OneSyncSvc_3a1d805;Host synchroniseren_3a1d805;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
    R2 OSDSrv;OSDSrv;C:\Windows\SysWOW64\OSDSrv\OSDSrv.exe [2014-7-26 220672]
    R2 RtkIOAC60;Realtek IOAC Protocol Driver;C:\WINDOWS\System32\drivers\RtkIOAC60.sys [2014-7-26 29912]
    R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2016-7-16 78336]
    R2 TeamViewer;TeamViewer 12;C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-1-30 10351856]
    R2 tiledatamodelsvc;Tile Data model server;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496]
    R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    R2 wcifs;Windows Container Isolation;C:\WINDOWS\System32\drivers\wcifs.sys [2016-10-1 119648]
    R2 wcnfs;Windows Container Name Virtualization;C:\WINDOWS\System32\drivers\wcnfs.sys [2016-7-16 66560]
    R2 WpnService;Systeemservice voor Windows Push Notifications;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;C:\WINDOWS\System32\drivers\btath_bus.sys [2013-12-24 34384]
    R3 BtFilter;BtFilter;C:\WINDOWS\System32\drivers\btfilter.sys [2016-7-13 610336]
    R3 BthLEEnum;Bluetooth Low Energy-stuurprogramma;C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-10-1 249856]
    R3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    R3 iwdbus;IWD Bus Enumerator;C:\WINDOWS\System32\drivers\iwdbus.sys [2014-3-1 27032]
    R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    R3 LicenseManager;Service voor Windows-licentiebeheer ;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496]
    R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2016-7-16 20480]
    R3 NetTap630;Intel(R) Technology Access TAP Driver (NDIS 6.30);C:\WINDOWS\System32\drivers\nettap630.sys [2015-4-30 67800]
    R3 PimIndexMaintenanceSvc_3a1d805;Contact Data_3a1d805;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
    R3 PQAWRwa;PQAWRwa;C:\Windows\SysWOW64\OSDSrv\PQAWDrv.sys [2014-7-26 10464]
    R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\WINDOWS\System32\drivers\RtsUStor.sys [2014-7-26 265432]
    R3 RTL8168;Realtek 8168 NT Driver;C:\WINDOWS\System32\drivers\Rt630x64.sys [2014-7-26 839896]
    R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496]
    R3 TimeBrokerSvc;Time Broker;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
    R3 UEFI;Microsoft UEFI-stuurprogramma;C:\WINDOWS\System32\drivers\uefi.sys [2016-7-16 28512]
    R3 UEIPSvc;User Experience Improvement Program;C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-1-25 222952]
    R3 UnistoreSvc_3a1d805;User Data Storage_3a1d805;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
    R3 UserDataSvc_3a1d805;User Data Access_3a1d805;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
    S1 ndisrd;Intel(R) Technology Access Filter Driver;C:\WINDOWS\System32\drivers\ndisrfl.sys [2015-4-30 50448]
    S2 AntiVirMailService;Avira Mail Protection;C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2017-1-30 1115552]
    S2 AntiVirWebService;Avira Web Protection;C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2017-1-30 1519144]
    S2 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService [2016-7-16 44496]
    S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-4-12 1135416]
    S3 AcpiDev;Stuurprogramma voor ACPI-apparaten;C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-7-16 18432]
    S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2016-7-16 1135456]
    S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
    S3 applockerfltr;Smartlocker Filter Driver;C:\WINDOWS\System32\drivers\applockerfltr.sys [2016-7-16 15360]
    S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2016-7-16 44496]
    S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2016-7-16 44496]
    S3 bcmfn;bcmfn Service;C:\WINDOWS\System32\drivers\bcmfn.sys [2016-7-16 9728]
    S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2016-7-16 9728]
    S3 BthHFSrv;Bluetooth Handsfree Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation [2016-7-16 44496]
    S3 buttonconverter;Service voor Portable Device Control-apparaten;C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-7-16 38912]
    S3 CapImg;HID-stuurprogramma voor CapImg-touchscreen;C:\WINDOWS\System32\drivers\capimg.sys [2016-10-28 118272]
    S3 cht4iscsi;cht4iscsi;C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-7-16 346976]
    S3 cht4vbd;Chelsio virtuele-busstuurprogramma;C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-7-16 2104160]
    S3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2016-7-16 44496]
    S3 DcpSvc;DataCollectionPublishingService;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudbus.sys [2014-1-22 108800]
    S3 diagnosticshub.standardcollector.service;Microsoft(R) Diagnostics Hub Standard Collector-service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-7-16 93184]
    S3 DmEnrollmentSvc;Registratieservice voor Apparaatbeheer;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S3 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S3 DrvAgent64;DrvAgent64;C:\Windows\SysWOW64\drivers\DrvAgent64.SYS [2016-2-29 20872]
    S3 embeddedmode;Ingesloten modus;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496]
    S3 FrameServer;Windows Camera Frame Server;C:\WINDOWS\System32\svchost.exe -k Camera [2016-7-16 44496]
    S3 genericusbfn;Algemene USB-functieklasse;C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-7-16 20480]
    S3 hidinterrupt;Algemeen stuurprogramma voor HID-knoppen waarvoor interrupts zijn geïmplementeerd;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-7-16 50016]
    S3 HvHost;HV-hostservice;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iagpio.sys [2016-7-16 33280]
    S3 iai2c;Intel(R) Serial IO I2C-hostcontroller;C:\WINDOWS\System32\drivers\iai2c.sys [2016-7-16 81408]
    S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-7-16 64512]
    S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C-stuurprogramma v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-7-16 176384]
    S3 iaLPSSi_GPIO;Stuurprogramma van Intel(R) Serial IO GPIO-controller;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2016-7-16 38128]
    S3 iaLPSSi_I2C;Stuurprogramma voor Intel(R) Serial IO I2C-controller;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2016-7-16 113152]
    S3 iaStorAV;Intel(R) SATA RAID-controller Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2016-7-16 673120]
    S3 ibbus;Mellanox InfiniBand Bus/AL (filterstuurprogramma);C:\WINDOWS\System32\drivers\ibbus.sys [2016-7-16 526176]
    S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
    S3 IndirectKmd;Indirecte weergave kernelmodusstuurprogramma;C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-7-16 35840]
    S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\WINDOWS\System32\drivers\intelaud.sys [2014-3-1 38296]
    S3 IntcDAud;Intel(R) Display Audio;C:\WINDOWS\System32\drivers\IntcDAud.sys [2016-5-12 481768]
    S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-8-27 828376]
    S3 iumsvc;Intel(R) Update Manager;C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-8-12 177376]
    S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-7-16 105824]
    S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-7-16 101216]
    S3 MBAMProtector;MBAMProtector;C:\WINDOWS\System32\drivers\mbam.sys [2016-4-12 25816]
    S3 MBAMWebAccessControl;MBAMWebAccessControl;C:\WINDOWS\System32\drivers\mwac.sys [2016-4-12 64216]
    S3 megasas2i;megasas2i;C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-12 64352]
    S3 MessagingService_3a1d805;MessagingService_3a1d805;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
    S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-7-16 842584]
    S3 ndfltr;NetworkDirect-service;C:\WINDOWS\System32\drivers\ndfltr.sys [2016-7-16 108896]
    S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\WINDOWS\System32\drivers\NetAdapterCx.sys [2016-7-16 90624]
    S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
    S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE [2010-1-9 174440]
    S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2016-7-16 58720]
    S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2016-7-16 61792]
    S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496]
    S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2016-7-16 928608]
    S3 RetailDemo;Retaildemoservice;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    S3 scmbus;Microsoft-stuurprogramma voor geheugenbus opslagklasse;C:\WINDOWS\System32\drivers\scmbus.sys [2016-7-16 88416]
    S3 scmdisk0101;Microsoft-stuurprogramma voor NVDIMM-N-schijven;C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-7-16 123904]
    S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2016-9-15 1312768]
    S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2016-7-16 151904]
    S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2016-7-16 44496]
    S3 SmsRouter;Microsoft Windows SMS Router-service.;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudmdm.sys [2014-1-22 206080]
    S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2016-10-1 81760]
    S3 storufs;Microsoft Universal Flash Storage (UFS)-stuurprogramma;C:\WINDOWS\System32\drivers\storufs.sys [2016-7-16 32096]
    S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2016-7-16 287744]
    S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2016-7-16 95744]
    S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmTcpciCx.sys [2016-7-16 108544]
    S3 UcmUcsi;UCSI-client van USB-connectorbeheer;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-7-16 50688]
    S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2016-7-16 45568]
    S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2016-7-16 263008]
    S3 UfxChipidea;Chipidea USB-controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2016-7-16 96608]
    S3 ufxsynopsys;Synopsys USB-controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-7-16 137056]
    S3 UrsChipidea;Stuurprogramma voor Chipidea USB Role-Switch;C:\WINDOWS\System32\drivers\urschipidea.sys [2016-7-16 28512]
    S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2016-7-16 57696]
    S3 UrsSynopsys;Stuurprogramma voor Synopsys USB Role-Switch;C:\WINDOWS\System32\drivers\urssynopsys.sys [2016-7-16 27488]
    S3 USBAAPL64;Apple Mobile USB Driver;C:\WINDOWS\System32\drivers\usbaapl64.sys [2015-6-10 54784]
    S3 UsoSvc;Update Orchestrator Service for Windows Update;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S3 vhf;Virtual HID Framework (VHF)-stuurprogramma;C:\WINDOWS\System32\drivers\vhf.sys [2016-7-16 32256]
    S3 vmgid;Microsoft Hyper-V-stuurprogramma voor de gastinfrastructuur;C:\WINDOWS\System32\drivers\vmgid.sys [2016-7-16 10240]
    S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
    S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496]
    S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2016-10-1 719360]
    S3 WdNisDrv;Windows Defender Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2016-7-16 123232]
    S3 WdNisSvc;Windows Defender Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2016-7-16 347328]
    S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2016-7-16 44496]
    S3 WinMad;WinMad-service;C:\WINDOWS\System32\drivers\winmad.sys [2016-7-16 32096]
    S3 WinVerbs;WinVerbs-service;C:\WINDOWS\System32\drivers\winverbs.sys [2016-7-16 64864]
    S3 wisvc;Windows Insider Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496]
    S3 WpnUserService_3a1d805;Windows Push Notification-gebruikersservice_3a1d805;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
    S3 WSDScan;Ondersteuning voor WSD-scan;C:\WINDOWS\System32\drivers\WSDScan.sys [2016-7-16 24576]
    S3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\drivers\WUDFRd.sys [2016-7-16 216064]
    S3 XblAuthManager;Xbox Live-verificatiebeheer;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S3 XblGameSave;Games opslaan op Xbox Live;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2016-12-9 258560]
    S3 XboxNetApiSvc;Netwerkservice van Xbox Live;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2016-9-5 43520]
    S4 shpamsvc;Shared PC Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496]
    S4 tzautoupdate;Updater van automatische tijdzone;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496]
    .
    =============== Created Last 30 ================
    .
    2017-03-06 07:44:31 -------- d-----w- C:\Users\Alfons Nijland\AppData\Local\TeamViewer
    2017-03-06 07:32:13 873952 ----a-w- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
    2017-03-06 07:32:13 52680 ----a-w- C:\Program Files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
    2017-03-06 07:32:13 230856 ----a-w- C:\Program Files (x86)\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll
    2017-03-06 07:09:06 -------- d-----w- C:\Users\Alfons Nijland\AppData\Local\Mozilla
    2017-02-17 19:34:40 230480 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
    .
    ==================== Find3M ====================
    .
    2017-03-07 06:03:16 180 ----a-w- C:\WINDOWS\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
    2017-03-06 07:39:12 192216 ----a-w- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
    2017-03-06 07:02:49 97856 ----a-w- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll
    2017-03-02 16:54:08 88488 ----a-w- C:\WINDOWS\System32\drivers\avnetflt.sys
    2017-03-02 16:54:08 48584 ----a-w- C:\WINDOWS\System32\drivers\avusbflt.sys
    2017-03-02 16:54:08 44488 ----a-w- C:\WINDOWS\System32\drivers\avkmgr.sys
    2017-03-02 16:54:08 161824 ----a-w- C:\WINDOWS\System32\drivers\avgntflt.sys
    2017-02-06 19:48:07 835576 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
    2017-02-06 19:48:07 177656 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
    2016-12-21 08:08:31 245600 ----a-w- C:\WINDOWS\System32\offlinesam.dll
    2016-12-21 08:08:17 136032 ----a-w- C:\WINDOWS\System32\ImplatSetup.dll
    2016-12-21 08:04:10 7816032 ----a-w- C:\WINDOWS\System32\ntoskrnl.exe
    2016-12-21 07:49:39 328008 ----a-w- C:\WINDOWS\System32\Windows.Storage.ApplicationData.dll
    2016-12-21 07:46:39 624048 ----a-w- C:\WINDOWS\System32\drivers\cng.sys
    2016-12-21 07:43:56 92512 ----a-w- C:\WINDOWS\System32\rdpudd.dll
    2016-12-21 07:43:06 4130440 ----a-w- C:\WINDOWS\System32\mfcore.dll
    2016-12-21 07:43:01 1454504 ----a-w- C:\WINDOWS\System32\mfnetsrc.dll
    2016-12-21 07:43:00 1071736 ----a-w- C:\WINDOWS\System32\mfnetcore.dll
    2016-12-21 07:42:59 1988560 ----a-w- C:\WINDOWS\System32\mfmp4srcsnk.dll
    2016-12-21 07:42:55 1702392 ----a-w- C:\WINDOWS\System32\mfasfsrcsnk.dll
    2016-12-21 07:42:54 1300600 ----a-w- C:\WINDOWS\System32\mfmpeg2srcsnk.dll
    2016-12-21 07:42:27 241504 ----a-w- C:\WINDOWS\System32\CloudExperienceHost.dll
    2016-12-21 07:41:56 1600632 ----a-w- C:\WINDOWS\System32\sppobjs.dll
    2016-12-21 07:37:23 455520 ----a-w- C:\WINDOWS\System32\securekernel.exe
    2016-12-21 07:15:01 22563840 ----a-w- C:\WINDOWS\System32\edgehtml.dll
    2016-12-21 07:14:11 43008 ----a-w- C:\WINDOWS\System32\LaunchWinApp.exe
    2016-12-21 07:13:54 119808 ----a-w- C:\WINDOWS\System32\KnobsCsp.dll
    2016-12-21 07:12:14 83968 ----a-w- C:\WINDOWS\System32\ProvPluginEng.dll
    2016-12-21 07:10:22 175104 ----a-w- C:\WINDOWS\System32\wbem\netswitchteamcim.dll
    2016-12-21 07:10:09 234496 ----a-w- C:\WINDOWS\System32\KnobsCore.dll
    2016-12-21 07:09:56 363520 ----a-w- C:\WINDOWS\System32\Windows.UI.BioFeedback.dll
    2016-12-21 07:09:13 368640 ----a-w- C:\WINDOWS\System32\OneBackupHandler.dll
    2016-12-21 07:08:35 211968 ----a-w- C:\WINDOWS\System32\InstallAgent.exe
    2016-12-21 07:08:33 261632 ----a-w- C:\WINDOWS\System32\wbem\ndisimplatcim.dll
    2016-12-21 07:08:27 360448 ----a-w- C:\WINDOWS\System32\rdpencom.dll
    2016-12-21 07:08:23 289792 ----a-w- C:\WINDOWS\System32\DeveloperOptionsSettingsHandlers.dll
    2016-12-21 07:08:14 418304 ----a-w- C:\WINDOWS\System32\Windows.UI.BlockedShutdown.dll
    2016-12-21 07:08:06 349184 ----a-w- C:\WINDOWS\System32\provengine.dll
    2016-12-21 07:08:04 142848 ----a-w- C:\WINDOWS\System32\poqexec.exe
    2016-12-21 07:08:03 1292288 ----a-w- C:\WINDOWS\System32\MSVPXENC.dll
    2016-12-21 07:07:10 748544 ----a-w- C:\WINDOWS\System32\StoreAgent.dll
    2016-12-21 07:06:49 260608 ----a-w- C:\WINDOWS\System32\InstallAgentUserBroker.exe
    2016-12-21 07:06:49 147456 ----a-w- C:\WINDOWS\System32\winsrv.dll
    2016-12-21 07:06:26 310784 ----a-w- C:\WINDOWS\System32\SyncSettings.dll
    2016-12-21 07:06:05 6285312 ----a-w- C:\WINDOWS\System32\Windows.Media.dll
    2016-12-21 07:05:21 261632 ----a-w- C:\WINDOWS\System32\indexeddbserver.dll
    2016-12-21 07:05:01 49152 ----a-w- C:\WINDOWS\System32\Windows.UI.Shell.dll
    2016-12-21 07:05:01 425984 ----a-w- C:\WINDOWS\System32\aadcloudap.dll
    2016-12-21 07:01:42 9131008 ----a-w- C:\WINDOWS\System32\twinui.dll
    2016-12-21 07:00:29 440320 ----a-w- C:\WINDOWS\System32\fhcfg.dll
    2016-12-21 06:59:50 883712 ----a-w- C:\WINDOWS\System32\samsrv.dll
    2016-12-21 06:59:31 1908224 ----a-w- C:\WINDOWS\System32\AzureSettingSyncProvider.dll
    2016-12-21 06:57:48 462336 ----a-w- C:\WINDOWS\System32\fhsettingsprovider.dll
    2016-12-21 06:56:56 936960 ----a-w- C:\WINDOWS\System32\MCRecvSrc.dll
    2016-12-21 06:56:14 947712 ----a-w- C:\WINDOWS\System32\MSVP9DEC.dll
    2016-12-21 06:55:16 8129536 ----a-w- C:\WINDOWS\System32\Chakra.dll
    2016-12-21 06:55:09 4749312 ----a-w- C:\WINDOWS\System32\SettingsHandlers_nt.dll
    2016-12-21 06:54:14 5511680 ----a-w- C:\WINDOWS\System32\aclui.dll
    2016-12-21 06:53:19 6664192 ----a-w- C:\WINDOWS\System32\mspaint.exe
    2016-12-21 06:53:13 4474368 ----a-w- C:\WINDOWS\System32\D3DCompiler_47.dll
    2016-12-21 06:53:10 1692672 ----a-w- C:\WINDOWS\System32\AppXDeploymentExtensions.onecore.dll
    2016-12-21 06:51:56 5611008 ----a-w- C:\WINDOWS\System32\d2d1.dll
    2016-12-21 06:51:53 2275840 ----a-w- C:\WINDOWS\System32\AppXDeploymentServer.dll
    2016-12-21 06:51:41 8075776 ----a-w- C:\WINDOWS\System32\mstscax.dll
    2016-12-21 06:50:57 1490432 ----a-w- C:\WINDOWS\System32\lsasrv.dll
    2016-12-21 06:49:55 2691072 ----a-w- C:\WINDOWS\System32\Windows.UI.Logon.dll
    2016-12-21 06:49:43 1062912 ----a-w- C:\WINDOWS\System32\SettingSyncCore.dll
    2016-12-21 06:49:25 4149248 ----a-w- C:\WINDOWS\System32\rdpcorets.dll
    2016-12-21 06:47:47 1121280 ----a-w- C:\WINDOWS\System32\aadtb.dll
    2016-12-21 05:59:21 218976 ----a-w- C:\WINDOWS\SysWow64\offlinesam.dll
    2016-12-21 05:09:45 263472 ----a-w- C:\WINDOWS\SysWow64\Windows.Storage.ApplicationData.dll
    2016-12-21 05:02:16 1852720 ----a-w- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
    2016-12-21 05:02:12 3892864 ----a-w- C:\WINDOWS\SysWow64\mfcore.dll
    2016-12-21 05:02:09 1277344 ----a-w- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
    2016-12-21 05:02:02 1360464 ----a-w- C:\WINDOWS\SysWow64\mfnetsrc.dll
    2016-12-21 05:02:01 980832 ----a-w- C:\WINDOWS\SysWow64\mfnetcore.dll
    2016-12-21 05:02:00 1201872 ----a-w- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
    2016-12-21 04:46:55 34304 ----a-w- C:\WINDOWS\SysWow64\LaunchWinApp.exe
    2016-12-21 04:44:06 120320 ----a-w- C:\WINDOWS\SysWow64\poqexec.exe
    2016-12-21 04:43:09 285184 ----a-w- C:\WINDOWS\SysWow64\Windows.UI.BlockedShutdown.dll
    2016-12-21 04:41:59 253952 ----a-w- C:\WINDOWS\SysWow64\Windows.UI.BioFeedback.dll
    2016-12-21 04:41:15 231936 ----a-w- C:\WINDOWS\SysWow64\Windows.ApplicationModel.LockScreen.dll
    2016-12-21 04:40:57 180224 ----a-w- C:\WINDOWS\SysWow64\InstallAgent.exe
    2016-12-21 04:40:43 237056 ----a-w- C:\WINDOWS\SysWow64\SyncSettings.dll
    2016-12-21 04:40:39 318976 ----a-w- C:\WINDOWS\SysWow64\rdpencom.dll
    2016-12-21 04:40:07 557568 ----a-w- C:\WINDOWS\SysWow64\StoreAgent.dll
    2016-12-21 04:39:58 1300480 ----a-w- C:\WINDOWS\SysWow64\MSVPXENC.dll
    2016-12-21 04:39:04 223232 ----a-w- C:\WINDOWS\SysWow64\InstallAgentUserBroker.exe
    2016-12-21 04:38:54 866816 ----a-w- C:\WINDOWS\SysWow64\Windows.UI.Cred.dll
    2016-12-21 04:35:42 198656 ----a-w- C:\WINDOWS\SysWow64\indexeddbserver.dll
    2016-12-21 04:35:28 4612608 ----a-w- C:\WINDOWS\SysWow64\Windows.Media.dll
    2016-12-21 04:34:53 7626752 ----a-w- C:\WINDOWS\SysWow64\twinui.dll
    2016-12-21 04:33:09 19413504 ----a-w- C:\WINDOWS\SysWow64\edgehtml.dll
    2016-12-21 04:30:56 5398016 ----a-w- C:\WINDOWS\SysWow64\aclui.dll
    2016-12-21 04:30:06 1255936 ----a-w- C:\WINDOWS\SysWow64\AzureSettingSyncProvider.dll
    2016-12-21 04:27:12 640000 ----a-w- C:\WINDOWS\SysWow64\MCRecvSrc.dll
    2016-12-21 04:26:36 1155072 ----a-w- C:\WINDOWS\SysWow64\MSVP9DEC.dll
    2016-12-21 04:25:44 7469056 ----a-w- C:\WINDOWS\SysWow64\mstscax.dll
    2016-12-21 04:25:42 6474752 ----a-w- C:\WINDOWS\SysWow64\mspaint.exe
    2016-12-21 04:24:58 6044160 ----a-w- C:\WINDOWS\SysWow64\Chakra.dll
    .
    ============= FINISH: 7:47:32,74 ===============


    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft Windows 10 Home
    Boot Device: \Device\HarddiskVolume2
    Install Date: 5-9-2016 08:44:20
    System Uptime: 6-3-2017 07:55:59 (24 hours ago)
    .
    Motherboard: Acer | | Aspire Z3-615
    Processor: Intel(R) Core(TM) i3-4150T CPU @ 3.00GHz | SOCKET 0 | 3000/100mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 457 GiB total, 328,401 GiB free.
    D: is FIXED (NTFS) - 457 GiB total, 456,982 GiB free.
    E: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    RP80: 18-2-2017 16:00:50 - Gepland controlepunt
    RP81: 22-2-2017 13:44:11 - Windows Update
    RP82: 2-3-2017 08:46:32 - Gepland controlepunt
    .
    ==== Installed Programs ======================
    .
    abDocs
    abDocs Office AddIn
    abMedia
    abPhoto
    Acer Explorer Agent
    Acer PanelOnOff
    Acer Recovery Management
    Acer Remote Files
    Acer User Experience Improvement Program App Monitor Plugin
    Acer User Experience Improvement Program Framework
    Acer Video Player
    Adblock Plus voor IE (32-bit en 64-bit)
    Adobe Acrobat Reader DC - Nederlands
    Adobe Refresh Manager
    Apple Application Support (32-bit)
    Apple Application Support (64-bit)
    Apple Mobile Device Support
    Apple Software Update
    Avira Antivirus
    Avira Connect
    Bonjour
    CCleaner
    CyberLink PowerDVD 12
    Davilex Business
    Definition Update for Microsoft Office 2010 (KB3115475) 64-Bit Edition
    Dolby Digital Plus Home Theater
    DYMO Label v.8
    DYMO LabelWriter Drivers
    EPSON Scan
    EPSON XP-510 Series Printer Uninstall
    Google Chrome
    Google Update Helper
    Hercules DJ Products Series drivers
    Hercules DJ USB Audio Drivers
    Hotkey Utility
    iCloud
    Identity Card
    Instagram Hacker v3.7.2
    Intel(R) Chipset Device Software
    Intel(R) Management Engine Components
    Intel(R) Processor Graphics
    Intel(R) Update Manager
    Intel® Trusted Connect Service Client
    iTunes
    Java 8 Update 121
    Java Auto Updater
    Live Updater
    Malwarebytes Anti-Malware versie 2.2.0.1024
    Microsoft Office Access MUI (Dutch) 2010
    Microsoft Office Excel MUI (Dutch) 2010
    Microsoft Office Groove MUI (Dutch) 2010
    Microsoft Office InfoPath MUI (Dutch) 2010
    Microsoft Office Office 32-bit Components 2010
    Microsoft Office OneNote MUI (Dutch) 2010
    Microsoft Office Outlook MUI (Dutch) 2010
    Microsoft Office PowerPoint MUI (Dutch) 2010
    Microsoft Office Professional Plus 2010
    Microsoft Office Proof (Dutch) 2010
    Microsoft Office Proof (English) 2010
    Microsoft Office Proof (French) 2010
    Microsoft Office Proof (German) 2010
    Microsoft Office Proofing (Dutch) 2010
    Microsoft Office Publisher MUI (Dutch) 2010
    Microsoft Office Shared 32-bit MUI (Dutch) 2010
    Microsoft Office Shared MUI (Dutch) 2010
    Microsoft Office Word MUI (Dutch) 2010
    Microsoft Silverlight
    Microsoft SQL Server Desktop Engine
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
    Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
    Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
    Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
    Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD
    Minecraft
    Mozilla Firefox 51.0.1 (x86 nl)
    Mozilla Maintenance Service
    Nero 7 Lite 7.7.5.1
    NVIDIA PhysX
    Qualcomm Atheros Bluetooth Suite (64)
    Qualcomm Atheros WLAN and Bluetooth Client Installation Program
    QuickTime 7
    Realtek Card Reader
    Realtek Ethernet Controller Driver
    Realtek High Definition Audio Driver
    Security Update for Microsoft Access 2010 (KB3101544) 64-Bit Edition
    Security Update for Microsoft Excel 2010 (KB3128037) 64-Bit Edition
    Security Update for Microsoft InfoPath 2010 (KB3114414) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2553313) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2553432) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2880971) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2889841) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2920748) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB2956076) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB3054984) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB3085528) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB3101520) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB3114400) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB3115120) 64-Bit Edition
    Security Update for Microsoft Office 2010 (KB3118380) 64-Bit Edition
    Security Update for Microsoft OneNote 2010 (KB3114885) 64-Bit Edition
    Security Update for Microsoft Outlook 2010 (KB3118313) 64-Bit Edition
    Security Update for Microsoft PowerPoint 2010 (KB2920812) 64-Bit Edition
    Security Update for Microsoft PowerPoint 2010 (KB3118378) 64-Bit Edition
    Security Update for Microsoft Publisher 2010 (KB3114395) 64-Bit Edition
    Security Update for Microsoft Visio 2010 (KB3114872) 64-Bit Edition
    Security Update for Microsoft Visio Viewer 2010 (KB2999465) 64-Bit Edition
    Security Update for Microsoft Word 2010 (KB2965313) 64-Bit Edition
    Security Update for Microsoft Word 2010 (KB3128034) 64-Bit Edition
    Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
    Software Updater
    Spotify
    Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD
    TeamViewer 12
    Unity Web Player
    Update for Microsoft Excel 2010 (KB2956084) 64-Bit Edition
    Update for Microsoft Filter Pack 2.0 (KB2999508) 64-Bit Edition
    Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2553347) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2553388) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2589318) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2589386) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2687275) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2791057) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2881030) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2883019) 64-Bit Edition
    Update for Microsoft Office 2010 (KB2889828) 64-Bit Edition
    Update for Microsoft Office 2010 (KB3054873) 64-Bit Edition
    Update for Microsoft Office 2010 (KB3054886) 64-Bit Edition
    Update for Microsoft Office 2010 (KB3054977) 64-Bit Edition
    Update for Microsoft Office 2010 (KB3055042) 64-Bit Edition
    Update for Microsoft Office 2010 (KB3055047) 64-Bit Edition
    Update for Microsoft Office 2010 (KB3114555) 64-Bit Edition
    Update for Microsoft OneNote 2010 (KB2956075) 64-Bit Edition
    Update for Microsoft Outlook 2010 (KB2760779) 64-Bit Edition
    Update for Microsoft Outlook 2010 (KB3114756) 64-Bit Edition
    Update for Microsoft Outlook Social Connector 2010 (KB2553308) 64-Bit Edition
    Update for Microsoft Project 2010 (KB3118393) 64-Bit Edition
    Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition
    .
    ==== End Of File ===========================


    GMER 2.2.19882 - http://www.gmer.net
    Rootkit scan 2017-03-07 07:57:51
    Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\00000031 WDC_WD10EZEX-21M2NA0 rev.01.01A01 931,51GB
    Running: j9z5b7c7.exe; Driver: C:\Users\ALFONS~1\AppData\Local\Temp\kwldrpod.sys


    ---- Disk sectors - GMER 2.2 ----

    Disk \Device\Harddisk0\DR0 unknown MBR code

    ---- Threads - GMER 2.2 ----

    Thread C:\WINDOWS\system32\csrss.exe [4324:11256] ffffbe2478406c20
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:6460] 00007ffd8d8b5f10
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:8356] 00007ffd8d1e59c0
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:5516] 00007ffd836f3a00
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:11096] 00007ffd8d1e70d0
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:5108] 00007ffd8a672880
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:8580] 00007ffd8d1e59c0
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:5128] 00007ffd857c2cf0
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:6016] 00007ffd7326bb70
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:4580] 00007ffd857c2cf0
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:11008] 00007ffd857c2cf0
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:7304] 00007ffd8d8b5f10
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:10800] 00007ffd8d8b5f10
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:10516] 00007ffd8ad311a0
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:4400] 00007ffd85f7e010
    Thread C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [10772:4636] 00007ffd8364bac0

    ---- EOF - GMER 2.2 ----


    Mbam voeg ik na de scan toe.

  • #2
    Ik zie geen restricties voor http://www.propart-international.com/ staat zelfs in trusted zone, enig idee welk programma het tegenhoud? Je AV je Firewall ?

    Windows 10 opstarten in Veilige Modus

    Comment


    • #3
      Hmmm...dat is een goeie die had ik nog niet bekeken.
      Vanavond op afstand maar eens kijken.
      Dan kan ik ook meteen zien of mbam zijn werk heeft gedaan met het maken van een log.

      Comment

      Sorry, you are not authorized to view this page
      Working...
      X