Mededeling

Collapse
No announcement yet.

Vermoedelijke infectie.

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • Vermoedelijke infectie.

    Goedenavond,

    Volgens mij is mijn laptop geinfecteerd. Ik probeerde met malwarebytes een scan te maken, op een gegeven moment loopt de laptop vast dan. Dus ik kan geen malwarebytes logje bijvoegen. Ook start de laptop op en dan opent deze gelijk ""deze computer''.

    DDS log:

    DDS (Ver_2012-11-20.01) - NTFS_AMD64
    Internet Explorer: 11.0.9600.16521 BrowserJavaVersion: 10.51.2
    Run by Martijn at 22:42:44 on 2014-04-14
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.8094.5411 [GMT 2:00]
    .
    AV: McAfee VirusScan Enterprise *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: McAfee VirusScan Enterprise Antispyware Module *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k GPSvcGroup
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\WLANExt.exe
    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
    C:\Windows\system32\mfevtps.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
    C:\Windows\system32\svchost.exe -k bthsvcs
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\servicing\TrustedInstaller.exe
    C:\Windows\system32\taskhost.exe
    C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\System32\spoolsv.exe
    C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler.exe
    C:\Program Files\Lenovo\Nsd\startup.exe
    C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
    C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe
    C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler64.exe
    C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
    C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe
    C:\Windows\SysWOW64\PnkBstrA.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Program Files (x86)\McAfee\VirusScan Enterprise\mfeann.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    C:\Program Files\Intel\iCLS Client\HeciServer.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files (x86)\McAfee\Common Framework\naPrdMgr.exe
    C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
    C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
    C:\Program Files (x86)\LockKey\LockKey.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
    C:\Program Files (x86)\USB Camera\VM331_STI.EXE
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe
    C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
    C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
    C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
    C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
    C:\Program Files (x86)\McAfee\Common Framework\udaterui.exe
    C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
    C:\Program Files (x86)\McAfee\Common Framework\McTray.exe
    C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
    C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
    C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\iTunes\iTunesHelper.exe
    C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
    C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE
    C:\Windows\system32\igfxtray.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Windows\system32\hkcmd.exe
    C:\Windows\system32\igfxpers.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
    C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Users\Martijn\AppData\Local\Akamai\netsession_win.exe
    C:\Users\Martijn\AppData\Local\Akamai\netsession_win.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\SysWOW64\RunDll32.exe
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe
    C:\Windows\system32\Macromed\Flash\FlashUtil64_12_0_0_77_ActiveX.exe
    C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
    C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
    C:\Windows\system32\sppsvc.exe
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    \\?\C:\Windows\system32\wbem\WMIADAP.EXE
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.ad.nl/
    uDefault_Page_URL = hxxp://www.google.com
    mStart Page = hxxp://www.google.com
    mSearch Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390907170&from=smt&uid=SAMSUNGXMZMPC064HBDR-000L1_S0Y3NSAC501031&q={searchTerms}
    mDefault_Page_URL = hxxp://www.google.com
    mDefault_Search_URL = hxxp://www.google.com
    mWinlogon: Userinit = userinit.exe,
    BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20121105023912.dll
    BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    uRun: [Akamai NetSession Interface] "C:\Users\Martijn\AppData\Local\Akamai\netsession_win.exe"
    mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
    mRun: [LockKey] C:\Program Files (x86)\LockKey\LockKey.exe
    mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
    mRun: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
    mRun: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
    mRun: [Intelligent Touchpad] C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe
    mRun: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
    mRun: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /s
    mRun: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
    mRun: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
    mRun: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
    mRun: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
    mRun: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
    mRun: [McAfeeUpdaterUI] "C:\Program Files (x86)\McAfee\Common Framework\udaterui.exe" /StartedFromRunKey
    mRun: [ShStatEXE] "C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
    mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    mRun: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
    mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
    mRun: [Reader Application Helper] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
    mRun: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
    mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
    mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
    mPolicies-Explorer: NoActiveDesktop = dword:1
    mPolicies-Explorer: NoActiveDesktopChanges = dword:1
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableUIADesktopToggle = dword:0
    IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
    IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    .
    INFO: HKCU has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    TCP: NameServer = 213.46.228.196 62.179.104.196
    TCP: Interfaces\{BEC40C46-8D65-47A2-BA29-B72475F6EF55} : DHCPNameServer = 213.46.228.196 62.179.104.196
    TCP: Interfaces\{BEC40C46-8D65-47A2-BA29-B72475F6EF55}\24F6C65627F6 : DHCPNameServer = 213.46.228.196 62.179.104.196
    TCP: Interfaces\{BEC40C46-8D65-47A2-BA29-B72475F6EF55}\550534234353739393535393 : DHCPNameServer = 192.168.192.1
    TCP: Interfaces\{D5E78C68-E56A-43F9-AB2A-E860DAE00536} : DHCPNameServer = 0.0.0.0
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
    SSODL: WebCheck - <orphaned>
    SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
    LSA: Notification Packages = scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
    mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
    x64-mStart Page = hxxp://www.google.com
    x64-mSearch Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390907170&from=smt&uid=SAMSUNGXMZMPC064HBDR-000L1_S0Y3NSAC501031&q={searchTerms}
    x64-mDefault_Page_URL = hxxp://www.google.com
    x64-mDefault_Search_URL = hxxp://www.google.com
    x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
    x64-BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20121105023912.dll
    x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
    x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
    x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
    x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
    x64-Run: [SynLenovoGestureMgr] C:\Program Files (x86)\Synaptics\SynTP\SynLenovoGestureMgr.exe
    x64-Run: [OnekeyStudio] C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe
    x64-Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
    x64-Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
    x64-Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe
    x64-Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
    x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
    x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
    x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
    x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
    x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
    x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
    x64-Run: [RtHDVBg_Dolby] "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
    x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
    x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
    x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
    x64-Notify: igfxcui - igfxdev.dll
    x64-SSODL: WebCheck - <orphaned>
    x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 HybridDisk;HybridDisk;C:\Windows\System32\drivers\HybridDiskX64.sys [2012-7-17 38496]
    R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2012-3-19 16152]
    R0 LHDmgr;LHDmgr;C:\Windows\System32\drivers\LhdX64.sys [2012-7-17 39008]
    R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2012-11-5 642952]
    R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2012-11-5 283744]
    R0 NSD;NSD;C:\Windows\System32\drivers\nsd.sys [2012-7-17 24160]
    R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2014-3-10 33736]
    R1 ctxusbm;Citrix USB Monitor Driver;C:\Windows\System32\drivers\ctxusbm.sys [2009-9-8 87600]
    R1 hybridcfile;hybridcfile;C:\Windows\System32\drivers\HybridCFileX64.sys [2012-7-17 13920]
    R1 Nsdfltr;Nsdfltr;C:\Windows\System32\drivers\Nsdfltr.sys [2012-7-17 59488]
    R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-12-5 659968]
    R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-12-5 135952]
    R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-7-17 13592]
    R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-5-11 733696]
    R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-7-17 169432]
    R2 McAfeeFramework;McAfee Framework Service;C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe [2011-1-12 120128]
    R2 McShield;McAfee McShield;C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe [2012-11-5 199008]
    R2 McTaskManager;McAfee Task Manager;C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe [2011-9-14 209760]
    R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2012-11-5 158832]
    R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-18 1615192]
    R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-7-30 20541216]
    R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2011-12-8 594704]
    R3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\Windows\System32\drivers\AcpiVpc.sys [2011-12-15 30816]
    R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter;C:\Windows\System32\drivers\AmpPal.sys [2011-12-5 195584]
    R3 bcbtums;Bluetooth RAM Firmware Download USB Filter;C:\Windows\System32\drivers\bcbtums.sys [2012-7-17 134696]
    R3 btwampfl;btwampfl Bluetooth filter driver;C:\Windows\System32\drivers\btwampfl.sys [2012-7-17 615976]
    R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2012-7-17 39976]
    R3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\System32\drivers\clwvd.sys [2011-1-29 31088]
    R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2014-1-28 283064]
    R3 hswpan;WPAN Driver;C:\Windows\System32\drivers\hswpan.sys [2012-1-27 109056]
    R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2012-3-12 331264]
    R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2012-3-19 356120]
    R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2012-3-19 788760]
    R3 iwdbus;IWD Bus Enumerator;C:\Windows\System32\drivers\iwdbus.sys [2012-1-27 25496]
    R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2011-10-26 173656]
    R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2012-6-14 104048]
    R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2012-11-5 228752]
    R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-4-7 40392]
    R3 vm331avs;Digital Camera 1;C:\Windows\System32\drivers\vm331avs.sys [2012-7-17 952832]
    S2 CLKMSVC10_3A60B698;CyberLink Product - 2012/07/17 08:35:20;C:\Program Files (x86)\Lenovo\PowerDVD10\NavFilter\kmsvc.exe [2011-4-20 241648]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
    S2 NSDSvc;Fast boot service of lenovo;C:\Windows\System32\NSDSvc.exe [2012-7-17 120160]
    S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
    S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol;C:\Windows\System32\drivers\AmpPal.sys [2011-12-5 195584]
    S3 cpuz136;cpuz136;C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys [2014-4-11 25320]
    S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-7-17 48488]
    S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-23 1493352]
    S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-3-14 111616]
    S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\Windows\System32\drivers\intelaud.sys [2012-1-27 34200]
    S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-5-11 822232]
    S3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-4-11 119512]
    S3 mferkdet;McAfee Inc. mferkdet;C:\Windows\System32\drivers\mferkdet.sys [2012-11-5 100904]
    S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-12-8 273168]
    S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-10-25 19456]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-24 56832]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2012-10-25 30208]
    S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
    S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-10-6 1255736]
    S3 wsvd;wsvd;C:\Windows\System32\drivers\wsvd.sys [2009-7-21 121840]
    S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
    .
    =============== Created Last 30 ================
    .
    2014-04-11 17:54:54 114176 ----a-w- C:\Windows\SysWow64\PCWizard.cpl
    2014-04-11 17:54:53 -------- d-----w- C:\Program Files (x86)\CPUID
    2014-04-11 17:53:45 -------- d-----w- C:\Program Files (x86)\SpeedFan
    2014-04-11 17:44:56 -------- d-----w- C:\ProgramData\Licenses
    2014-04-11 17:44:49 129872 ----a-w- C:\Windows\SysWow64\MSSTDFMT.DLL
    2014-04-11 17:44:49 1070352 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
    2014-04-11 17:44:49 -------- d-----w- C:\Program Files (x86)\SpywareBlaster
    2014-04-11 17:01:21 119512 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
    2014-04-11 17:01:04 88280 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
    2014-04-11 17:01:04 63192 ----a-w- C:\Windows\System32\drivers\mwac.sys
    2014-04-11 17:01:04 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
    2014-04-11 12:51:30 10521840 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E1658F77-D204-4CE5-B794-EE1CDFCB4E6C}\mpengine.dll
    2014-04-07 15:32:20 40392 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys
    2014-04-07 15:32:20 33568 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll
    2014-03-17 16:03:04 -------- d-----w- C:\Users\Martijn\AppData\Local\Blizzard
    2014-03-17 16:02:12 -------- d-----w- C:\Program Files (x86)\Hearthstone
    2014-03-17 16:01:04 -------- d-----w- C:\Users\Martijn\AppData\Roaming\Battle.net
    2014-03-17 16:01:04 -------- d-----w- C:\Users\Martijn\AppData\Local\Battle.net
    2014-03-17 16:00:58 -------- d-----w- C:\Program Files (x86)\Battle.net
    .
    ==================== Find3M ====================
    .
    2014-04-03 07:50:58 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2014-04-02 13:27:17 1081112 ----a-w- C:\Windows\SysWow64\nvspcap.dll
    2014-04-02 13:27:05 1225920 ----a-w- C:\Windows\System32\nvspcap64.dll
    2014-03-31 01:13:47 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
    2014-03-31 00:13:30 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2014-03-21 19:43:50 37320 ----a-w- C:\Windows\System32\nvaudcap64v.dll
    2014-03-11 21:32:19 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2014-03-11 21:32:19 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    2014-03-11 21:32:06 5128584 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
    2014-03-04 13:06:00 6714312 ----a-w- C:\Windows\System32\nvcpl.dll
    2014-03-04 13:06:00 3497816 ----a-w- C:\Windows\System32\nvsvc64.dll
    2014-03-04 13:05:58 922968 ----a-w- C:\Windows\System32\nvvsvc.exe
    2014-03-04 13:05:58 64968 ----a-w- C:\Windows\System32\nvshext.dll
    2014-03-04 13:05:58 607064 ----a-w- C:\Windows\SysWow64\oemdspif.dll
    2014-03-04 13:05:58 2558808 ----a-w- C:\Windows\System32\nvsvcr.dll
    2014-03-04 13:05:57 67072 ----a-w- C:\Windows\System32\nv3dappshextr.dll
    2014-03-04 13:05:57 386336 ----a-w- C:\Windows\System32\nvmctray.dll
    2014-03-04 13:05:57 1075032 ----a-w- C:\Windows\System32\nv3dappshext.dll
    2014-03-04 13:05:53 3649185 ----a-w- C:\Windows\System32\nvcoproc.bin
    2014-03-04 09:44:21 362496 ----a-w- C:\Windows\System32\wow64win.dll
    2014-03-04 09:44:21 243712 ----a-w- C:\Windows\System32\wow64.dll
    2014-03-04 09:44:21 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
    2014-03-04 09:44:03 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
    2014-03-04 09:17:19 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
    2014-03-04 09:17:05 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
    2014-03-04 09:16:54 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
    2014-03-04 09:16:18 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
    2014-03-04 08:09:30 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
    2014-03-04 08:09:29 2048 ----a-w- C:\Windows\SysWow64\user.exe
    2014-03-01 05:16:26 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
    2014-03-01 04:52:55 66048 ----a-w- C:\Windows\System32\iesetup.dll
    2014-03-01 04:51:59 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
    2014-03-01 04:33:52 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
    2014-03-01 04:33:34 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
    2014-03-01 04:32:59 708608 ----a-w- C:\Windows\System32\jscript9diag.dll
    2014-03-01 04:23:49 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
    2014-03-01 03:54:33 5768704 ----a-w- C:\Windows\System32\jscript9.dll
    2014-03-01 03:52:43 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
    2014-03-01 03:51:53 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
    2014-03-01 03:38:26 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
    2014-03-01 03:37:35 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
    2014-03-01 03:35:11 2041856 ----a-w- C:\Windows\System32\inetcpl.cpl
    2014-03-01 03:14:15 4244480 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2014-03-01 03:10:28 2334208 ----a-w- C:\Windows\System32\wininet.dll
    2014-03-01 03:00:08 1964032 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
    2014-03-01 02:32:16 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll
    2014-02-13 12:46:44 354656 ----a-w- C:\Windows\SysWow64\DivXControlPanelApplet.cpl
    2014-02-08 18:34:51 1885472 ----a-w- C:\Windows\System32\nvdispco6433489.dll
    2014-02-08 18:34:51 1515296 ----a-w- C:\Windows\System32\nvdispgenco6433489.dll
    2014-02-07 01:23:30 3156480 ----a-w- C:\Windows\System32\win32k.sys
    2014-02-04 02:35:56 190912 ----a-w- C:\Windows\System32\drivers\storport.sys
    2014-02-04 02:35:49 274880 ----a-w- C:\Windows\System32\drivers\msiscsi.sys
    2014-02-04 02:35:35 27584 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
    2014-02-04 02:32:22 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
    2014-02-04 02:32:12 624128 ----a-w- C:\Windows\System32\qedit.dll
    2014-02-04 02:28:36 2048 ----a-w- C:\Windows\System32\iologmsg.dll
    2014-02-04 02:04:22 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
    2014-02-04 02:04:11 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
    2014-02-04 02:00:39 2048 ----a-w- C:\Windows\SysWow64\iologmsg.dll
    2014-01-29 02:32:18 484864 ----a-w- C:\Windows\System32\wer.dll
    2014-01-29 02:06:47 381440 ----a-w- C:\Windows\SysWow64\wer.dll
    2014-01-28 11:05:09 283064 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
    2014-01-28 02:32:46 228864 ----a-w- C:\Windows\System32\wwansvc.dll
    2014-01-24 02:37:55 1684928 ----a-w- C:\Windows\System32\drivers\ntfs.sys
    2014-01-17 15:24:12 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
    2014-01-17 15:24:12 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts
    .
    ============= FINISH: 22:43:09,29 ===============

  • #2
    Als ik het GMER logje wil uploaden krijg ik een foutmelding dat het te veel tekens bevat

    Comment


    • #3
      Download Zoek.zip naar het bureaublad.
      • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.


      Antivirussoftware uitschakelen
      Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.

      Zoek.exe uitvoeren
      Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.
      • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
      • Dubbelklik vervolgens op Zoek.exe om de tool te starten.
      • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
      • Klik nu op de knop "Run script".
      • Er verschijnt een popup met de melding dat er geen script aangetroffen is, druk gewoon op OK.
      • Zoek.exe gaat nu een scan + reparatie uitvoeren, bij sommige systemen kan deze langer dan een half uur duren.
      • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
      • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
      • Post het geopende logje in het volgende bericht als bijlage.


      Zoek.exe logbestand plaatsen
      • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht.
        (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)

      Windows 10 opstarten in Veilige Modus

      Comment


      • #4
        Hee alvast bedankt voor je hulp,

        Het Zoek logje als bijlage krijg ik niet voor elkaar. De site geeft aan dat het een ongeldig bestand is.

        Comment


        • #5
          Kan hem wel in het bericht zelf plaatsen.
          Zoek.exe v5.0.0.0 Updated 14-April-2014
          Tool run by Martijn on wo 16-04-2014 at 20:36:23,48.
          Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
          Running in: Normal Mode Internet Access Detected
          Launched: C:\Users\Martijn\Desktop\zoek.exe [Scan all users] [Quick Scan] [Auto Clean]

          ==== System Restore Info ======================

          16-4-2014 20:37:05 Zoek.exe System Restore Point Created Succesfully.

          ==== Empty Folders Check ======================

          C:\PROGRA~2\AGEIA Technologies deleted successfully
          C:\PROGRA~2\FreeTime deleted successfully
          C:\PROGRA~3\Hi-Rez Studios deleted successfully
          C:\PROGRA~3\Oracle deleted successfully
          C:\Users\Martijn\AppData\Roaming\Awesomium deleted successfully
          C:\Users\Martijn\AppData\Roaming\Malwarebytes deleted successfully
          C:\Users\Martijn\AppData\Roaming\TP deleted successfully

          ==== Deleting CLSID Registry Keys ======================

          HKEY_USERS\S-1-5-21-434062790-2592518851-4091637758-1001\Software\Microsoft\Internet Explorer\SearchScopes\{2651EFF2-437E-428A-A0E4-F168AFC6E613} deleted successfully

          ==== Deleting CLSID Registry Values ======================


          ==== Deleting Services ======================


          ==== Deleting Files \ Folders ======================

          C:\PROGRA~2\Conduit deleted
          C:\PROGRA~3\Conduit deleted
          C:\PROGRA~3\InstallMate deleted
          C:\Users\Martijn\AppData\Local\Conduit deleted
          C:\Users\Martijn\AppData\LocalLow\Vuze_Remote deleted
          C:\Users\Martijn\AppData\LocalLow\PriceGong deleted
          C:\Users\Martijn\AppData\LocalLow\Conduit deleted
          C:\END deleted

          ==== Files Recently Created / Modified ======================

          ====== C:\Windows ====
          ====== C:\Users\Martijn\AppData\Local\Temp ====
          2014-04-15 18:43:26 0E771375445E13429E68CAE720A48B72 35224 ----a-w- C:\Users\Martijn\AppData\Local\Temp\i4jdel0.exe
          ====== Java Cache =====
          ====== C:\Windows\SysWOW64 =====
          2014-04-11 17:54:54 F557E36B291BE2B28FCA4D4A68AE2219 114176 ----a-w- C:\Windows\SysWOW64\PCWizard.cpl
          2014-04-11 17:53:45 A4001C78F2806662B3BD91ACB44E6330 45 ----a-w- C:\Windows\SysWOW64\initdebug.nfo
          2014-04-11 17:44:49 3E62CF18441A03A440B280182E4B6935 129872 ----a-w- C:\Windows\SysWOW64\MSSTDFMT.DLL
          2014-04-11 17:44:49 03B0224FD1E2D8A6DBC2B18404092F21 1070352 ----a-w- C:\Windows\SysWOW64\MSCOMCTL.OCX
          2014-04-09 18:04:56 CCF19C82F6145E4A467F7CB9AF82026C 17073152 ----a-w- C:\Windows\SysWOW64\mshtml.dll
          2014-04-09 18:04:56 A45A13AAC7777C096A073FF1F4F5A0D5 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
          2014-04-09 18:04:45 76161B9D78A275F8F28DD67436013110 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll
          2014-04-09 18:04:44 2E1D6624EE2C3F454CADF09DC59E78B0 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
          2014-04-09 18:04:44 1F76F7CB3C690ACB985C2FD419383B49 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll
          2014-04-09 18:04:42 1E886E327F37F34CC7465F1605D1F3CD 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll
          2014-04-09 18:04:41 A30AB03E7C837A17AC70E67E63B8E2F6 2048 ----a-w- C:\Windows\SysWOW64\user.exe
          2014-04-09 18:04:41 9F3D88540DB73F5213D5044CB50006DF 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
          2014-04-07 15:32:20 CDAF40B0072CAF378935E1B3F4AC0DDC 33568 ----a-w- C:\Windows\SysWOW64\nvaudcap32v.dll
          ====== C:\Windows\SysWOW64\drivers =====
          ====== C:\Windows\Sysnative =====
          2014-04-09 18:04:57 C3E3EFD320D0000BE6F9CDB00CD6086F 23134208 ----a-w- C:\Windows\Sysnative\mshtml.dll
          2014-04-09 18:04:56 14257E59C8452DCC38B8D55DEDC6EE0D 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
          2014-04-09 18:04:45 D2A513EE880D71BDE7F0257F38B9D019 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll
          2014-04-09 18:04:45 7434E01FBCA3CB86539C39412A31D5E1 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll
          2014-04-09 18:04:45 2A107B611C91CD256466C58C0D776E9D 243712 ----a-w- C:\Windows\Sysnative\wow64.dll
          2014-04-09 18:04:44 74959C718FF4594369645F35B7DF19C4 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll
          2014-04-09 18:04:44 0F090A77E664CB0F70AB8D3B230B760C 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll
          ====== C:\Windows\Sysnative\drivers =====
          2014-04-11 17:01:21 6140163BFE9D8F2DFDBA088ED5521C13 119512 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
          2014-04-11 17:01:04 C49915271600CFC2305FAA4271D0002F 63192 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
          2014-04-11 17:01:04 4A1356200B82B852E137B687F03E8054 88280 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
          2014-04-09 18:04:55 96BB922A0981BC7432C8CF52B5410FE6 274880 ----a-w- C:\Windows\Sysnative\drivers\msiscsi.sys
          2014-04-09 18:04:54 B3222734D80013D2C73841B0C549FA63 27584 ----a-w- C:\Windows\Sysnative\drivers\Diskdump.sys
          2014-04-09 18:04:54 A3F0BC5897F9D3786A3CB695B163633A 190912 ----a-w- C:\Windows\Sysnative\drivers\storport.sys
          2014-04-09 18:04:40 1A29A59A4C5BA6F8C85062A613B7E2B2 1684928 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys
          2014-04-07 15:32:20 50A7C3FEA78D11B546EA9B0C25FBC6AB 40392 ----a-w- C:\Windows\Sysnative\drivers\nvvad64v.sys
          ====== C:\Windows\Tasks ======
          ====== C:\Windows\Temp ======
          ======= C:\Program Files =====
          ======= C:\PROGRA~2 =====
          2014-04-11 17:54:53 -------- d-----w- C:\PROGRA~2\CPUID
          2014-04-11 17:53:45 -------- d-----w- C:\PROGRA~2\SpeedFan
          2014-04-11 17:44:49 -------- d-----w- C:\PROGRA~2\SpywareBlaster
          ======= C: =====
          ====== C:\Users\Martijn\AppData\Roaming ======
          2014-04-11 17:53:46 -------- d-----w- C:\Users\Martijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
          2014-03-17 21:52:30 04C5ECC994B24EB8B75F7DA3E571EB6A 6478 ----a-w- C:\Users\Martijn\AppData\Roaming\temp19436.txt
          ====== C:\Users\Martijn ======
          2014-04-14 20:40:39 9A8336796A7C71E9F33DE848B8320ED3 380416 ----a-w- C:\Users\Martijn\Desktop\ienr5wdf.exe
          2014-04-14 20:40:04 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Martijn\Desktop\dds.com
          2014-04-14 20:11:00 D28291D3F8CFD0BDA58BE1B77C4FE556 168 ----a-w- C:\Users\Martijn\defogger_reenable
          2014-04-14 20:10:34 9146F21288AB749C4C729343F5F285A1 50477 ----a-w- C:\Users\Martijn\Downloads\Defogger.exe
          2014-04-11 18:18:05 565592D342E241EB6FCA351F9C810AE3 4787368 ----a-w- C:\Users\Martijn\Downloads\ccsetup412.exe
          2014-04-11 17:54:54 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
          2014-04-11 17:52:08 AE920F1A16AEA8DD2B167589BA017899 5334083 ----a-w- C:\Users\Martijn\Downloads\pc-wizard_2013.2.12-setup.exe
          2014-04-11 17:50:28 4F9A1342BD43F5A6184088A6B6893062 2143832 ----a-w- C:\Users\Martijn\Downloads\instsf449.exe
          2014-04-11 17:44:56 -------- d-----w- C:\ProgramData\Licenses
          2014-04-11 17:44:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
          2014-04-11 17:44:37 78130949095E6721B40B50E77C1F1BBC 4095448 ----a-w- C:\Users\Martijn\Downloads\spywareblastersetup50.exe
          2014-04-11 17:00:19 302103AF95A8F43AD85F80DAE14BDB9C 17305616 ----a-w- C:\Users\Martijn\Downloads\mbam-setup-2.0.1.1004.exe

          ====== C: exe-files ==
          2014-04-16 18:36:53 A13247109B42B2E6215A823048B81276 378264 ----a-w- C:\Users\Martijn\AppData\Local\NVIDIA\NvBackend\Packages\00005a21\updatus.18289997_RUNASUSER.exe
          2014-04-15 18:43:26 0E771375445E13429E68CAE720A48B72 35224 ----a-w- C:\Users\Martijn\AppData\Local\Temp\i4jdel0.exe
          2014-04-15 18:35:30 2F57AED9CF8AF2D1712B4B50255E1F3D 3479752 ----a-w- C:\Users\Martijn\AppData\Local\NVIDIA\NvBackend\Packages\00005a1a\DAO.18282512.exe
          2014-04-14 20:40:39 9A8336796A7C71E9F33DE848B8320ED3 380416 ----a-w- C:\Users\Martijn\Desktop\ienr5wdf.exe
          2014-04-14 20:10:34 9146F21288AB749C4C729343F5F285A1 50477 ----a-w- C:\Users\Martijn\Downloads\Defogger.exe
          2014-04-14 18:06:25 1BF55AC5E1750706577BDD93E1F07309 378016 ----a-w- C:\Users\Martijn\AppData\Local\NVIDIA\NvBackend\Packages\00005a05\updatus.18253945_RUNASUSER.exe
          2014-04-12 18:04:07 7334533D236A4ED14E65E577FE025A30 3477960 ----a-w- C:\Users\Martijn\AppData\Local\NVIDIA\NvBackend\Packages\000059ff\DAO.18253925.exe
          2014-04-11 18:18:05 565592D342E241EB6FCA351F9C810AE3 4787368 ----a-w- C:\Users\Martijn\Downloads\ccsetup412.exe
          2014-04-11 17:54:54 D64D1E9E5AAE16E1A648A981192999CC 29696 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\Mark\markx86_324.exe
          2014-04-11 17:54:54 BACB957837A2EA83FD39D229726C05E6 20480 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\Data\settings.exe
          2014-04-11 17:54:54 52A6DA5EDAD61ABBB0535F8EE3E44C65 21797 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\Data\pcwiz16.exe
          2014-04-11 17:54:54 2E6B32958BA4AE8EBAEA020129C34D2B 218112 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\Web\webupdt.exe
          2014-04-11 17:54:53 D331BDA7C6D9668DD26F7A07B2FB8D13 73728 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\PC Wizard.exe
          2014-04-11 17:54:53 B80D455C1B4897AC67A790D7B49BD186 741377 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\unins000.exe
          2014-04-11 17:54:53 216D3D767466CF1F9A41A662A6171DA5 608856 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\systweakasp_c.exe
          2014-04-11 17:53:46 3CA9655CFEEEB1B341A247EDC1678C01 36867 ----a-w- C:\Program Files (x86)\SpeedFan\uninstall.exe
          2014-04-11 17:52:08 AE920F1A16AEA8DD2B167589BA017899 5334083 ----a-w- C:\Users\Martijn\Downloads\pc-wizard_2013.2.12-setup.exe
          2014-04-11 17:50:28 4F9A1342BD43F5A6184088A6B6893062 2143832 ----a-w- C:\Users\Martijn\Downloads\instsf449.exe
          2014-04-11 17:44:49 BE2EE9C219B016AEC95F604FBFFEE171 2115192 ----a-w- C:\Program Files (x86)\SpywareBlaster\sbautoupdate.exe
          2014-04-11 17:44:49 AE13FB6BD8086465217F6A063EC3FCC3 715038 ----a-w- C:\Program Files (x86)\SpywareBlaster\unins000.exe
          2014-04-11 17:44:49 1BE8001D5C4EEE56A97980CD6987EB40 2557544 ----a-w- C:\Program Files (x86)\SpywareBlaster\spywareblaster.exe
          2014-04-11 17:44:49 0EED9CD892F88435BFD1AE41EF6ED60D 119976 ----a-w- C:\Program Files (x86)\SpywareBlaster\sburlhelper.exe
          2014-04-11 17:44:37 78130949095E6721B40B50E77C1F1BBC 4095448 ----a-w- C:\Users\Martijn\Downloads\spywareblastersetup50.exe
          2014-04-11 17:00:19 302103AF95A8F43AD85F80DAE14BDB9C 17305616 ----a-w- C:\Users\Martijn\Downloads\mbam-setup-2.0.1.1004.exe
          2014-04-10 18:01:37 419DFE8F3BEB92B8EAA9A270B3264990 377176 ----a-w- C:\Users\Martijn\AppData\Local\NVIDIA\NvBackend\Packages\000059eb\updatus.18240085_RUNASUSER.exe
          2014-04-10 14:18:48 8FAE9109245E4B4FF42704ECFB86F1B6 8704216 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\34.0.1847.116\34.0.1847.116_33.0.1750.154_chrome_updater.exe
          === C: other files ==
          2014-04-14 20:40:04 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Martijn\Desktop\dds.com
          2014-04-11 17:54:54 A453083B8F4CA7CB60CAC327E97EDBE2 25320 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys
          2014-04-11 17:54:54 557FD33EE99DB6FE263CFCB82B7866B3 28976 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_ia64.sys
          2014-04-11 17:54:54 3AB94FBA7196E84A97E83B15F7BCB270 25320 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_x32.sys
          2014-04-11 17:01:21 6140163BFE9D8F2DFDBA088ED5521C13 119512 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
          2014-04-11 17:01:04 C49915271600CFC2305FAA4271D0002F 63192 ----a-w- C:\Windows\System32\drivers\mwac.sys
          2014-04-11 17:01:04 4A1356200B82B852E137B687F03E8054 88280 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
          2014-04-11 11:20:35 8AF11EF119BDFC350FBF3786C31C32D8 1606588 ----a-w- C:\Users\Martijn\AppData\Roaming\Azureus\plugins\aznettor\aznettor_0.6.2.zip

          ==== Startup Registry Enabled ======================

          [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
          "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

          [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
          "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

          [HKEY_USERS\S-1-5-21-434062790-2592518851-4091637758-1001\Software\Microsoft\Windows\CurrentVersion\Run]
          "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
          "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
          "Akamai NetSession Interface"="C:\Users\Martijn\AppData\Local\Akamai\netsession_win.exe"

          [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
          "mctadmin"="C:\Windows\System32\mctadmin.exe"

          [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
          "mctadmin"="C:\Windows\System32\mctadmin.exe"

          [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
          "USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
          "LockKey"="C:\Program Files (x86)\LockKey\LockKey.exe"
          "IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
          "331BigDog"="C:\Program Files (x86)\USB Camera\VM331_STI.EXE"
          "Lenovo Registration"="C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot"
          "Intelligent Touchpad"="C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe"
          "YouCam Mirage"="C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
          "YouCam Tray"="C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe /s"
          "UpdateP2GShortCut"="C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\Lenovo\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\5.0"
          "VeriFaceManager"="C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe"
          "RemoteControl10"="C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
          "BDRegion"="C:\Program Files (x86)\Cyberlink\Shared files\brs.exe"
          "UpdatePRCShortCut"="C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe C:\Program Files\Lenovo\OneKey App\OneKey Recovery UpdateWithCreateOnce Software\Lenovo\OneKey App\OneKey Recovery"
          "McAfeeUpdaterUI"="C:\Program Files (x86)\McAfee\Common Framework\udaterui.exe /StartedFromRunKey"
          "ShStatEXE"="C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE /STANDALONE"
          "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
          "DivXMediaServer"="C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe"
          "HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"
          "Reader Application Helper"="C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe"
          "ConnectionCenter"="C:\Program Files (x86)\Citrix\ICA Client\concentr.exe /startup"
          "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
          "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
          "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
          "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
          "DivXUpdate"="C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe /CHECKNOW"

          [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
          "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
          "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
          "Akamai NetSession Interface"="C:\Users\Martijn\AppData\Local\Akamai\netsession_win.exe"

          [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
          "AppInit_DLLs"="C:\\Windows\\SysWOW64\\nvinit.dll"

          ==== Startup Registry Enabled x64 ======================

          [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
          "OnekeyStudio"="C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe"
          "UpdatePRCShortCut"="C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe C:\Program Files\Lenovo\OneKey App\OneKey Recovery UpdateWithCreateOnce Software\Lenovo\OneKey App\OneKey Recovery"
          "Energy Management"="C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
          "EnergyUtility"="C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe"
          "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"
          "IgfxTray"="C:\Windows\system32\igfxtray.exe"
          "HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
          "Persistence"="C:\Windows\system32\igfxpers.exe"
          "ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
          "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
          "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
          "RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4"
          "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
          "SynLenovoGestureMgr"="%ProgramFiles%\Synaptics\SynTP\SynLenovoGestureMgr.exe "

          [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
          "AppInit_DLLs"="C:\\Windows\\SysWOW64\\nvinit.dll, C:\\Windows\\system32\\nvinitx.dll"

          ==== Startup Folders ======================

          2012-07-17 15:14:00 876 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk

          ==== Task Scheduler Jobs ======================

          C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11-03-2014 23:32]
          C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [17-07-2012 17:35]
          C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [17-07-2012 17:35]
          C:\Windows\tasks\HP Photo Creations Messager.job --a------ C:\ProgramData\HP Photo Creations\MessageCheck.exe [15-02-2011 12:11]

          ==== Other Scheduled Tasks ======================

          "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
          "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
          "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
          "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
          "C:\Windows\SysNative\tasks\HP Photo Creations Messager" [C:\ProgramData\HP Photo Creations\MessageCheck.exe]
          "C:\Windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe]
          "C:\Windows\SysNative\tasks\OFFICE2010ACT" [C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs]
          "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
          "C:\Windows\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program" ["%ProgramFiles%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"]
          "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

          ==== Firefox Extensions Registry ======================

          [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
          "{D19CA586-DD6C-4a0a-96F8-14644F340D60}"="C:\Program Files (x86)\Common Files\McAfee\SystemCore" [05-11-2012 03:46]

          ==== Chrome Look ======================

          Google Wallet - Martijn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

          ==== Set IE to Default ======================

          Old Values:
          [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
          "Start Page"="http://www.ad.nl/"
          "Default_Page_URL"="http://www.google.com"
          [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
          "Default_Search_URL"="http://www.google.com"
          "Default_Page_URL"="http://www.google.com"
          "Start Page"="http://www.google.com"
          "Search Page"="http://www.awesomehp.com/web/?type=ds&ts=1390907170&from=smt&uid=SAMSUNGXMZMPC064HBDR-000L1_S0Y3NSAC501031&q={searchTerms}"
          [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
          "Default_Search_URL"="http://www.google.com"
          "Default_Page_URL"="http://www.google.com"
          "Start Page"="http://www.google.com"
          "Search Page"="http://www.awesomehp.com/web/?type=ds&ts=1390907170&from=smt&uid=SAMSUNGXMZMPC064HBDR-000L1_S0Y3NSAC501031&q={searchTerms}"

          New Values:
          [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
          "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
          "Start Page"="http://www.ad.nl/"
          [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
          "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
          "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
          "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
          "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
          [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
          "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
          "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
          "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
          "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

          ==== All HKCU SearchScopes ======================

          HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
          "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
          {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
          {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startInde x={startIndex?}&startPage={startPage}"
          {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Unknown Url="Not_Found"

          ==== Deleting CLSID Registry Keys ======================

          HKEY_USERS\S-1-5-21-434062790-2592518851-4091637758-1001\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} deleted successfully

          ==== Deleting CLSID Registry Values ======================


          ==== shortcuts on Users Desktops ======================

          C:\Users\Default\Desktop\Cyberlink Power2Go.lnk - C:\Program Files (x86)\Lenovo\Power2Go\Power2Go.exe
          C:\Users\Default\Desktop\OneKey Recovery.lnk - C:\Program Files\Lenovo\OneKey App\OneKey Recovery\OneKey Recovery.exe
          C:\Users\Default User\Desktop\Cyberlink Power2Go.lnk - C:\Program Files (x86)\Lenovo\Power2Go\Power2Go.exe
          C:\Users\Default User\Desktop\OneKey Recovery.lnk - C:\Program Files\Lenovo\OneKey App\OneKey Recovery\OneKey Recovery.exe
          C:\Users\Martijn\Desktop\Cyberlink Power2Go.lnk - C:\Program Files (x86)\Lenovo\Power2Go\Power2Go.exe
          C:\Users\Martijn\Desktop\DivX Movies.lnk - C:\Users\Martijn\Videos\DivX Movies
          C:\Users\Martijn\Desktop\iexplore - Snelkoppeling.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
          C:\Users\Martijn\Desktop\OneKey Recovery.lnk - C:\Program Files\Lenovo\OneKey App\OneKey Recovery\OneKey Recovery.exe
          C:\Users\Martijn\Desktop\PC Wizard 2013.lnk - C:\Program Files (x86)\CPUID\PC Wizard 2013\PC Wizard.exe
          C:\Users\Martijn\Desktop\Play Tomb Rader 2013.lnk - C:\Games\Tomb Rader 2013\TombRaider.exe
          C:\Users\Martijn\Desktop\SkyrimLauncher - Snelkoppeling.lnk - C:\Program Files (x86)\TSEV Skyrim LE\SkyrimLauncher.exe
          C:\Users\Martijn\Desktop\SpeedFan.lnk - C:\Program Files (x86)\SpeedFan\speedfan.exe
          C:\Users\Martijn\Desktop\TSEV Skyrim LE.lnk - C:\Program Files (x86)\TSEV Skyrim LE\SkyrimLauncher.exe
          C:\Users\Martijn\Desktop\Ventrilo.lnk - C:\Program Files (x86)\Ventrilo\Ventrilo.exe

          ==== shortcuts on All Users Desktop ======================

          C:\Users\Public\Desktop\Aangifte inkomstenbelasting 2010.lnk - C:\Program Files (x86)\Belastingdienst\Aangifte inkomstenbelasting\2010\ib2010.exe
          C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
          C:\Users\Public\Desktop\Battle.net.lnk - C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe
          C:\Users\Public\Desktop\Benodigdheden kopen - HP Deskjet 3050A J611 series.lnk - C:\Program Files (x86)\HP\HP Deskjet 3050A J611 series\Bin\hpqDTSS.exe
          C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe
          C:\Users\Public\Desktop\DAEMON Tools Lite.lnk - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
          C:\Users\Public\Desktop\DayZ Commander.lnk - C:\Program Files (x86)\Dotjosh Studios\DayZ Commander\Current\DayZCommander.exe
          C:\Users\Public\Desktop\GeForce Experience.lnk - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe
          C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Users\Public\Desktop\Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe
          C:\Users\Public\Desktop\Hearthstone.lnk - C:\Program Files (x86)\Hearthstone\Hearthstone Beta Launcher.exe
          C:\Users\Public\Desktop\HP Deskjet 3050A J611 series.lnk - C:\Program Files (x86)\HP\HP Deskjet 3050A J611 series\Bin\HP Deskjet 3050A J611 series.exe
          C:\Users\Public\Desktop\HP ePrintCenter - HP Deskjet 3050A J611 series.lnk - C:\Program Files (x86)\HP\HP Deskjet 3050A J611 series\ePrintCenterShortcut.url
          C:\Users\Public\Desktop\HP Photo Creations.lnk - C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe
          C:\Users\Public\Desktop\Intel(R) WiDi.lnk - C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe
          C:\Users\Public\Desktop\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe
          C:\Users\Public\Desktop\Lenovo PowerDVD 10.lnk - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVDLaunchPolicy.exe
          C:\Users\Public\Desktop\Lenovo YouCam.lnk - C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe
          C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
          C:\Users\Public\Desktop\Microsoft Office 2010 Activation.lnk - C:\Program Files (x86)\Microsoft Office\Options14\MSOO.EXE
          C:\Users\Public\Desktop\Need for Speed Most Wanted.lnk - C:\Program Files (x86)\EA Games\Need for Speed Most Wanted\NFS13.exe
          C:\Users\Public\Desktop\Nexus Mod Manager.lnk - C:\Program Files\Nexus Mod Manager\NexusClient.exe
          C:\Users\Public\Desktop\OpenOffice.org 3.4.1.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
          C:\Users\Public\Desktop\Play withSIX.lnk - C:\Windows\Installer\{310CC2FA-5EC5-48B6-BB31-5551B78449BA}\_A3F1C77B27554F42BEA92851C770F530.exe
          C:\Users\Public\Desktop\QuickTime Player.lnk - C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
          C:\Users\Public\Desktop\Reader for PC.lnk - C:\Program Files (x86)\Sony\ReaderDesktop\Reader.exe
          C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
          C:\Users\Public\Desktop\SpywareBlaster.lnk - C:\Program Files (x86)\SpywareBlaster\spywareblaster.exe
          C:\Users\Public\Desktop\Steam.lnk - C:\Program Files (x86)\Steam\Steam.exe
          C:\Users\Public\Desktop\The Witcher 2 - Assassins of Kings Enhanced Edition.lnk - C:\Program Files (x86)\GOG.com\The Witcher 2 Enhanced Edition\Launcher.exe
          C:\Users\Public\Desktop\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe
          C:\Users\Public\Desktop\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe
          C:\Users\Public\Desktop\World of Warcraft.lnk - C:\Users\Martijn\Desktop\World of Warcraft\World of Warcraft Launcher.exe
          C:\Users\Public\Desktop\World of Warplanes.lnk - C:\Games\World_of_Warplanes\WoWpLauncher.exe
          C:\Users\Public\Desktop\XCOM Enemy Unknown.lnk - C:\Program Files (x86)\XCOM Enemy Unknown\Binaries\Win32\XComGame.exe

          ==== shortcuts in Users Start Menu ======================

          C:\Users\Martijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Energy Management\Help file.Lnk - C:\Program Files (x86)\Lenovo\Energy Management\Dut.chm
          C:\Users\Martijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Energy Management\Power management options.Lnk - C:\Program Files (x86)\Lenovo\Energy Management\Open EnergyManagement.exe
          C:\Users\Martijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Onekey Theater\OneKey Theater afsluiten.Lnk - C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe -stop
          C:\Users\Martijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Onekey Theater\OneKey Theater openen.Lnk - C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe -start
          C:\Users\Martijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan\Help and HOW-TO.lnk - C:\Program Files (x86)\SpeedFan\speedfan.chm
          C:\Users\Martijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan\Release info.lnk - C:\Program Files (x86)\SpeedFan\speedfan.txt
          C:\Users\Martijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan\SpeedFan.lnk - C:\Program Files (x86)\SpeedFan\speedfan.exe
          C:\Users\Martijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan\Uninstall SpeedFan.lnk - C:\Program Files (x86)\SpeedFan\uninstall.exe

          ==== shortcuts in All Users Start Menu ======================

          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\PC Wizard 2013\PC Wizard 2013 Instellingen.lnk - C:\Program Files (x86)\CPUID\PC Wizard 2013\Data\settings.exe
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\PC Wizard 2013\PC Wizard 2013.lnk - C:\Program Files (x86)\CPUID\PC Wizard 2013\PC Wizard.exe
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\PC Wizard 2013\ReadMe.lnk - C:\Program Files (x86)\CPUID\PC Wizard 2013\readme.txt
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\PC Wizard 2013\Release Notes.lnk - C:\Program Files (x86)\CPUID\PC Wizard 2013\release.txt
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\PC Wizard 2013\Verwijder PC Wizard 2013.lnk - C:\Program Files (x86)\CPUID\PC Wizard 2013\unins000.exe
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\PC Wizard 2013\Web Update Applicatie.lnk - C:\Program Files (x86)\CPUID\PC Wizard 2013\Web\webupdt.exe
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Check for Updates.lnk - C:\Program Files (x86)\DivX\DivX Control Panel\DivXControlPanelLauncher.exe /start=update
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter.lnk - C:\Program Files (x86)\DivX\DivX Converter\DivXConverterLauncher.exe
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Player.lnk - C:\Program Files (x86)\DivX\DivX Player\DivX Player.exe
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Register.lnk - C:\Program Files (x86)\DivX\DivX Control Panel\DivXControlPanelLauncher.exe /start=registration
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.awesomehp.com/?type=sc&ts...S0Y3NSAC501031
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster\SpywareBlaster Help.lnk - C:\Program Files (x86)\SpywareBlaster\sbhelp.chm
          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster\SpywareBlaster.lnk - C:\Program Files (x86)\SpywareBlaster\spywareblaster.exe

          ==== shortcuts in Quick Launch ======================

          C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
          C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
          C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
          C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.awesomehp.com/?type=sc&ts...S0Y3NSAC501031
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Word 2010.lnk - C:\Windows\Installer\{90140000-0011-0000-1000-0000000FF1CE}\wordicon.exe
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\iexplore - Snelkoppeling.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1

          ==== shortcuts After Repair ======================

          C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Users\Martijn\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

          ==== Empty IE Cache ======================

          C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
          C:\Users\Martijn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
          C:\Users\Martijn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
          C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
          C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
          C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
          C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

          ==== Empty FireFox Cache ======================

          No FireFox Profiles found

          ==== Empty Chrome Cache ======================

          C:\Users\Martijn\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

          ==== Empty All Flash Cache ======================

          Flash Cache Emptied Successfully

          ==== Empty All Java Cache ======================

          Java Cache cleared successfully

          ==== C:\zoek_backup content ======================

          C:\zoek_backup (files=130 folders=44 2883252 bytes)

          ==== Empty Temp Folders ======================

          C:\Users\Default\AppData\Local\Temp emptied successfully
          C:\Users\Default User\AppData\Local\Temp emptied successfully
          C:\Users\Martijn\AppData\Local\Temp will be emptied at reboot
          C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
          C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
          C:\Windows\Temp will be emptied at reboot

          ==== After Reboot ======================

          ==== Empty Temp Folders ======================

          C:\Windows\Temp successfully emptied
          C:\Users\Martijn\AppData\Local\Temp successfully emptied

          ==== Empty Recycle Bin ======================

          C:\$RECYCLE.BIN successfully emptied

          ==== EOF on wo 16-04-2014 at 20:48:20,19 ======================

          Comment


          • #6
            Ok, is er al verbetering merkbaar ?

            Windows 10 opstarten in Veilige Modus

            Comment


            • #7
              Ja, lijkt wel te verbeteren. De computer gaat bij het opstarten alleen nog steeds naar "deze computer"

              Comment


              • #8
                Nu laadt de laptop ook de accu niet meer op

                PS, het touch pad doet het nu ook al niet meer
                Last edited by Martijns91; 20-04-14, 21:59.

                Comment


                • #9
                  Er lijkt me wat anders aan de hand dan malware of virus, safe je bestanden foto's etc als je dat nog niet gedaan hebt.

                  Windows 10 opstarten in Veilige Modus

                  Comment


                  • #10
                    Touchpad doet het weer, en de laptop laadt ook weer op.

                    Comment


                    • #11
                      Kijk positieve verbeteringen.

                      Windows 10 opstarten in Veilige Modus

                      Comment


                      • #12
                        Ja volgens mij draait alles weer zo als het hoort. Ik weet niet of ik nog iets kan doen ?

                        Comment


                        • #13
                          Je mag de gebruikte tools weer verwijderen.

                          Windows 10 opstarten in Veilige Modus

                          Comment


                          • #14
                            Okee, bedankt voor je hulp.

                            Comment

                            Sorry, you are not authorized to view this page
                            Working...
                            X