Mededeling

Collapse
No announcement yet.

Windows verkenner/ Adobe player/ chrome etc etc werkt niet meer

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • Windows verkenner/ Adobe player/ chrome etc etc werkt niet meer

    Hoi allemaal!

    Dit is niet mijn eerste keer op deze site, de vorige keer hebben jullie mij ook fantastisch geholpen.
    Aangezien jullie hier verstand van hebben kom ik weer met hangende pootjes terug. Mijn vorige account is waarschijnlijk door inactiviteit verwijderd dus een nieuwe aangemaakt.

    Ik heb het volgende probleem: ik heb een aantal weken geleden last gekregen van telkens meldingen van *naam programma* werkt niet meer. Komt bij heel veel willekeurige programma's voor. Zelf als ik een powerpoint maak of adobe gebruik moet ik het programma zes keer opnieuw opstarten en daarna doet hij het pas écht.

    Heeft iemand de tijd om mij hier van af te helpen? Het is allemaal heel leuk en aardig, maar ik heb mijn laptop écht nodig voor mij werk!

    Met vriendelijke groet,
    Leon Lasker

  • #2
    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scan Date: 10-8-2014
    Scan Time: 11:11:10
    Logfile: mmmmbam.txt
    Administrator: Yes

    Version: 2.00.2.1012
    Malware Database: v2014.08.10.01
    Rootkit Database: v2014.08.04.01
    License: Free
    Malware Protection: Disabled
    Malicious Website Protection: Disabled
    Self-protection: Disabled

    OS: Windows 7 Service Pack 1
    CPU: x64
    File System: NTFS
    User: Leon

    Scan Type: Custom Scan
    Result: Completed
    Objects Scanned: 569895
    Time Elapsed: 2 hr, 8 min, 55 sec

    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Enabled
    PUM: Enabled

    Processes: 0
    (No malicious items detected)

    Modules: 0
    (No malicious items detected)

    Registry Keys: 0
    (No malicious items detected)

    Registry Values: 0
    (No malicious items detected)

    Registry Data: 0
    (No malicious items detected)

    Folders: 0
    (No malicious items detected)

    Files: 3
    Trojan.VirTool, C:\Program Files (x86)\FIFA 13\Game\rld.dll, Quarantined, [6782dde73942c076c0235fcc976b31cf],
    Trojan.Agent.CK, C:\Program Files (x86)\Ubisoft\Assassin's Creed II\ubiorbitapi_r2.dll, Quarantined, [6d7c378d007b191d39f2eb093ec3da26],
    Trojan.Agent.CK, C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2.dll, Quarantined, [7c6d6460d0ab53e31219e60e0ef38d73],

    Physical Sectors: 0



    (end)



    Dit is van malwarebytes. In de bijlage twee meldingen die ik direct kreeg nadat ik de laptop opnieuw opgestart heb.





    (No malicious items detected)Click image for larger version

Name:	foto1.jpg
Views:	1
Size:	171,4 KB
ID:	1067813Click image for larger version

Name:	foto 2.png
Views:	1
Size:	993,1 KB
ID:	1067814

    Comment


    • #3
      Hoi leoon,

      Als ik het MBAM rapport bekijk, merk ik dat vnl je games getarget worden.
      Zijn deze legaal aangekocht? Zoniet: verwijderen en de keygens ook.

      Als je dat hebt gedaan, doe je het volgende:


      Stap 1:

      Controle op slechte toolbars...

      Download AdwCleaner by Xplode naar je Bureaublad.
      • Sluit alle openstaande vensters
      • Start AdwCleaner
      • Klik op Scannen
      • Klik op Verwijderen
      • KLIK HIER voor een vergroting! 

      Alle icoontjes verdwijnen van het Bureaublad,dit is normaal
      Je PC word opnieuw opgestart en er een opent een logfile (C:\ AdwCleaner\AdwCleaner[xx].txt
      Post deze inhoud hier op het Forum.

      Enkel de log na de "Verwijderen" optie heb ik nodig.

      Vergeet niet om je "smileys" uit te schakelen.

      Als je Startpagina ook gehijackt was,stel dan de zoekmachine opnieuw in.
      Deze word standaard door AdwCleaner terug gezet naar Google.com
      ___________________________________________________________

      Stap 2:

      Download DDS.com, DDS.scr of DDS.pif van één van deze locaties en plaats het op je bureaublad:


      DDS is een diagnosetool en maakt gebruik van scripts.
      Is het uitvoeren van scripts uitgeschakeld, dan schakel je dit weer in zodat er geen problemen optreden bij gebruik van DDS.


      Dubbelklik op DDS om de tool te starten. (afhankelijk van de download die je gekozen hebt kan dit het bestand DDS.com, DDS.scr of DDS.pif zijn)
      Wanneer het klaar is openen er twee logfiles: DDS.txt en Attach.txt
      Beide logfiles sla je op je bureaublad.

      Post de inhoud van DDS.txt.

      De inhoud Attach.txt moet je niet posten en Attach.txt moet je niet als bijlage toevoegen aan je post, tenzij ik er om vraag.


      ___________________________________________________________

      Stap 3:

      Download Security Check op je bureaublad via hier of hier

      Start Security Check
      Volg de Instructies in het scherm
      Aan het eind verschijnt een log ( checkup.txt )
      Plaats de inhoud ervan in je volgende antwoord.


      In je volgende posting, had ik graag de volgende logs gezien, gemaakt in de opgestelde volgorde:
      .
      • AdwCleaner
      • DDS
      • checkup.txt

      .
      Deze logs NIET als bijlage of tussen codetags posten aub.
      (Desnoods in meerdere postingen.)

      Emphyrio
      Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
      E Dev * McAfee verwijderen. * Ccleaner * E-Peek

      Comment


      • #4
        Hoi emphyrio!

        Bedankt voor je hulp.

        Hier nog een screenshot van weer een andere melding:Click image for larger version

Name:	foto3.jpg
Views:	1
Size:	167,4 KB
ID:	1067816

        Hier is het eerste logje, die ik even snel in de pauze van de voetbal doen kon.
        De rest doe ik over 45 minuten dus!

        # AdwCleaner v3.304 - Rapport aangemaakt 10/08/2014 op 17:37:39
        # Laatste Update 08/08/2014 door Xplode
        # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits)
        # Gebruikersnaam : Leon - COMPUTER2013
        # Gestart vanuit : C:\Users\Leon\Downloads\adwcleaner_3.304.exe
        # Optie : Verwijderen

        ***** [ Services ] *****


        ***** [ Bestanden / Mappen ] *****

        Map Verwijderd : C:\ProgramData\eSafe
        Map Verwijderd : C:\Users\Leon\AppData\Local\Bundled software uninstaller
        Map Verwijderd : C:\Users\Leon\AppData\Local\PackageAware
        Bestand Verwijderd : C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage
        Bestand Verwijderd : C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage-journal
        Bestand Verwijderd : C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.lyricsfreak.com_0.localstorage
        Bestand Verwijderd : C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.lyricsfreak.com_0.localstorage-journal

        ***** [ Taken ] *****


        ***** [ Snelkoppelingen ] *****


        ***** [ Register ] *****

        Waarde Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [iLivid]
        Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\secman.DLL
        Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
        Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
        Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
        Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
        Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
        Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
        Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
        Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_ace-player-hd_RASAPI32
        Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_ace-player-hd_RASMANCS
        Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
        Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
        Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
        Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
        Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
        Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
        Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
        Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
        Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
        Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
        Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
        Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
        Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
        Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
        Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
        Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
        Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
        Sleutel Verwijderd : HKCU\Software\ilivid
        Sleutel Verwijderd : HKCU\Software\Myfree Codec
        Sleutel Verwijderd : HKCU\Software\Softonic
        Sleutel Verwijderd : HKLM\Software\Myfree Codec

        ***** [ Browsers ] *****

        -\\ Internet Explorer v0.0.0.0


        -\\ Mozilla Firefox v27.0.1 (nl)

        [ Bestand : C:\Users\Leon\AppData\Roaming\Mozilla\Firefox\Profiles\r61i5f3h.default\prefs.js ]


        -\\ Google Chrome v36.0.1985.125

        [ Bestand : C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\preferences ]

        Verwijderd [Search Provider] : hxxp://www.vd.nl/search.jsf?suggesturl=hxxp%3A%2F%2Fquery.published.live1.suggest.eu1.fredhopperservices.com%2Fvd_nl% 2Fjscript%3Fscope%3D%2F%2Fcatalog01%2Fnl_NL%26search%3D%25query%25%26random%3D%25random%25&searchQue ry={searchTerms}&SearchSuggestUsed=true
        Verwijderd [Search Provider] : hxxp://nl.softonic.com/s/{searchTerms}

        *************************

        AdwCleaner[R0].txt - [5308 octets] - [10/08/2014 17:36:48]
        AdwCleaner[S0].txt - [4785 octets] - [10/08/2014 17:37:39]

        ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4845 octets] ##########

        Comment


        • #5
          DDS (Ver_2012-11-20.01) - NTFS_AMD64
          Internet Explorer: BrowserJavaVersion: 10.55.2
          Run by Leon at 17:48:30 on 2014-08-10
          Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.6042.3304 [GMT 2:00]
          .
          AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
          SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
          SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
          .
          ============== Running Processes ===============
          .
          C:\Windows\system32\lsm.exe
          C:\Windows\system32\svchost.exe -k DcomLaunch
          C:\Windows\system32\svchost.exe -k RPCSS
          C:\Windows\system32\atiesrxx.exe
          C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
          C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
          C:\Windows\system32\svchost.exe -k LocalService
          C:\Windows\system32\svchost.exe -k netsvcs
          C:\Program Files\IDT\WDM\STacSV64.exe
          C:\Windows\system32\svchost.exe -k GPSvcGroup
          C:\Windows\system32\Hpservice.exe
          C:\Windows\system32\svchost.exe -k NetworkService
          C:\Windows\system32\atieclxx.exe
          C:\Program Files\AVAST Software\Avast\AvastSvc.exe
          C:\Windows\System32\spoolsv.exe
          C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
          C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
          C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
          C:\Program Files\Bonjour\mDNSResponder.exe
          C:\Windows\SysWOW64\ezSharedSvcHost.exe
          C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
          C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
          C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
          C:\Program Files\Intel\iCLS Client\HeciServer.exe
          C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
          C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
          C:\Windows\SysWOW64\PnkBstrA.exe
          C:\Windows\system32\svchost.exe -k imgsvc
          C:\Windows\servicing\TrustedInstaller.exe
          C:\Windows\system32\Dwm.exe
          C:\Windows\System32\rundll32.exe
          C:\Windows\Explorer.EXE
          C:\Windows\system32\taskhost.exe
          C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
          C:\Program Files\IDT\WDM\sttray64.exe
          C:\Windows\System32\igfxtray.exe
          C:\Windows\System32\hkcmd.exe
          C:\Windows\System32\igfxpers.exe
          C:\Windows\system32\taskeng.exe
          C:\Users\Leon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
          C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
          C:\Program Files (x86)\Samsung\Kies\Kies.exe
          C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
          C:\Windows\system32\SearchIndexer.exe
          C:\Program Files\Windows Media Player\wmpnetwk.exe
          C:\Users\Leon\AppData\Roaming\ACEStream\engine\ace_engine.exe
          C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
          C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
          C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
          C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
          C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
          C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
          C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
          C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
          C:\Windows\system32\wbem\wmiprvse.exe
          C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
          C:\Program Files (x86)\iTunes\iTunesHelper.exe
          C:\Windows\system32\wbem\wmiprvse.exe
          C:\Program Files\iPod\bin\iPodService.exe
          C:\Windows\sysWOW64\wbem\wmiprvse.exe
          C:\Windows\system32\wbem\unsecapp.exe
          C:\Program Files\AVAST Software\Avast\avastui.exe
          C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
          C:\Users\Leon\AppData\Roaming\Dropbox\bin\Dropbox.exe
          C:\Windows\System32\svchost.exe -k LocalServicePeerNet
          C:\Program Files\Microsoft Office\Office15\WINWORD.EXE
          C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
          C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Users\Leon\AppData\Roaming\ACEStream\updater\ace_update.exe
          C:\Windows\system32\sppsvc.exe
          C:\Windows\System32\svchost.exe -k secsvcs
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Windows\system32\taskeng.exe
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
          C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
          C:\Windows\system32\SearchProtocolHost.exe
          C:\Windows\system32\SearchFilterHost.exe
          C:\Windows\System32\cscript.exe
          .
          ============== Pseudo HJT Report ===============
          .
          BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
          BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
          BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
          BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL
          BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
          BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
          BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
          uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
          uRun: [Spotify Web Helper] "C:\Users\Leon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
          uRun: [Google Update] "C:\Users\Leon\AppData\Local\Google\Update\GoogleUpdate.exe" /c
          uRun: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
          uRun: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
          uRun: C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
          uRun: [ACEStream] C:\Users\Leon\AppData\Roaming\ACEStream\engine\ace_engine.exe
          mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
          mRun: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
          mRun: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
          mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
          mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
          mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
          mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
          mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
          mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
          mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
          mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
          mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
          StartupFolder: C:\Users\Leon\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Leon\AppData\Roaming\Dropbox\bin\Dropbox.exe
          mPolicies-Explorer: NoActiveDesktop = dword:1
          mPolicies-Explorer: NoActiveDesktopChanges = dword:1
          mPolicies-Explorer: EnableShellExecuteHooks = dword:1
          mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
          mPolicies-System: ConsentPromptBehaviorUser = dword:3
          mPolicies-System: EnableUIADesktopToggle = dword:0
          mPolicies-System: HideFastUserSwitching = dword:0
          IE: &Verzenden naar OneNote - C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
          IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
          IE: E&xporteren naar Microsoft Excel - C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
          IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
          IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
          IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
          IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
          IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
          TCP: NameServer = 192.168.0.1
          TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9} : DHCPNameServer = 192.168.0.1
          TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9}\65746573531393236473649324 : DHCPNameServer = 192.168.2.254 195.121.1.34 195.121.1.66
          TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9}\A594E496E4 : DHCPNameServer = 192.168.88.16
          TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9}\A5967676F6 : DHCPNameServer = 212.54.40.25 212.54.35.25
          TCP: Interfaces\{2AD15C49-78A0-44E9-AAF9-970AD69C4FA1} : DHCPNameServer = 172.30.4.36 172.30.4.35
          Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
          Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
          Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
          SSODL: WebCheck - <orphaned>
          mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
          mASetup: {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} - msiexec /fu {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} /qn
          x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
          x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
          x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL
          x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
          x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
          x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
          x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
          x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
          x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
          x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
          x64-RunOnce: [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
          x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
          x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
          x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
          x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
          x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
          x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
          x64-Notify: igfxcui - igfxdev.dll
          x64-SSODL: WebCheck - <orphaned>
          .
          ================= FIREFOX ===================
          .
          FF - ProfilePath - C:\Users\Leon\AppData\Roaming\Mozilla\Firefox\Profiles\r61i5f3h.default\
          FF - plugin: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
          FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
          FF - plugin: C:\Program Files (x86)\Common Files\ThreeShips Shared\Dll\npTSHelper.dll
          FF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
          FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
          FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
          FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
          FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
          FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
          FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
          FF - plugin: C:\Program Files (x86)\Veetle\Player\npvlc.dll
          FF - plugin: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll
          FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
          FF - plugin: C:\Users\Leon\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll
          FF - plugin: C:\Users\Leon\AppData\Roaming\ACEStream\player\npace_plugin.dll
          FF - plugin: C:\Users\Leon\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
          FF - plugin: C:\Users\Leon\AppData\Roaming\Mozilla\plugins\npo1d.dll
          FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll
          FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll
          .
          ============= SERVICES / DRIVERS ===============
          .
          R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\Windows\System32\drivers\amdkmpfd.sys [2012-9-13 36520]
          R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-3 65776]
          R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-3-3 208416]
          R0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;C:\Windows\System32\drivers\iusb3hcs.sys [2013-5-26 16152]
          R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2013-2-24 1039096]
          R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2013-2-24 423240]
          R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-2-16 283200]
          R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-2-26 235520]
          R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-4-28 29208]
          R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-2-24 79184]
          R2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-1-20 85328]
          R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-4-28 50344]
          R2 ezSharedSvc;Easybits Services for Windows;C:\Windows\System32\ezSharedSvcHost.exe --> C:\Windows\System32\ezSharedSvcHost.exe [?]
          R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528]
          R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]
          R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2012-9-24 31040]
          R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-3-5 35200]
          R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-5-3 13592]
          R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-8 607456]
          R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-5-3 128280]
          R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-5-3 161560]
          R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-5-3 363800]
          R3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\System32\drivers\clwvd.sys [2010-7-28 31088]
          R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-12-6 331264]
          R3 intelkmd;intelkmd;C:\Windows\System32\drivers\igdpmd64.sys [2012-1-6 14652768]
          R3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma;C:\Windows\System32\drivers\iusb3hub.sys [2013-5-26 355096]
          R3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma;C:\Windows\System32\drivers\iusb3xhc.sys [2013-5-26 786200]
          R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\System32\drivers\netr28x.sys [2014-3-2 2431792]
          R3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-1-23 178760]
          R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-5-3 565352]
          R3 SmbDrv;SmbDrv;C:\Windows\System32\drivers\Smb_driver.sys [2013-5-26 21264]
          S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
          S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
          S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
          S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2013-5-22 103064]
          S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
          S3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-8-10 122584]
          S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-2-17 19456]
          S3 RSP2STOR;Realtek PCIE CardReader Driver - P2;C:\Windows\System32\drivers\RtsP2Stor.sys [2011-9-22 258664]
          S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-14 292864]
          S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-14 1485312]
          S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-14 740864]
          S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2013-5-22 203672]
          S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-5-7 56832]
          S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-2-17 30208]
          S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
          S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-2-17 1255736]
          .
          =============== File Associations ===============
          .
          FileExt: .txt: Applications\WINWORD.EXE="C:\Program Files\Microsoft Office\Office15\WINWORD.EXE" /n "%1" [UserChoice] [default=edit - 'Open' doesn't exist]
          .
          =============== Created Last 30 ================
          .
          2014-08-10 15:37:16 536576 ----a-w- C:\Windows\SysWow64\sqlite3.dll
          2014-08-10 15:36:29 -------- d-----w- C:\AdwCleaner
          2014-08-10 09:10:13 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
          2014-08-10 09:10:04 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
          2014-08-10 09:10:04 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
          2014-08-10 09:10:04 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
          2014-08-10 09:10:03 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
          2014-08-10 08:32:19 10924376 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D3135A91-0ABC-4CF6-B426-CFFE13DEB1C8}\mpengine.dll
          2014-08-02 17:28:28 2620928 ----a-w- C:\Windows\System32\wucltux.dll
          2014-08-02 17:28:02 97792 ----a-w- C:\Windows\System32\wudriver.dll
          2014-08-02 17:28:01 92672 ----a-w- C:\Windows\SysWow64\wudriver.dll
          2014-08-02 17:27:38 33792 ----a-w- C:\Windows\SysWow64\wuapp.exe
          2014-08-02 17:27:38 198600 ----a-w- C:\Windows\System32\wuwebv.dll
          2014-08-02 17:27:38 179656 ----a-w- C:\Windows\SysWow64\wuwebv.dll
          2014-08-02 17:27:37 36864 ----a-w- C:\Windows\System32\wuapp.exe
          2014-07-26 05:23:03 1354240 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
          2014-07-26 05:23:01 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
          2014-07-26 05:22:16 449024 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tabskb.dll
          2014-07-26 05:22:16 3157504 ----a-w- C:\Windows\System32\win32k.sys
          2014-07-26 05:22:15 692736 ----a-w- C:\Windows\System32\osk.exe
          2014-07-26 05:22:15 646144 ----a-w- C:\Windows\SysWow64\osk.exe
          2014-07-26 05:22:15 624128 ----a-w- C:\Windows\System32\qedit.dll
          2014-07-26 05:22:14 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
          2014-07-26 05:22:14 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
          2014-07-26 05:16:41 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
          2014-07-26 05:16:41 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
          2014-07-26 05:16:41 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
          .
          ==================== Find3M ====================
          .
          2014-06-07 02:59:53 2339328 ----a-w- C:\Windows\System32\jscript9.dll
          2014-06-07 02:51:22 1494016 ----a-w- C:\Windows\System32\inetcpl.cpl
          2014-06-07 02:51:06 1392128 ----a-w- C:\Windows\System32\wininet.dll
          2014-06-07 02:45:37 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
          2014-06-07 02:45:17 599040 ----a-w- C:\Windows\System32\vbscript.dll
          2014-06-07 02:40:25 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
          2014-06-07 02:39:40 12800 ----a-w- C:\Windows\System32\mshta.exe
          2014-06-06 23:12:01 1810432 ----a-w- C:\Windows\SysWow64\jscript9.dll
          2014-06-06 23:03:02 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
          2014-06-06 23:02:16 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
          2014-06-06 22:57:04 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
          2014-06-06 22:56:20 421376 ----a-w- C:\Windows\SysWow64\vbscript.dll
          2014-06-06 22:52:42 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
          2014-06-06 22:51:59 11776 ----a-w- C:\Windows\SysWow64\mshta.exe
          2014-05-30 08:08:52 210944 ----a-w- C:\Windows\System32\wdigest.dll
          2014-05-30 08:08:49 86528 ----a-w- C:\Windows\System32\TSpkg.dll
          2014-05-30 08:08:47 340992 ----a-w- C:\Windows\System32\schannel.dll
          2014-05-30 08:08:41 314880 ----a-w- C:\Windows\System32\msv1_0.dll
          2014-05-30 08:08:41 307200 ----a-w- C:\Windows\System32\ncrypt.dll
          2014-05-30 08:08:36 728064 ----a-w- C:\Windows\System32\kerberos.dll
          2014-05-30 08:08:31 22016 ----a-w- C:\Windows\System32\credssp.dll
          2014-05-30 07:52:51 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll
          2014-05-30 07:52:49 65536 ----a-w- C:\Windows\SysWow64\TSpkg.dll
          2014-05-30 07:52:45 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
          2014-05-30 07:52:41 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
          2014-05-30 07:52:40 259584 ----a-w- C:\Windows\SysWow64\msv1_0.dll
          2014-05-30 07:52:36 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
          2014-05-30 07:52:30 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
          2014-05-18 19:02:28 85328 ----a-w- C:\Windows\System32\drivers\aswstm.sys
          2014-05-18 19:02:28 1039096 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
          .
          ============= FINISH: 17:49:13,20 ===============

          Comment


          • #6
            En de allerlaatste in deze reeks bij deze:


            Results of screen317's Security Check version 0.99.86
            Windows 7 Service Pack 1 x64 (UAC is enabled)
            Internet Explorer 11
            ``````````````Antivirus/Firewall Check:``````````````
            avast! Antivirus
            Antivirus up to date!
            `````````Anti-malware/Other Utilities Check:`````````
            Java 7 Update 55
            Java version out of Date!
            Adobe Flash Player 12.0.0.70 Flash Player out of Date!
            Adobe Reader 10.1.9 Adobe Reader out of Date!
            Mozilla Firefox 27.0.1 Firefox out of Date!
            Google Chrome 35.0.1916.153
            Google Chrome 36.0.1985.125
            ````````Process Check: objlist.exe by Laurent````````
            AVAST Software Avast AvastSvc.exe
            AVAST Software Avast avastui.exe
            `````````````````System Health check`````````````````
            Total Fragmentation on Drive C: 2%
            ````````````````````End of Log``````````````````````

            Comment


            • #7
              Herinitializeer je Firefox volgens deze instructies.

              Je firefox Updaten


              Verwijder het volgende:
              .
              • Java 7 Update 55
              • Adobe Flash Player 12.0.0.70

              .


              Vervolgens....

              Download of Update Ccleaner

              Start CCleaner op.
              • Run Ccleaner en klik in de linkse kolom op Opties
              • Selecteer het tabblad Geavanceerd
              • Haal het vinkje weg voor Verwijder alleen bestanden in Windows Temp-systeemmap die ouder zijn dan 24 uur
              • Selecteer het tabblad Instellingen
              • Haal het vinkje weg bij "Computer automatisch schoonmaken...."
              • Klik in de linkse kolom op Cleaner.
              • Klik dan achtereenvolgens op Analyseer en Schoonmaken.
              • Klik vervolgens in de linkse kolom op Register
              • Klik op Scan naar problemen.
              • Op de vraag of je een backup wil maken van het register, klik je "Ja".
              • Als er fouten gevonden worden klik je op de middelste knop: Herstel alle geselecteerde fouten en OK

              .
              Post een verse DDS log aub.
              Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
              E Dev * McAfee verwijderen. * Ccleaner * E-Peek

              Comment


              • #8
                Ik heb mozilla helemaal van mijn computer verwijderd. Kreeg telkens de melding van werkt niet toen ik mozilla opende. Dus kon nooit bij die opties komen, dus net als die andere twee extensies/programma's zoals je vroeg verwijderd.

                Gebruik mozilla verder ook nooit dus kan ook wel van mijn computer af.

                Hieronder de nieuwe log van DDS.


                DDS (Ver_2012-11-20.01) - NTFS_AMD64
                Internet Explorer:
                Run by Leon at 18:24:40 on 2014-08-10
                Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.6042.3522 [GMT 2:00]
                .
                AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
                SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
                SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
                .
                ============== Running Processes ===============
                .
                C:\Windows\system32\lsm.exe
                C:\Windows\system32\svchost.exe -k DcomLaunch
                C:\Windows\system32\svchost.exe -k RPCSS
                C:\Windows\system32\atiesrxx.exe
                C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
                C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
                C:\Windows\system32\svchost.exe -k LocalService
                C:\Windows\system32\svchost.exe -k netsvcs
                C:\Program Files\IDT\WDM\STacSV64.exe
                C:\Windows\system32\svchost.exe -k GPSvcGroup
                C:\Windows\system32\Hpservice.exe
                C:\Windows\system32\svchost.exe -k NetworkService
                C:\Windows\system32\atieclxx.exe
                C:\Program Files\AVAST Software\Avast\AvastSvc.exe
                C:\Windows\System32\spoolsv.exe
                C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
                C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
                C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
                C:\Program Files\Bonjour\mDNSResponder.exe
                C:\Windows\SysWOW64\ezSharedSvcHost.exe
                C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
                C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
                C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
                C:\Program Files\Intel\iCLS Client\HeciServer.exe
                C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
                C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
                C:\Windows\SysWOW64\PnkBstrA.exe
                C:\Windows\system32\svchost.exe -k imgsvc
                C:\Windows\system32\Dwm.exe
                C:\Windows\System32\rundll32.exe
                C:\Windows\Explorer.EXE
                C:\Windows\system32\taskhost.exe
                C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
                C:\Program Files\IDT\WDM\sttray64.exe
                C:\Windows\System32\igfxtray.exe
                C:\Windows\System32\hkcmd.exe
                C:\Windows\System32\igfxpers.exe
                C:\Windows\system32\taskeng.exe
                C:\Users\Leon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
                C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
                C:\Program Files (x86)\Samsung\Kies\Kies.exe
                C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
                C:\Windows\system32\SearchIndexer.exe
                C:\Program Files\Windows Media Player\wmpnetwk.exe
                C:\Users\Leon\AppData\Roaming\ACEStream\engine\ace_engine.exe
                C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
                C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
                C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
                C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
                C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
                C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
                C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
                C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
                C:\Windows\system32\wbem\wmiprvse.exe
                C:\Program Files (x86)\iTunes\iTunesHelper.exe
                C:\Windows\system32\wbem\wmiprvse.exe
                C:\Program Files\iPod\bin\iPodService.exe
                C:\Windows\system32\wbem\unsecapp.exe
                C:\Program Files\AVAST Software\Avast\avastui.exe
                C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
                C:\Users\Leon\AppData\Roaming\Dropbox\bin\Dropbox.exe
                C:\Windows\System32\svchost.exe -k LocalServicePeerNet
                C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
                C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
                C:\Users\Leon\AppData\Roaming\ACEStream\updater\ace_update.exe
                C:\Windows\System32\svchost.exe -k secsvcs
                C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
                C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
                C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                C:\Windows\system32\msiexec.exe
                C:\Windows\system32\vssvc.exe
                C:\Windows\System32\svchost.exe -k swprv
                C:\Windows\system32\SearchProtocolHost.exe
                C:\Windows\system32\SearchFilterHost.exe
                C:\Windows\system32\igfxsrvc.exe
                C:\Windows\System32\cscript.exe
                .
                ============== Pseudo HJT Report ===============
                .
                BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
                BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
                BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL
                BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
                BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
                uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
                uRun: [Spotify Web Helper] "C:\Users\Leon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
                uRun: [Google Update] "C:\Users\Leon\AppData\Local\Google\Update\GoogleUpdate.exe" /c
                uRun: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
                uRun: C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
                uRun: [ACEStream] C:\Users\Leon\AppData\Roaming\ACEStream\engine\ace_engine.exe
                mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
                mRun: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
                mRun: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
                mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
                mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
                mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
                mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
                mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
                mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
                mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
                mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
                StartupFolder: C:\Users\Leon\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Leon\AppData\Roaming\Dropbox\bin\Dropbox.exe
                mPolicies-Explorer: NoActiveDesktop = dword:1
                mPolicies-Explorer: NoActiveDesktopChanges = dword:1
                mPolicies-Explorer: EnableShellExecuteHooks = dword:1
                mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
                mPolicies-System: ConsentPromptBehaviorUser = dword:3
                mPolicies-System: EnableUIADesktopToggle = dword:0
                mPolicies-System: HideFastUserSwitching = dword:0
                IE: &Verzenden naar OneNote - C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
                IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
                IE: E&xporteren naar Microsoft Excel - C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
                IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
                IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
                IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
                IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
                IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
                TCP: NameServer = 192.168.0.1
                TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9} : DHCPNameServer = 192.168.0.1
                TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9}\65746573531393236473649324 : DHCPNameServer = 192.168.2.254 195.121.1.34 195.121.1.66
                TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9}\A594E496E4 : DHCPNameServer = 192.168.88.16
                TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9}\A5967676F6 : DHCPNameServer = 212.54.40.25 212.54.35.25
                TCP: Interfaces\{2AD15C49-78A0-44E9-AAF9-970AD69C4FA1} : DHCPNameServer = 172.30.4.36 172.30.4.35
                Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
                Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
                Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
                SSODL: WebCheck - <orphaned>
                mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
                mASetup: {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} - msiexec /fu {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} /qn
                x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
                x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
                x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL
                x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
                x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
                x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
                x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
                x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
                x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
                x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
                x64-RunOnce: [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
                x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
                x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
                x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
                x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
                x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
                x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
                x64-Notify: igfxcui - igfxdev.dll
                x64-SSODL: WebCheck - <orphaned>
                .
                ============= SERVICES / DRIVERS ===============
                .
                R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\Windows\System32\drivers\amdkmpfd.sys [2012-9-13 36520]
                R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-3 65776]
                R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-3-3 208416]
                R0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;C:\Windows\System32\drivers\iusb3hcs.sys [2013-5-26 16152]
                R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2013-2-24 1039096]
                R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2013-2-24 423240]
                R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-2-16 283200]
                R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-2-26 235520]
                R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-4-28 29208]
                R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-2-24 79184]
                R2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-1-20 85328]
                R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-4-28 50344]
                R2 ezSharedSvc;Easybits Services for Windows;C:\Windows\System32\ezSharedSvcHost.exe --> C:\Windows\System32\ezSharedSvcHost.exe [?]
                R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528]
                R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]
                R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2012-9-24 31040]
                R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-3-5 35200]
                R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-5-3 13592]
                R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-8 607456]
                R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-5-3 128280]
                R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-5-3 161560]
                R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-5-3 363800]
                R3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\System32\drivers\clwvd.sys [2010-7-28 31088]
                R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-12-6 331264]
                R3 intelkmd;intelkmd;C:\Windows\System32\drivers\igdpmd64.sys [2012-1-6 14652768]
                R3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma;C:\Windows\System32\drivers\iusb3hub.sys [2013-5-26 355096]
                R3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma;C:\Windows\System32\drivers\iusb3xhc.sys [2013-5-26 786200]
                R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\System32\drivers\netr28x.sys [2014-3-2 2431792]
                R3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-1-23 178760]
                R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-5-3 565352]
                R3 SmbDrv;SmbDrv;C:\Windows\System32\drivers\Smb_driver.sys [2013-5-26 21264]
                S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
                S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
                S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
                S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2013-5-22 103064]
                S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
                S3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-8-10 122584]
                S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-2-17 19456]
                S3 RSP2STOR;Realtek PCIE CardReader Driver - P2;C:\Windows\System32\drivers\RtsP2Stor.sys [2011-9-22 258664]
                S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-14 292864]
                S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-14 1485312]
                S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-14 740864]
                S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2013-5-22 203672]
                S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-5-7 56832]
                S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-2-17 30208]
                S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
                S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-2-17 1255736]
                .
                =============== File Associations ===============
                .
                FileExt: .txt: Applications\WINWORD.EXE="C:\Program Files\Microsoft Office\Office15\WINWORD.EXE" /n "%1" [UserChoice] [default=edit - 'Open' doesn't exist]
                .
                =============== Created Last 30 ================
                .
                2014-08-10 16:09:21 -------- d-----w- C:\Program Files\CCleaner
                2014-08-10 15:37:16 536576 ----a-w- C:\Windows\SysWow64\sqlite3.dll
                2014-08-10 15:36:29 -------- d-----w- C:\AdwCleaner
                2014-08-10 09:10:13 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
                2014-08-10 09:10:04 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
                2014-08-10 09:10:04 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
                2014-08-10 09:10:04 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
                2014-08-10 09:10:03 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
                2014-08-10 08:32:19 10924376 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D3135A91-0ABC-4CF6-B426-CFFE13DEB1C8}\mpengine.dll
                2014-08-02 17:28:28 2620928 ----a-w- C:\Windows\System32\wucltux.dll
                2014-08-02 17:28:02 97792 ----a-w- C:\Windows\System32\wudriver.dll
                2014-08-02 17:28:01 92672 ----a-w- C:\Windows\SysWow64\wudriver.dll
                2014-08-02 17:27:38 33792 ----a-w- C:\Windows\SysWow64\wuapp.exe
                2014-08-02 17:27:38 198600 ----a-w- C:\Windows\System32\wuwebv.dll
                2014-08-02 17:27:38 179656 ----a-w- C:\Windows\SysWow64\wuwebv.dll
                2014-08-02 17:27:37 36864 ----a-w- C:\Windows\System32\wuapp.exe
                2014-07-26 05:23:03 1354240 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
                2014-07-26 05:23:01 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
                2014-07-26 05:22:16 449024 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tabskb.dll
                2014-07-26 05:22:16 3157504 ----a-w- C:\Windows\System32\win32k.sys
                2014-07-26 05:22:15 692736 ----a-w- C:\Windows\System32\osk.exe
                2014-07-26 05:22:15 646144 ----a-w- C:\Windows\SysWow64\osk.exe
                2014-07-26 05:22:15 624128 ----a-w- C:\Windows\System32\qedit.dll
                2014-07-26 05:22:14 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
                2014-07-26 05:22:14 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
                2014-07-26 05:16:41 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
                2014-07-26 05:16:41 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
                2014-07-26 05:16:41 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
                .
                ==================== Find3M ====================
                .
                2014-06-07 02:59:53 2339328 ----a-w- C:\Windows\System32\jscript9.dll
                2014-06-07 02:51:22 1494016 ----a-w- C:\Windows\System32\inetcpl.cpl
                2014-06-07 02:51:06 1392128 ----a-w- C:\Windows\System32\wininet.dll
                2014-06-07 02:45:37 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
                2014-06-07 02:45:17 599040 ----a-w- C:\Windows\System32\vbscript.dll
                2014-06-07 02:40:25 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
                2014-06-07 02:39:40 12800 ----a-w- C:\Windows\System32\mshta.exe
                2014-06-06 23:12:01 1810432 ----a-w- C:\Windows\SysWow64\jscript9.dll
                2014-06-06 23:03:02 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
                2014-06-06 23:02:16 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
                2014-06-06 22:57:04 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
                2014-06-06 22:56:20 421376 ----a-w- C:\Windows\SysWow64\vbscript.dll
                2014-06-06 22:52:42 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
                2014-06-06 22:51:59 11776 ----a-w- C:\Windows\SysWow64\mshta.exe
                2014-05-30 08:08:52 210944 ----a-w- C:\Windows\System32\wdigest.dll
                2014-05-30 08:08:49 86528 ----a-w- C:\Windows\System32\TSpkg.dll
                2014-05-30 08:08:47 340992 ----a-w- C:\Windows\System32\schannel.dll
                2014-05-30 08:08:41 314880 ----a-w- C:\Windows\System32\msv1_0.dll
                2014-05-30 08:08:41 307200 ----a-w- C:\Windows\System32\ncrypt.dll
                2014-05-30 08:08:36 728064 ----a-w- C:\Windows\System32\kerberos.dll
                2014-05-30 08:08:31 22016 ----a-w- C:\Windows\System32\credssp.dll
                2014-05-30 07:52:51 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll
                2014-05-30 07:52:49 65536 ----a-w- C:\Windows\SysWow64\TSpkg.dll
                2014-05-30 07:52:45 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
                2014-05-30 07:52:41 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
                2014-05-30 07:52:40 259584 ----a-w- C:\Windows\SysWow64\msv1_0.dll
                2014-05-30 07:52:36 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
                2014-05-30 07:52:30 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
                2014-05-18 19:02:28 85328 ----a-w- C:\Windows\System32\drivers\aswstm.sys
                2014-05-18 19:02:28 1039096 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
                .
                ============= FINISH: 18:24:51,34 ===============

                Comment


                • #9
                  Download Combofix naar je bureaublad.
                  (Dus niet naar een download map of temp map)

                  Extra nota... Zorg ervoor dat je Security software uitschakeld is tijdens het gebruik van Combofix.
                  Dit omdat deze scanners bepaalde componenten die Combofix gebruikt, onterecht zien als geïnfecteerd en Combofix zullen blokkeren.

                  Kijk hier indien je niet weet hoe je je Antivirus, Firewall en/of Antispywarescanner moet uitschakelen.

                  Sluit ALLE vensters, ook je browser en laat Combofix rustig zijn werk doen.
                  Open dus geen andere applicaties totdat Combofix de log heeft gepresenteert.

                  Als Combofix vraagt om een update, dan staat je dit toe.

                  Wanneer ComboFix klaar is met scannen, dit kan eventueel na een reboot zijn, opent er een logfile (combofix.txt).
                  Deze kan je vinden als C:\combofix.txt.

                  Post het Combofixlogje samen met een nieuw DDS logje in je volgende antwoord.

                  * OPMERKING: Indien je één van de onderstaande meldingen krijgt na het gebruik van ComboFix, herstart dan de computer.
                  • Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.
                  • Illegal operation attempted on a registry key that has been marked for deletion.
                  Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
                  E Dev * McAfee verwijderen. * Ccleaner * E-Peek

                  Comment


                  • #10
                    Combo:

                    ComboFix 14-08-06.02 - Leon 10-08-2014 18:42:50.1.8 - x64
                    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.6042.3585 [GMT 2:00]
                    Gestart vanuit: c:\users\Leon\Desktop\ComboFix.exe
                    AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
                    SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
                    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
                    .
                    .
                    (((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
                    .
                    .
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\ar\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\bg\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\ca\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\cs\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\da\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\de\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\el\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\en\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\es\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\fi\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\fr\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\he\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\hr\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\hu\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\id\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\it\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\ja\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\ko\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\nb\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\nl\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\pl\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\pt_BR\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\pt_PT\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\ro\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\ru\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\sk\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\sl\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\sr\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\sv\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\te\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\tr\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\uk\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\zh_CN\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_locales\zh_TW\messages.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\_metadata\verified_contents.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\adblock_start_chrome.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\adblock_start_common.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\background.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\bandaids.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\button\popup.css
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\button\popup.html
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\button\popup.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\button\search\search.css
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\button\search\search.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\CHANGELOG.txt
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\checkupdates.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\filtering\domainset.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\filtering\filternormalizer.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\filtering\filteroptions.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\filtering\filterset.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\filtering\filtertypes.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\filtering\myfilters.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\functions.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\idlehandler.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\delete.gif
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\facebook-sprite.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\gifloader.gif
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\gplus-sprite.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon128.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon16.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon16_grayscale.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\[email protected]
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon19-grayscale.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon19-whitelisted.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon19.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon24.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon32.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon38-grayscale.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon38-whitelisted.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon38.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\icon48.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\logo.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\search\check.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\search\magnifying_glass.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\search\search-engine-card_no-shadow.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\search\search-engine-icons.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\search\search-omnibox-card_no-shadow.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\search\search_engine_select_arr ow.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\img\twitter-sprite.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\images\ui-bg_flat_55_999999_40x100.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\images\ui-bg_flat_75_aaaaaa_40x100.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\images\ui-bg_glass_45_0078ae_1x400.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\images\ui-bg_glass_55_f8da4e_1x400.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\images\ui-bg_glass_75_79c9ec_1x400.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\images\ui-bg_gloss-wave_50_38cfff_500x100.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\images\ui-bg_gloss-wave_75_2191c0_500x100.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\images\ui-bg_inset-hard_100_fcfdfd_1x100.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\images\ui-icons_056b93_256x240.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\images\ui-icons_d8e7f3_256x240.png
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\jquery-ui.custom.css
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\css\override-page.css
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\jquery-ui.custom.min.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\jquery.cookie.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\jquery\jquery.min.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\LICENSE
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\manifest.json
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\customize.html
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\customize.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\filters.html
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\filters.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\general.html
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\general.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\index.html
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\index.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\options.css
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\support.html
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\options\support.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\pages\adreport.html
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\pages\adreport.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\pages\resourceblock.html
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\pages\resourceblock.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\pages\subscribe.html
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\pages\subscribe.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\port.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\README.markdown
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\search\focus.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\search\incognito.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\search\pitchpage.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\search\search-plus-one.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\search\secure_reminder.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\search\serp.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\stats.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\uiscripts\blacklisting\blacklistui. js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\uiscripts\blacklisting\clickwatcher .js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\uiscripts\blacklisting\elementchain .js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\uiscripts\blacklisting\overlay.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\uiscripts\blacklisting\rightclick_h ook.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\uiscripts\load_jquery_ui.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\uiscripts\send_content_to_back.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\uiscripts\top_open_blacklist_ui.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\uiscripts\top_open_whitelist_ui.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\ytchannel.js
                    c:\users\Leon\AppData\Local\Google\Chrome\User Data\Default\Preferences
                    .
                    .
                    (((((((((((((((((((( Bestanden Gemaakt van 2014-07-10 to 2014-08-10 ))))))))))))))))))))))))))))))
                    .
                    .
                    2014-08-10 16:48 . 2014-08-10 16:48 -------- d-----w- c:\users\Default\AppData\Local\temp
                    2014-08-10 16:38 . 2014-08-10 16:38 43152 ----a-w- c:\windows\avastSS.scr
                    2014-08-10 16:09 . 2014-08-10 16:09 -------- d-----w- c:\program files\CCleaner
                    2014-08-10 15:37 . 2010-08-30 06:34 536576 ----a-w- c:\windows\SysWow64\sqlite3.dll
                    2014-08-10 15:36 . 2014-08-10 15:52 -------- d-----w- C:\AdwCleaner
                    2014-08-10 09:10 . 2014-08-10 11:25 122584 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
                    2014-08-10 09:10 . 2014-05-12 05:26 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
                    2014-08-10 09:10 . 2014-05-12 05:26 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
                    2014-08-10 09:10 . 2014-05-12 05:25 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
                    2014-08-10 09:10 . 2014-08-10 09:10 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
                    2014-08-10 08:32 . 2014-07-02 03:09 10924376 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D3135A91-0ABC-4CF6-B426-CFFE13DEB1C8}\mpengine.dll
                    2014-08-02 17:28 . 2014-05-14 16:23 44512 ----a-w- c:\windows\system32\wups2.dll
                    2014-08-02 17:28 . 2014-05-14 16:23 58336 ----a-w- c:\windows\system32\wuauclt.exe
                    2014-08-02 17:28 . 2014-05-14 16:23 2477536 ----a-w- c:\windows\system32\wuaueng.dll
                    2014-08-02 17:28 . 2014-05-14 16:21 2620928 ----a-w- c:\windows\system32\wucltux.dll
                    2014-08-02 17:28 . 2014-05-14 16:23 38880 ----a-w- c:\windows\system32\wups.dll
                    2014-08-02 17:28 . 2014-05-14 16:20 97792 ----a-w- c:\windows\system32\wudriver.dll
                    2014-08-02 17:28 . 2014-05-14 16:23 36320 ----a-w- c:\windows\SysWow64\wups.dll
                    2014-08-02 17:28 . 2014-05-14 16:23 700384 ----a-w- c:\windows\system32\wuapi.dll
                    2014-08-02 17:28 . 2014-05-14 16:23 581600 ----a-w- c:\windows\SysWow64\wuapi.dll
                    2014-08-02 17:28 . 2014-05-14 16:17 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
                    2014-08-02 17:27 . 2014-05-14 07:23 198600 ----a-w- c:\windows\system32\wuwebv.dll
                    2014-08-02 17:27 . 2014-05-14 07:23 179656 ----a-w- c:\windows\SysWow64\wuwebv.dll
                    2014-08-02 17:27 . 2014-05-14 07:17 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
                    2014-08-02 17:27 . 2014-05-14 07:20 36864 ----a-w- c:\windows\system32\wuapp.exe
                    2014-07-26 05:23 . 2014-06-03 10:02 1354240 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
                    2014-07-26 05:23 . 2014-06-03 09:29 936960 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
                    2014-07-26 05:22 . 2014-06-18 02:19 449024 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
                    2014-07-26 05:22 . 2014-06-18 01:10 3157504 ----a-w- c:\windows\system32\win32k.sys
                    2014-07-26 05:22 . 2014-06-18 02:18 692736 ----a-w- c:\windows\system32\osk.exe
                    2014-07-26 05:22 . 2014-06-18 01:51 646144 ----a-w- c:\windows\SysWow64\osk.exe
                    2014-07-26 05:22 . 2014-06-06 10:10 624128 ----a-w- c:\windows\system32\qedit.dll
                    2014-07-26 05:22 . 2014-06-06 09:44 509440 ----a-w- c:\windows\SysWow64\qedit.dll
                    2014-07-26 05:22 . 2014-05-30 06:45 497152 ----a-w- c:\windows\system32\drivers\afd.sys
                    2014-07-26 05:16 . 2014-06-05 14:45 1460736 ----a-w- c:\windows\system32\lsasrv.dll
                    2014-07-26 05:16 . 2014-06-05 14:26 22016 ----a-w- c:\windows\SysWow64\secur32.dll
                    2014-07-26 05:16 . 2014-06-05 14:25 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
                    .
                    .
                    .
                    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
                    .
                    2014-08-10 16:39 . 2013-02-24 20:50 427360 ----a-w- c:\windows\system32\drivers\aswsp.sys
                    2014-08-10 16:38 . 2014-01-20 20:27 92008 ----a-w- c:\windows\system32\drivers\aswstm.sys
                    2014-08-10 16:38 . 2013-03-03 14:09 224896 ----a-w- c:\windows\system32\drivers\aswVmm.sys
                    2014-08-10 16:38 . 2013-02-24 20:50 1041168 ----a-w- c:\windows\system32\drivers\aswsnx.sys
                    2014-08-10 16:38 . 2014-04-28 19:02 29208 ----a-w- c:\windows\system32\drivers\aswHwid.sys
                    2014-08-10 16:38 . 2013-03-03 14:09 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
                    2014-08-10 16:38 . 2013-02-24 20:50 79184 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
                    2014-08-10 16:38 . 2013-02-24 20:50 307344 ----a-w- c:\windows\system32\aswBoot.exe
                    2014-08-10 16:38 . 2013-02-24 20:50 93568 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
                    2014-07-27 09:13 . 2013-02-17 11:11 96441528 ----a-w- c:\windows\system32\MRT.exe
                    .
                    .
                    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
                    .
                    .
                    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
                    REGEDIT4
                    .
                    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayid entifiers\ SkyDrivePro1 (ErrorConflict)]
                    @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
                    [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
                    2014-06-10 11:25 1730264 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
                    .
                    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayid entifiers\ SkyDrivePro2 (SyncInProgress)]
                    @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
                    [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
                    2014-06-10 11:25 1730264 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
                    .
                    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayid entifiers\ SkyDrivePro3 (InSync)]
                    @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
                    [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
                    2014-06-10 11:25 1730264 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
                    .
                    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayid entifiers\DropboxExt1]
                    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
                    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
                    2014-06-24 22:04 131480 ----a-w- c:\users\Leon\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayid entifiers\DropboxExt2]
                    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
                    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
                    2014-06-24 22:04 131480 ----a-w- c:\users\Leon\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayid entifiers\DropboxExt3]
                    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
                    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
                    2014-06-24 22:04 131480 ----a-w- c:\users\Leon\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
                    .
                    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
                    "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-01-08 3674320]
                    "Spotify Web Helper"="c:\users\Leon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2014-01-15 1171968]
                    "KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2013-04-23 1561968]
                    "ACEStream"="c:\users\Leon\AppData\Roaming\ACEStream\engine\ace_engine.exe" [2014-07-10 26744]
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
                    "USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-05-26 291608]
                    "HPOSD"="c:\program files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" [2011-08-19 379960]
                    "HP CoolSense"="c:\program files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" [2012-11-05 1343904]
                    "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-02-26 642656]
                    "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-04-23 43848]
                    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
                    "KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2013-04-23 311152]
                    "HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2012-03-05 578944]
                    "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
                    "AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-08-08 3890208]
                    "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2014-05-15 152392]
                    .
                    c:\users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
                    Dropbox.lnk - c:\users\Leon\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-7-21 35464216]
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
                    "ConsentPromptBehaviorAdmin"= 5 (0x5)
                    "ConsentPromptBehaviorUser"= 3 (0x3)
                    "EnableUIADesktopToggle"= 0 (0x0)
                    "HideFastUserSwitching"= 0 (0x0)
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
                    "EnableShellExecuteHooks"= 1 (0x1)
                    .
                    R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
                    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET \Framework64\v4.0.30319\mscorsvw.exe [x]
                    R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
                    R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
                    R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
                    R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drive rs\MBAMSwissArmy.sys [x]
                    R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
                    R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominipor t.sys [x]
                    R3 RSP2STOR;Realtek PCIE CardReader Driver - P2;c:\windows\system32\DRIVERS\RtsP2Stor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsP2Stor.sys [x]
                    R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
                    R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
                    R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNX T6.SYS [x]
                    R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
                    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
                    R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
                    R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
                    R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
                    S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
                    S0 aswRvrt;avast! Revert; [x]
                    S0 aswVmm;avast! VM Monitor; [x]
                    S0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;c:\windows\system32\drivers\iusb3hcs.sys;c:\windows\SYSNATIVE\drivers\iusb3hcs.sys [x]
                    S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
                    S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
                    S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
                    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
                    S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
                    S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt .sys [x]
                    S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]
                    S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
                    S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [x]
                    S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
                    S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
                    S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
                    S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
                    S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
                    S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
                    S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
                    S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
                    S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
                    S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdpmd64.sys [x]
                    S3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
                    S3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
                    S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
                    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
                    S3 SmbDrv;SmbDrv;c:\windows\system32\DRIVERS\Smb_driver.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver.sys [x]
                    .
                    .
                    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
                    2014-07-26 05:04 1104200 ----a-w- c:\program files (x86)\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
                    .
                    Inhoud van de 'Gedeelde Taken' map
                    .
                    2014-08-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
                    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-06-19 16:33]
                    .
                    2014-08-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
                    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-06-19 16:33]
                    .
                    2014-08-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-74401209-2193567809-163945676-1001Core.job
                    - c:\users\Leon\AppData\Local\Google\Update\GoogleUpdate.exe [2013-05-20 13:51]
                    .
                    2014-08-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-74401209-2193567809-163945676-1001UA.job
                    - c:\users\Leon\AppData\Local\Google\Update\GoogleUpdate.exe [2013-05-20 13:51]
                    .
                    2014-08-08 c:\windows\Tasks\HPCeeScheduleForLeon.job
                    - c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 03:43]
                    .
                    .
                    --------- X64 Entries -----------
                    .
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
                    @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
                    [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
                    2014-06-10 11:21 2335960 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
                    @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
                    [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
                    2014-06-10 11:21 2335960 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
                    @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
                    [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
                    2014-06-10 11:21 2335960 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00 avast]
                    @="{472083B0-C522-11CF-8763-00608CC02F24}"
                    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
                    2014-04-28 19:02 290888 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Dr opboxExt1]
                    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
                    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
                    2014-06-24 22:04 164760 ----a-w- c:\users\Leon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Dr opboxExt2]
                    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
                    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
                    2014-06-24 22:04 164760 ----a-w- c:\users\Leon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Dr opboxExt3]
                    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
                    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
                    2014-06-24 22:04 164760 ----a-w- c:\users\Leon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Dr opboxExt4]
                    @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
                    [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
                    2014-06-24 22:04 164760 ----a-w- c:\users\Leon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GD riveBlacklistedOverlay]
                    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
                    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
                    2014-06-27 12:20 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GD riveSharedEditOverlay]
                    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
                    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
                    2014-06-27 12:20 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GD riveSharedViewOverlay]
                    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
                    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
                    2014-06-27 12:20 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GD riveSyncedOverlay]
                    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
                    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
                    2014-06-27 12:20 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
                    .
                    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GD riveSyncingOverlay]
                    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
                    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
                    2014-06-27 12:20 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
                    "SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2013-05-26 1425408]
                    "IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-01-06 170264]
                    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-01-06 398104]
                    "Persistence"="c:\windows\system32\igfxpers.exe" [2012-01-06 440600]
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
                    "NCPluginUpdater"="c:\program files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" [2014-06-10 21720]
                    .
                    ------- Bijkomende Scan -------
                    .
                    uLocal Page = c:\windows\system32\blank.htm
                    uInternet Settings,ProxyOverride = *.local
                    IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office15\ONBttnIE.dll/105
                    IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
                    IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office15\EXCEL.EXE/3000
                    IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
                    TCP: DhcpNameServer = 192.168.0.1
                    Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
                    .
                    - - - - ORPHANS VERWIJDERD - - - -
                    .
                    HKLM_Wow6432Node-ActiveSetup-{F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} - msiexec
                    HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
                    AddRemove-{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88} - c:\program files (x86)\InstallShield Installation Information\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}\setup.exe
                    AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe
                    .
                    .
                    .
                    --------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
                    @Denied: (A 2) (Everyone)
                    @="FlashBroker"
                    "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
                    "Enabled"=dword:00000001
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
                    @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
                    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
                    @Denied: (A 2) (Everyone)
                    @="IFlashBroker5"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
                    @="{00020424-0000-0000-C000-000000000046}"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
                    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
                    "Version"="1.0"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
                    @Denied: (A 2) (Everyone)
                    @="FlashBroker"
                    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
                    "Enabled"=dword:00000001
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
                    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
                    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
                    @Denied: (A 2) (Everyone)
                    @="Shockwave Flash Object"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
                    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
                    "ThreadingModel"="Apartment"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
                    @="0"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
                    @="ShockwaveFlash.ShockwaveFlash.11"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
                    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
                    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
                    @="1.0"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
                    @="ShockwaveFlash.ShockwaveFlash"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
                    @Denied: (A 2) (Everyone)
                    @="Macromedia Flash Factory Object"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
                    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
                    "ThreadingModel"="Apartment"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
                    @="FlashFactory.FlashFactory.1"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
                    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
                    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
                    @="1.0"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
                    @="FlashFactory.FlashFactory"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
                    @Denied: (A 2) (Everyone)
                    @="IFlashBroker5"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
                    @="{00020424-0000-0000-C000-000000000046}"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
                    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
                    "Version"="1.0"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
                    @Denied: (A) (Everyone)
                    "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
                    @Denied: (A) (Everyone)
                    .
                    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
                    "Key"="ActionsPane3"
                    "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
                    .
                    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
                    @Denied: (A) (Users)
                    @Denied: (A) (Everyone)
                    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
                    "BlindDial"=dword:00000000
                    .
                    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
                    @Denied: (A) (Users)
                    @Denied: (A) (Everyone)
                    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
                    "BlindDial"=dword:00000000
                    .
                    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
                    @Denied: (A) (Users)
                    @Denied: (A) (Everyone)
                    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
                    "BlindDial"=dword:00000000
                    .
                    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
                    @Denied: (A) (Users)
                    @Denied: (A) (Everyone)
                    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
                    "BlindDial"=dword:00000000
                    .
                    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
                    @Denied: (Full) (Everyone)
                    .
                    Voltooingstijd: 2014-08-10 18:50:31
                    ComboFix-quarantined-files.txt 2014-08-10 16:50
                    .
                    Pre-Run: 117.331.361.792 bytes beschikbaar
                    Post-Run: 116.589.350.912 bytes beschikbaar
                    .
                    - - End Of File - - 1D731E479641110B20BF2E95E4E6E053

                    Comment


                    • #11
                      DDS:

                      DDS (Ver_2012-11-20.01) - NTFS_AMD64
                      Internet Explorer:
                      Run by Leon at 18:52:06 on 2014-08-10
                      Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.6042.3485 [GMT 2:00]
                      .
                      AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
                      SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
                      SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
                      .
                      ============== Running Processes ===============
                      .
                      C:\Windows\system32\lsm.exe
                      C:\Windows\system32\svchost.exe -k DcomLaunch
                      C:\Windows\system32\svchost.exe -k RPCSS
                      C:\Windows\system32\atiesrxx.exe
                      C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
                      C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
                      C:\Windows\system32\svchost.exe -k LocalService
                      C:\Windows\system32\svchost.exe -k netsvcs
                      C:\Program Files\IDT\WDM\STacSV64.exe
                      C:\Windows\system32\svchost.exe -k GPSvcGroup
                      C:\Windows\system32\Hpservice.exe
                      C:\Windows\system32\svchost.exe -k NetworkService
                      C:\Windows\system32\atieclxx.exe
                      C:\Program Files\AVAST Software\Avast\AvastSvc.exe
                      C:\Windows\System32\spoolsv.exe
                      C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
                      C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
                      C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
                      C:\Program Files\Bonjour\mDNSResponder.exe
                      C:\Windows\SysWOW64\ezSharedSvcHost.exe
                      C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
                      C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
                      C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
                      C:\Program Files\Intel\iCLS Client\HeciServer.exe
                      C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
                      C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
                      C:\Windows\SysWOW64\PnkBstrA.exe
                      C:\Windows\system32\svchost.exe -k imgsvc
                      C:\Windows\system32\Dwm.exe
                      C:\Windows\System32\rundll32.exe
                      C:\Windows\system32\taskhost.exe
                      C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
                      C:\Program Files\IDT\WDM\sttray64.exe
                      C:\Windows\System32\igfxtray.exe
                      C:\Windows\System32\hkcmd.exe
                      C:\Windows\System32\igfxpers.exe
                      C:\Windows\system32\taskeng.exe
                      C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
                      C:\Program Files (x86)\Samsung\Kies\Kies.exe
                      C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
                      C:\Windows\system32\SearchIndexer.exe
                      C:\Program Files\Windows Media Player\wmpnetwk.exe
                      C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
                      C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
                      C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
                      C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
                      C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
                      C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
                      C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
                      C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
                      C:\Windows\system32\wbem\wmiprvse.exe
                      C:\Program Files (x86)\iTunes\iTunesHelper.exe
                      C:\Windows\system32\wbem\wmiprvse.exe
                      C:\Program Files\iPod\bin\iPodService.exe
                      C:\Windows\system32\wbem\unsecapp.exe
                      C:\Program Files\AVAST Software\Avast\avastui.exe
                      C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
                      C:\Windows\System32\svchost.exe -k LocalServicePeerNet
                      C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
                      C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
                      C:\Windows\System32\svchost.exe -k secsvcs
                      C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
                      C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                      C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                      C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                      C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                      C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                      C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                      C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                      C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                      C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                      C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                      C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
                      C:\Windows\explorer.exe
                      C:\Windows\System32\cscript.exe
                      .
                      ============== Pseudo HJT Report ===============
                      .
                      BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
                      BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL
                      BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
                      BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
                      uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
                      uRun: [Spotify Web Helper] "C:\Users\Leon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
                      uRun: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
                      uRun: [ACEStream] C:\Users\Leon\AppData\Roaming\ACEStream\engine\ace_engine.exe
                      mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
                      mRun: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
                      mRun: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
                      mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
                      mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
                      mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
                      mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
                      mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
                      mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
                      mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
                      mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
                      StartupFolder: C:\Users\Leon\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Leon\AppData\Roaming\Dropbox\bin\Dropbox.exe
                      uPolicies-Explorer: NoDrives = dword:0
                      mPolicies-Explorer: EnableShellExecuteHooks = dword:1
                      mPolicies-Explorer: NoDrives = dword:0
                      mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
                      mPolicies-System: ConsentPromptBehaviorUser = dword:3
                      mPolicies-System: EnableUIADesktopToggle = dword:0
                      mPolicies-System: HideFastUserSwitching = dword:0
                      IE: &Verzenden naar OneNote - C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
                      IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
                      IE: E&xporteren naar Microsoft Excel - C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
                      IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
                      IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
                      IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
                      IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
                      IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
                      TCP: NameServer = 192.168.0.1
                      TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9} : DHCPNameServer = 192.168.0.1
                      TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9}\65746573531393236473649324 : DHCPNameServer = 192.168.2.254 195.121.1.34 195.121.1.66
                      TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9}\A594E496E4 : DHCPNameServer = 192.168.88.16
                      TCP: Interfaces\{0D7E33B9-2F71-4842-8942-7202030909A9}\A5967676F6 : DHCPNameServer = 212.54.40.25 212.54.35.25
                      TCP: Interfaces\{2AD15C49-78A0-44E9-AAF9-970AD69C4FA1} : DHCPNameServer = 172.30.4.36 172.30.4.35
                      Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
                      Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
                      Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
                      SSODL: WebCheck - <orphaned>
                      mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
                      x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
                      x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL
                      x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
                      x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
                      x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
                      x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
                      x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
                      x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
                      x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
                      x64-RunOnce: [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
                      x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
                      x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
                      x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
                      x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
                      x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
                      x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
                      x64-Notify: igfxcui - igfxdev.dll
                      x64-SSODL: WebCheck - <orphaned>
                      .
                      ============= SERVICES / DRIVERS ===============
                      .
                      R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\Windows\System32\drivers\amdkmpfd.sys [2012-9-13 36520]
                      R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-3 65776]
                      R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-3-3 224896]
                      R0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;C:\Windows\System32\drivers\iusb3hcs.sys [2013-5-26 16152]
                      R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2013-2-24 1041168]
                      R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2013-2-24 427360]
                      R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-2-16 283200]
                      R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-2-26 235520]
                      R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-4-28 29208]
                      R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-2-24 79184]
                      R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-4-28 50344]
                      R2 ezSharedSvc;Easybits Services for Windows;C:\Windows\System32\ezSharedSvcHost.exe --> C:\Windows\System32\ezSharedSvcHost.exe [?]
                      R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528]
                      R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]
                      R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2012-9-24 31040]
                      R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-3-5 35200]
                      R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-5-3 13592]
                      R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-8 607456]
                      R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-5-3 128280]
                      R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-5-3 161560]
                      R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-5-3 363800]
                      R3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\System32\drivers\clwvd.sys [2010-7-28 31088]
                      R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-12-6 331264]
                      R3 intelkmd;intelkmd;C:\Windows\System32\drivers\igdpmd64.sys [2012-1-6 14652768]
                      R3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma;C:\Windows\System32\drivers\iusb3hub.sys [2013-5-26 355096]
                      R3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma;C:\Windows\System32\drivers\iusb3xhc.sys [2013-5-26 786200]
                      R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\System32\drivers\netr28x.sys [2014-3-2 2431792]
                      R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-5-3 565352]
                      R3 SmbDrv;SmbDrv;C:\Windows\System32\drivers\Smb_driver.sys [2013-5-26 21264]
                      S2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-1-20 92008]
                      S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
                      S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
                      S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
                      S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2013-5-22 103064]
                      S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
                      S3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-8-10 122584]
                      S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-1-23 178760]
                      S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-2-17 19456]
                      S3 RSP2STOR;Realtek PCIE CardReader Driver - P2;C:\Windows\System32\drivers\RtsP2Stor.sys [2011-9-22 258664]
                      S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-14 292864]
                      S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-14 1485312]
                      S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-14 740864]
                      S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2013-5-22 203672]
                      S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-5-7 56832]
                      S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-2-17 30208]
                      S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
                      S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-2-17 1255736]
                      .
                      =============== File Associations ===============
                      .
                      FileExt: .txt: Applications\WINWORD.EXE="C:\Program Files\Microsoft Office\Office15\WINWORD.EXE" /n "%1" [UserChoice] [default=edit - 'Open' doesn't exist]
                      .
                      =============== Created Last 30 ================
                      .
                      2014-08-10 16:50:37 -------- d-sh--w- C:\$RECYCLE.BIN
                      2014-08-10 16:41:24 98816 ----a-w- C:\Windows\sed.exe
                      2014-08-10 16:41:24 256000 ----a-w- C:\Windows\PEV.exe
                      2014-08-10 16:41:24 208896 ----a-w- C:\Windows\MBR.exe
                      2014-08-10 16:38:45 43152 ----a-w- C:\Windows\avastSS.scr
                      2014-08-10 16:09:21 -------- d-----w- C:\Program Files\CCleaner
                      2014-08-10 15:37:16 536576 ----a-w- C:\Windows\SysWow64\sqlite3.dll
                      2014-08-10 15:36:29 -------- d-----w- C:\AdwCleaner
                      2014-08-10 09:10:13 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
                      2014-08-10 09:10:04 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
                      2014-08-10 09:10:04 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
                      2014-08-10 09:10:04 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
                      2014-08-10 09:10:03 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
                      2014-08-10 08:32:19 10924376 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D3135A91-0ABC-4CF6-B426-CFFE13DEB1C8}\mpengine.dll
                      2014-08-02 17:28:28 2620928 ----a-w- C:\Windows\System32\wucltux.dll
                      2014-08-02 17:28:02 97792 ----a-w- C:\Windows\System32\wudriver.dll
                      2014-08-02 17:28:01 92672 ----a-w- C:\Windows\SysWow64\wudriver.dll
                      2014-08-02 17:27:38 33792 ----a-w- C:\Windows\SysWow64\wuapp.exe
                      2014-08-02 17:27:38 198600 ----a-w- C:\Windows\System32\wuwebv.dll
                      2014-08-02 17:27:38 179656 ----a-w- C:\Windows\SysWow64\wuwebv.dll
                      2014-08-02 17:27:37 36864 ----a-w- C:\Windows\System32\wuapp.exe
                      2014-07-26 05:23:03 1354240 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
                      2014-07-26 05:23:01 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
                      2014-07-26 05:22:16 449024 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tabskb.dll
                      2014-07-26 05:22:16 3157504 ----a-w- C:\Windows\System32\win32k.sys
                      2014-07-26 05:22:15 692736 ----a-w- C:\Windows\System32\osk.exe
                      2014-07-26 05:22:15 646144 ----a-w- C:\Windows\SysWow64\osk.exe
                      2014-07-26 05:22:15 624128 ----a-w- C:\Windows\System32\qedit.dll
                      2014-07-26 05:22:14 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
                      2014-07-26 05:22:14 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
                      2014-07-26 05:16:41 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
                      2014-07-26 05:16:41 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
                      2014-07-26 05:16:41 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
                      .
                      ==================== Find3M ====================
                      .
                      2014-08-10 16:38:47 92008 ----a-w- C:\Windows\System32\drivers\aswstm.sys
                      2014-08-10 16:38:47 224896 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
                      2014-08-10 16:38:47 1041168 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
                      2014-08-10 16:38:46 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
                      2014-08-10 16:38:46 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
                      2014-08-10 16:38:46 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
                      2014-08-10 16:38:45 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
                      2014-06-07 02:59:53 2339328 ----a-w- C:\Windows\System32\jscript9.dll
                      2014-06-07 02:51:22 1494016 ----a-w- C:\Windows\System32\inetcpl.cpl
                      2014-06-07 02:51:06 1392128 ----a-w- C:\Windows\System32\wininet.dll
                      2014-06-07 02:45:37 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
                      2014-06-07 02:45:17 599040 ----a-w- C:\Windows\System32\vbscript.dll
                      2014-06-07 02:40:25 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
                      2014-06-07 02:39:40 12800 ----a-w- C:\Windows\System32\mshta.exe
                      2014-06-06 23:12:01 1810432 ----a-w- C:\Windows\SysWow64\jscript9.dll
                      2014-06-06 23:03:02 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
                      2014-06-06 23:02:16 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
                      2014-06-06 22:57:04 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
                      2014-06-06 22:56:20 421376 ----a-w- C:\Windows\SysWow64\vbscript.dll
                      2014-06-06 22:52:42 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
                      2014-06-06 22:51:59 11776 ----a-w- C:\Windows\SysWow64\mshta.exe
                      2014-05-30 08:08:52 210944 ----a-w- C:\Windows\System32\wdigest.dll
                      2014-05-30 08:08:49 86528 ----a-w- C:\Windows\System32\TSpkg.dll
                      2014-05-30 08:08:47 340992 ----a-w- C:\Windows\System32\schannel.dll
                      2014-05-30 08:08:41 314880 ----a-w- C:\Windows\System32\msv1_0.dll
                      2014-05-30 08:08:41 307200 ----a-w- C:\Windows\System32\ncrypt.dll
                      2014-05-30 08:08:36 728064 ----a-w- C:\Windows\System32\kerberos.dll
                      2014-05-30 08:08:31 22016 ----a-w- C:\Windows\System32\credssp.dll
                      2014-05-30 07:52:51 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll
                      2014-05-30 07:52:49 65536 ----a-w- C:\Windows\SysWow64\TSpkg.dll
                      2014-05-30 07:52:45 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
                      2014-05-30 07:52:41 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
                      2014-05-30 07:52:40 259584 ----a-w- C:\Windows\SysWow64\msv1_0.dll
                      2014-05-30 07:52:36 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
                      2014-05-30 07:52:30 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
                      .
                      ============= FINISH: 18:52:16,06 ===============

                      Comment


                      • #12
                        Waarom staan er 10 instanties open van Google Chrome?
                        C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                        C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                        C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                        C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                        C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                        C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                        C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                        C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                        C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                        C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                        Ga naar start > uitvoeren en kopieer en plak volgende command in het veld:

                        ComboFix /Uninstall

                        Zorg ervoor dat er dus een spatie is tussen Combofix en /
                        Daarna klik je op Enter.


                        Klik op de afbeelding om te vergroten....


                        Dit zal Combofix verwijderen+gerelateerde mappen en bestanden, herstelt de klokinstellingen opnieuw,
                        verbergt de bestandsextensies, gaat verborgen bestanden en systeembestanden terug verbergen
                        en reset je Systeemherstel opnieuw.




                        Download of Update Ccleaner

                        Start CCleaner op.
                        • Run Ccleaner en klik in de linkse kolom op Opties
                        • Selecteer het tabblad Geavanceerd
                        • Haal het vinkje weg voor Verwijder alleen bestanden in Windows Temp-systeemmap die ouder zijn dan 24 uur
                        • Selecteer het tabblad Instellingen
                        • Haal het vinkje weg bij "Computer automatisch schoonmaken...."
                        • Klik in de linkse kolom op Cleaner.
                        • Klik dan achtereenvolgens op Analyseer en Schoonmaken.
                        • Klik vervolgens in de linkse kolom op Register
                        • Klik op Scan naar problemen.
                        • Op de vraag of je een backup wil maken van het register, klik je "Ja".
                        • Als er fouten gevonden worden klik je op de middelste knop: Herstel alle geselecteerde fouten en OK

                        .

                        Vertel nu eens even of er nog problemen zijn?

                        Emphyrio
                        Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
                        E Dev * McAfee verwijderen. * Ccleaner * E-Peek

                        Comment


                        • #13
                          Geen idee. Maar als ik nu kijk - heb alleen deze site open en verder niks- staan er ook 9/10 processen van chrome open. Dus had waarschijnlijk deze website open om de taken precies goed uit te voeren.

                          Heb wel vaker idee dat chrome ontiegelijk veel ram en alles gebruikt.
                          Heb je enig idee waarom er voor 1 site 10 processen te draaien staan en nu ook weer?

                          Click image for larger version

Name:	foto4.png
Views:	1
Size:	287,0 KB
ID:	1067817

                          Het nieuwe logje komt in 2 minuten

                          Er komt natuurlijk geen logje bij cccleaner. Maar de allereerste keer had hij 460 register fouten, nu nog 37 fouten. Op het eerste gezicht heb ik geen problemen meer. Zal het vanavond nog even aankijken, maar ik denk dat het opgelost is.
                          Last edited by leoon.; 10-08-14, 20:12.

                          Comment


                          • #14
                            Tot mijn spijt is het nog niet opgelost:

                            Click image for larger version

Name:	foto5.jpg
Views:	1
Size:	161,4 KB
ID:	1067818

                            Comment


                            • #15
                              Schakel eerst de Antivirussoftware uit voordat je zoek.exe download of uitvoert.
                              Deze kunnen namelijk de werking van Zoek.exe nadelig beïnvloeden.
                              Kijk hier indien je niet weet hoe je je Antivirus, Firewall en/of Antispywarescanner moet uitschakelen.

                              Download Zoek.exe naar het bureaublad.
                              • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kan je dat negeren, het is namelijk een onterechte waarschuwing.


                              Zoek.exe uitvoeren
                              Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.
                              • Klik met de rechtermuisknop op Zoek.zip of Zoek.rar en klik op de optie "Alles uitpakken" als je zoek.zip of zoek.rar gedownload hebt.
                              • Dubbelklik vervolgens op Zoek.exe om de tool te starten.
                              • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
                              • Klik op de knop "Options" en vink nu de onderstaande opties aan.
                                • Do a Quick Scan
                                • Auto Clean
                              • Klik nu op de knop "Run script".
                              • Zoek.exe gaat nu een scan uitvoeren, bij sommige systemen kan dit langer dan een half uur duren.
                              • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
                              • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
                              • Post het geopende logje in het volgende bericht

                              .
                              Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
                              E Dev * McAfee verwijderen. * Ccleaner * E-Peek

                              Comment

                              Sorry, you are not authorized to view this page
                              Working...
                              X