Mededeling

Collapse
No announcement yet.

PC traag, Office-programma's lopen vast / sluiten af

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • PC traag, Office-programma's lopen vast / sluiten af

    Ik was hier http://www.nucia.eu/forum/threads/73...-wat-er-mis-is beland, maar door een collega hierheen verwezen.

    Mijn PC werd ineens traag en Office programma's (Excel, IE) openden wel, maar sloten weer af na een foutmelding. Het gebeurde een dikke maand geleden, dus ik herinner me niet helemaal wat ik ervoor deed, maar ik denk vaag te weten dat er de avond ervoor een Microsoft update was.

    Ik heb destijds de stappen uit !!! BELANGRIJK !!! Lees dit bericht voor je een bericht plaatst gevolgd. Toen dat niet direct iets leek op te leveren, heb ik Office verwijderd (heb inmiddels ook Office 365). En toen had ik geen tijd meer en veel werk, dus ben ik naar de winkel gereden en heb een tijdelijke PC gekocht.

    Nu wil ik graag mijn oude systeempje weer up & running

    Hoe dan ook:

    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scandatum: 3-2-2016
    Scantijd: 18:38
    Logboekbestand: mbamlog.txt
    Beheerder: Ja

    Versie: 2.2.0.1024
    Malware-database: v2016.02.03.04
    Rootkit-database: v2016.01.20.01
    Licentie: Gratis
    Malware-bescherming: Uitgeschakeld
    Bescherming tegen kwaadaardige websites: Uitgeschakeld
    Zelfbescherming: Uitgeschakeld

    Besturingssysteem: Windows 8.1
    Processor: x64
    Bestandssysteem: NTFS
    Gebruiker: Franca

    Scantype: Aangepaste scan
    Resultaat: Voltooid
    Objecten gescand: 1000860
    Verstreken tijd: 4 u., 6 min, 50 sec

    Geheugen: Ingeschakeld
    Opstarten: Ingeschakeld
    Bestandssysteem: Ingeschakeld
    Archieven: Ingeschakeld
    Rootkits: Ingeschakeld
    Heuristiek: Ingeschakeld
    POP: Ingeschakeld
    POA: Ingeschakeld

    Processen: 0
    (Geen kwaadaardige items gedetecteerd)

    Modules: 0
    (Geen kwaadaardige items gedetecteerd)

    Registersleutels: 0
    (Geen kwaadaardige items gedetecteerd)

    Registerwaarden: 0
    (Geen kwaadaardige items gedetecteerd)

    Registerdata: 0
    (Geen kwaadaardige items gedetecteerd)

    Mappen: 0
    (Geen kwaadaardige items gedetecteerd)

    Bestanden: 4
    PUP.Optional.ConduitTB.Gen, C:\Users\Gevruiker\Dropbox\.dropbox.cache\2016-02-02\installer_winzip_15_0_9411_Dutch (deleted 5316ca3711eaafd22d4eec047a77f946).exe, In quarantaine, [58f8dc806d2c67cfcbd5bb35966e08f8],
    PUP.Optional.ConduitTB.Gen, C:\Users\Gevruiker\Dropbox\DATA_1\Verbatim 171014\Compac Tom\Install en bewaren\Winzip\installer_winzip_15_0_9411_Dutch.exe, In quarantaine, [2b2594c896037abce2be579940c445bb],
    PUP.Optional.ConduitTB.Gen, C:\Users\Gevruiker\Dropbox\Lokaal map\Tijdelijk\Dataschijf laptop - 250213\Install\Winzip\installer_winzip_15_0_9411_Dutch.exe, In quarantaine, [e868c6967920c670118fd61a4cb8ac54],
    PUP.Optional.ConduitTB.Gen, E:\Verbatim 171014\Compac Tom\Install en bewaren\Winzip\installer_winzip_15_0_9411_Dutch.exe, In quarantaine, [500097c511880c2ac8d878785aaaa45c],

    Fysieke Sectoren: 0
    (Geen kwaadaardige items gedetecteerd)


    (end)
    Last edited by ElisaB; 03-02-16, 22:27.

  • #2
    # AdwCleaner v5.032 - Logbestand aangemaakt 03/02/2016 op 23:13:19
    # Laatste update 31/01/2016 door Xplode
    # Database : 2016-02-02.1 [Server]
    # Besturingssysteem : Windows 8.1 Pro (x64)
    # Gebruikersnaam : Franca - HPE-FJB
    # Gestart vanuit : C:\Users\Gevruiker\Desktop\adwcleaner_5.032.exe
    # Optie : Verwijderen
    # Ondersteuning : http://toolslib.net/forum

    ***** [ Services ] *****


    ***** [ Mappen ] *****


    ***** [ Bestanden ] *****


    ***** [ DLLs ] *****


    ***** [ Snelkoppelingen ] *****


    ***** [ geplande taken ] *****


    ***** [ Register ] *****

    [-] Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1837827021-989101287-499177145-1000\Software\SweetIM

    ***** [ Internetbrowsers ] *****


    *************************

    :: "Tracing" sleutels verwijderd
    :: Winsock instellingen gereset

    ########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [879 bytes] ##########

    Comment


    • #3
      E-Peek v 1.9.9.0 ENHANCED 4 © Emphyrio/Onsia Patrick 2013-2016
      E Dev
      Run at wo 3 feb 2016 23:17
      .
      Windows 8.1 Professional (64 bits)
      C:\WINDOWS [NTFS - Fixed]
      Default Browser: Internet Explorer
      Boot mode: Normal boot
      User logged in: Franca
      .
      Java x86: 1.8
      Java x64: n/a
      .
      AV : Windows Defender [Updated - Not Running]
      AV : AVG AntiVirus Free Edition [Updated - Running]
      AS : Windows Defender [Updated - Not Running]
      AS : AVG AntiVirus Free Edition [Updated - Running]
      FW : Windows firewall
      .
      ==================== Files and Folders history =================================

      Folders Created Last 7 days :

      03-02-2016 ##### r-h-s-d+a- C:\Program Files\ConEmu
      03-02-2016 ##### r-h-s-d+a- C:\Program Files (x86)\Malwarebytes Anti-Malware
      03-02-2016 ##### r-h-s-d+a- C:\Program Files (x86)\E Dev
      03-02-2016 ##### r-h-s-d+a- C:\AdwCleaner
      02-02-2016 ##### r-h-s-d+a- C:\ProgramData\Package Cache
      02-02-2016 ##### r-h-s-d+a- C:\Program Files (x86)\GUMABC6.tmp

      Files Modified Last 7 days :

      03-02-2016 00000031 r-h-s-d-a+ C:\WINDOWS\SysWOW64\log.txt
      02-02-2016 143671360 r-h-s-d-a+ C:\WINDOWS\system32\MRT.exe
      02-02-2016 06871040 r-h-s-d-a+ C:\Program Files (x86)\GUTABC7.tmp
      02-02-2016 01824750 r-h-s-d-a+ C:\WINDOWS\system32\PerfStringBackup.INI
      02-02-2016 00805906 r-h-s-d-a+ C:\WINDOWS\system32\perfh013.dat
      02-02-2016 00722722 r-h-s-d-a+ C:\WINDOWS\system32\perfh009.dat
      02-02-2016 00162150 r-h-s-d-a+ C:\WINDOWS\system32\perfc013.dat
      02-02-2016 00135580 r-h-s-d-a+ C:\WINDOWS\system32\perfc009.dat
      02-02-2016 00097888 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll

      Files Created Last 7 days :

      02-02-2016 25837568 r-h-s-d-a+ C:\WINDOWS\system32\mshtml.dll
      02-02-2016 20367360 r-h-s-d-a+ C:\WINDOWS\SysWOW64\mshtml.dll
      02-02-2016 14456832 r-h-s-d-a+ C:\WINDOWS\system32\ieframe.dll
      02-02-2016 12856320 r-h-s-d-a+ C:\WINDOWS\SysWOW64\ieframe.dll
      02-02-2016 07453016 r-h-s-d-a+ C:\WINDOWS\system32\ntoskrnl.exe
      02-02-2016 06871040 r-h-s-d-a+ C:\Program Files (x86)\GUTABC7.tmp
      02-02-2016 06051328 r-h-s-d-a+ C:\WINDOWS\system32\jscript9.dll
      02-02-2016 04610560 r-h-s-d-a+ C:\WINDOWS\SysWOW64\jscript9.dll
      02-02-2016 02745184 r-h-s-d-a+ C:\WINDOWS\system32\WMVDECOD.DLL
      02-02-2016 02528784 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WMVDECOD.DLL
      02-02-2016 02487808 r-h-s-d-a+ C:\WINDOWS\system32\wininet.dll
      02-02-2016 02450240 r-h-s-d-a+ C:\WINDOWS\system32\WMVENCOD.DLL
      02-02-2016 02447136 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WMVENCOD.DLL
      02-02-2016 02334104 r-h-s-d-a+ C:\WINDOWS\system32\mfcore.dll
      02-02-2016 02324744 r-h-s-d-a+ C:\WINDOWS\SysWOW64\mfcore.dll
      02-02-2016 02011136 r-h-s-d-a+ C:\WINDOWS\SysWOW64\wininet.dll
      02-02-2016 01877504 r-h-s-d-a+ C:\WINDOWS\system32\msmpeg2adec.dll
      02-02-2016 01798480 r-h-s-d-a+ C:\WINDOWS\system32\WMALFXGFXDSP.dll
      02-02-2016 01735000 r-h-s-d-a+ C:\WINDOWS\system32\ntdll.dll
      02-02-2016 01697792 r-h-s-d-a+ C:\WINDOWS\system32\quartz.dll
      02-02-2016 01664000 r-h-s-d-a+ C:\WINDOWS\system32\WMSPDMOE.DLL
      02-02-2016 01546752 r-h-s-d-a+ C:\WINDOWS\system32\urlmon.dll
      02-02-2016 01501184 r-h-s-d-a+ C:\WINDOWS\SysWOW64\quartz.dll
      02-02-2016 01499912 r-h-s-d-a+ C:\WINDOWS\SysWOW64\ntdll.dll
      02-02-2016 01484888 r-h-s-d-a+ C:\WINDOWS\SysWOW64\msmpeg2adec.dll
      02-02-2016 01441280 r-h-s-d-a+ C:\WINDOWS\system32\lsasrv.dll
      02-02-2016 01411584 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
      02-02-2016 01380864 r-h-s-d-a+ C:\WINDOWS\system32\appraiser.dll
      02-02-2016 01380600 r-h-s-d-a+ C:\WINDOWS\system32\gdi32.dll
      02-02-2016 01311744 r-h-s-d-a+ C:\WINDOWS\SysWOW64\urlmon.dll
      02-02-2016 01288128 r-h-s-d-a+ C:\WINDOWS\system32\mfnetsrc.dll
      02-02-2016 01210200 r-h-s-d-a+ C:\WINDOWS\system32\WMADMOD.DLL
      02-02-2016 01164800 r-h-s-d-a+ C:\WINDOWS\system32\aeinv.dll
      02-02-2016 01150232 r-h-s-d-a+ C:\WINDOWS\system32\WMADMOE.DLL
      02-02-2016 01115640 r-h-s-d-a+ C:\WINDOWS\SysWOW64\mfnetsrc.dll
      02-02-2016 01097216 r-h-s-d-a+ C:\WINDOWS\SysWOW64\gdi32.dll
      02-02-2016 01037680 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WMADMOD.DLL
      02-02-2016 01032704 r-h-s-d-a+ C:\WINDOWS\system32\inetcomm.dll
      02-02-2016 01010688 r-h-s-d-a+ C:\WINDOWS\system32\WMSPDMOD.DLL
      02-02-2016 00914672 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WMADMOE.DLL
      02-02-2016 00887296 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
      02-02-2016 00880128 r-h-s-d-a+ C:\WINDOWS\SysWOW64\inetcomm.dll
      02-02-2016 00850680 r-h-s-d-a+ C:\WINDOWS\system32\mfnetcore.dll
      02-02-2016 00817664 r-h-s-d-a+ C:\WINDOWS\system32\jscript.dll
      02-02-2016 00800768 r-h-s-d-a+ C:\WINDOWS\system32\ieapfltr.dll
      02-02-2016 00798208 r-h-s-d-a+ C:\WINDOWS\system32\msfeeds.dll
      02-02-2016 00792064 r-h-s-d-a+ C:\WINDOWS\system32\generaltel.dll
      02-02-2016 00743936 r-h-s-d-a+ C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
      02-02-2016 00736256 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WMVXENCD.DLL
      02-02-2016 00735496 r-h-s-d-a+ C:\WINDOWS\system32\evr.dll
      02-02-2016 00710144 r-h-s-d-a+ C:\WINDOWS\SysWOW64\ieapfltr.dll
      02-02-2016 00705024 r-h-s-d-a+ C:\WINDOWS\system32\invagent.dll
      02-02-2016 00700360 r-h-s-d-a+ C:\WINDOWS\SysWOW64\mfnetcore.dll
      02-02-2016 00687104 r-h-s-d-a+ C:\WINDOWS\SysWOW64\msfeeds.dll
      02-02-2016 00685432 r-h-s-d-a+ C:\WINDOWS\system32\advapi32.dll
      02-02-2016 00670208 r-h-s-d-a+ C:\WINDOWS\system32\qedit.dll
      02-02-2016 00663552 r-h-s-d-a+ C:\WINDOWS\SysWOW64\jscript.dll
      02-02-2016 00644608 r-h-s-d-a+ C:\WINDOWS\system32\WMVXENCD.DLL
      02-02-2016 00629600 r-h-s-d-a+ C:\WINDOWS\system32\MP4SDECD.DLL
      02-02-2016 00584656 r-h-s-d-a+ C:\WINDOWS\SysWOW64\evr.dll
      02-02-2016 00571904 r-h-s-d-a+ C:\WINDOWS\system32\vbscript.dll
      02-02-2016 00561664 r-h-s-d-a+ C:\WINDOWS\SysWOW64\qedit.dll
      02-02-2016 00557856 r-h-s-d-a+ C:\WINDOWS\system32\WMVSDECD.DLL
      02-02-2016 00519680 r-h-s-d-a+ C:\WINDOWS\SysWOW64\qdvd.dll
      02-02-2016 00507176 r-h-s-d-a+ C:\WINDOWS\SysWOW64\advapi32.dll
      02-02-2016 00505344 r-h-s-d-a+ C:\WINDOWS\system32\devinv.dll
      02-02-2016 00498472 r-h-s-d-a+ C:\WINDOWS\system32\mfsvr.dll
      02-02-2016 00496640 r-h-s-d-a+ C:\WINDOWS\SysWOW64\vbscript.dll
      02-02-2016 00492736 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WMVSDECD.DLL
      02-02-2016 00468480 r-h-s-d-a+ C:\WINDOWS\system32\MFWMAAEC.DLL
      02-02-2016 00463776 r-h-s-d-a+ C:\WINDOWS\SysWOW64\MP4SDECD.DLL
      02-02-2016 00451072 r-h-s-d-a+ C:\WINDOWS\system32\WMVSENCD.DLL
      02-02-2016 00445440 r-h-s-d-a+ C:\WINDOWS\system32\certcli.dll
      02-02-2016 00432128 r-h-s-d-a+ C:\WINDOWS\system32\schannel.dll
      02-02-2016 00402432 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WMVSENCD.DLL
      02-02-2016 00399776 r-h-s-d-a+ C:\WINDOWS\SysWOW64\mfsvr.dll
      02-02-2016 00397224 r-h-s-d-a+ C:\WINDOWS\system32\bcryptprimitives.dll
      02-02-2016 00378880 r-h-s-d-a+ C:\WINDOWS\system32\SysFxUI.dll
      02-02-2016 00357888 r-h-s-d-a+ C:\WINDOWS\SysWOW64\schannel.dll
      02-02-2016 00340992 r-h-s-d-a+ C:\WINDOWS\system32\qdvd.dll
      02-02-2016 00340872 r-h-s-d-a+ C:\WINDOWS\SysWOW64\bcryptprimitives.dll
      02-02-2016 00324096 r-h-s-d-a+ C:\WINDOWS\SysWOW64\certcli.dll
      02-02-2016 00299080 r-h-s-d-a+ C:\WINDOWS\system32\VIDRESZR.DLL
      02-02-2016 00289792 r-h-s-d-a+ C:\WINDOWS\system32\ksproxy.ax
      02-02-2016 00275312 r-h-s-d-a+ C:\WINDOWS\SysWOW64\MPG4DECD.DLL
      02-02-2016 00274280 r-h-s-d-a+ C:\WINDOWS\SysWOW64\MP43DECD.DLL
      02-02-2016 00250520 r-h-s-d-a+ C:\WINDOWS\system32\MPG4DECD.DLL
      02-02-2016 00248432 r-h-s-d-a+ C:\WINDOWS\system32\MP43DECD.DLL
      02-02-2016 00246856 r-h-s-d-a+ C:\WINDOWS\system32\RESAMPLEDMO.DLL
      02-02-2016 00245760 r-h-s-d-a+ C:\WINDOWS\SysWOW64\ksproxy.ax
      02-02-2016 00244296 r-h-s-d-a+ C:\WINDOWS\system32\mfps.dll
      02-02-2016 00229272 r-h-s-d-a+ C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
      02-02-2016 00210432 r-h-s-d-a+ C:\WINDOWS\system32\aepic.dll
      02-02-2016 00203016 r-h-s-d-a+ C:\WINDOWS\system32\COLORCNV.DLL
      02-02-2016 00184912 r-h-s-d-a+ C:\WINDOWS\SysWOW64\COLORCNV.DLL
      02-02-2016 00183856 r-h-s-d-a+ C:\WINDOWS\SysWOW64\VIDRESZR.DLL
      02-02-2016 00137968 r-h-s-d-a+ C:\WINDOWS\system32\ncrypt.dll
      02-02-2016 00120376 r-h-s-d-a+ C:\WINDOWS\SysWOW64\ncrypt.dll
      02-02-2016 00116720 r-h-s-d-a+ C:\WINDOWS\system32\MP3DMOD.DLL
      02-02-2016 00110544 r-h-s-d-a+ C:\WINDOWS\SysWOW64\mfps.dll
      02-02-2016 00106960 r-h-s-d-a+ C:\WINDOWS\system32\ncryptsslp.dll
      02-02-2016 00099136 r-h-s-d-a+ C:\WINDOWS\SysWOW64\MP3DMOD.DLL
      02-02-2016 00097888 r-h-s-d-a+ C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
      02-02-2016 00092160 r-h-s-d-a+ C:\WINDOWS\system32\mshtmled.dll
      02-02-2016 00091416 r-h-s-d-a+ C:\WINDOWS\SysWOW64\ncryptsslp.dll
      02-02-2016 00090904 r-h-s-d-a+ C:\WINDOWS\system32\devenum.dll
      02-02-2016 00090392 r-h-s-d-a+ C:\WINDOWS\system32\mfvdsp.dll
      02-02-2016 00081032 r-h-s-d-a+ C:\WINDOWS\SysWOW64\devenum.dll
      02-02-2016 00076936 r-h-s-d-a+ C:\WINDOWS\SysWOW64\mfvdsp.dll
      02-02-2016 00076800 r-h-s-d-a+ C:\WINDOWS\system32\acmigration.dll
      02-02-2016 00033456 r-h-s-d-a+ C:\WINDOWS\system32\CompatTelRunner.exe

      ==================== RUNNING PROCESSES =========================================

      [AESTSr64] -SYSTEM- C:\Program Files\IDT\WDM\AESTSr64.exe - (Andrea Electronics Corporation)
      [AppleMobileDeviceService] -SYSTEM- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - (Apple Inc.)
      [armsvc] -SYSTEM- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - (Adobe Systems Incorporated)
      [audiodg] -LOCAL SERVICE- C:\Windows\System32\audiodg.exe - (audiodg.exe)
      [avgcsrva] -SYSTEM- C:\Program Files (x86)\AVG\Av\avgcsrva.exe - (AVG Technologies CZ, s.r.o.)
      [avgemca] -SYSTEM- C:\Program Files (x86)\AVG\Av\avgemca.exe - (AVG Technologies CZ, s.r.o.)
      [avgidsagent] -SYSTEM- C:\Program Files (x86)\AVG\Av\avgidsagent.exe - (avgidsagent.exe)
      [avgnsa] -SYSTEM- C:\Program Files (x86)\AVG\Av\avgnsa.exe - (AVG Technologies CZ, s.r.o.)
      [avgrsa] -SYSTEM- c:\PROGRA~2\AVG\Av\avgrsa.exe - (AVG Technologies CZ, s.r.o.)
      [avgsvca] -SYSTEM- C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe - (AVG Technologies CZ, s.r.o.)
      [avgui] -Franca- C:\Program Files (x86)\AVG\Av\avgui.exe - (AVG Technologies CZ, s.r.o.)
      [avguix] -Franca- C:\Program Files (x86)\AVG\Framework\Common\avguix.exe - (AVG Technologies CZ, s.r.o.)
      [avgwdsvcx] -SYSTEM- C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe - (AVG Technologies CZ, s.r.o.)
      [beats64] -Franca- C:\Program Files\IDT\WDM\beats64.exe - (Hewlett-Packard )
      [chrome] -Franca- C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\chrome.exe - (Google Inc.)
      [chrome] -Franca- C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\chrome.exe - (Google Inc.)
      [chrome] -Franca- C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\chrome.exe - (Google Inc.)
      [conhost] -SYSTEM- C:\WINDOWS\system32\conhost.exe - (Microsoft Corporation)
      [csrss] -SYSTEM- C:\Windows\System32\csrss.exe - (csrss.exe)
      [csrss] -SYSTEM- C:\Windows\System32\csrss.exe - (csrss.exe)
      [ctfmon] -Franca- C:\WINDOWS\SysWOW64\ctfmon.exe - (Microsoft Corporation)
      [CVHSVC] -SYSTEM- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE - (Microsoft Corporation)
      [dasHost] -LOCAL SERVICE- C:\WINDOWS\system32\dashost.exe - (Microsoft Corporation)
      [Dropbox] -Franca- C:\Users\Gevruiker\AppData\Roaming\Dropbox\bin\Dropbox.exe - (Dropbox, Inc.)
      [dwm] -DWM-1- C:\WINDOWS\system32\dwm.exe - (Microsoft Corporation)
      [E-Peek 1.9.9.0] -Franca- C:\Program Files (x86)\E Dev\E-Peek\E-Peek 1.9.9.0.exe - (E Dev)
      [explorer] -Franca- C:\WINDOWS\Explorer.EXE - (Microsoft Corporation)
      [GWX] -Franca- C:\WINDOWS\system32\GWX\GWX.exe - (Microsoft Corporation)
      [HPClientServices] -SYSTEM- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe - (Hewlett-Packard Company)
      [HPDrvMntSvc] -SYSTEM- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe - (Hewlett-Packard Company)
      [HPHC_Service] -SYSTEM- C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe - (Hewlett-Packard Company)
      [hpsysdrv] -Franca- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe - (Hewlett-Packard)
      [jusched] -Franca- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - (Oracle Corporation)
      [lsass] -SYSTEM- C:\WINDOWS\system32\lsass.exe - (Microsoft Corporation)
      [LSSrvc] -SYSTEM- c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe - (Hewlett-Packard Company)
      [mDNSResponder] -SYSTEM- C:\Program Files\Bonjour\mDNSResponder.exe - (Apple Inc.)
      [ModLEDKey] -Franca- C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe - ()
      [msiexec] -SYSTEM- C:\WINDOWS\system32\msiexec.exe - (Microsoft Corporation)
      [MSOIDSVC] -SYSTEM- C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSVC.EXE - (Microsoft Corp.)
      [MSOIDSVCM] -SYSTEM- C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSvcm.exe - (Microsoft Corp.)
      [NvBackend] -Franca- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe - (NVIDIA Corporation)
      [NvNetworkService] -SYSTEM- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe - (NVIDIA Corporation)
      [nvSCPAPISvr] -SYSTEM- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe - (NVIDIA Corporation)
      [nvstreamsvc] -SYSTEM- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe - (NVIDIA Corporation)
      [nvstreamsvc] -SYSTEM- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe - (NVIDIA Corporation)
      [nvtray] -Franca- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - (NVIDIA Corporation)
      [nvvsvc] -SYSTEM- C:\WINDOWS\system32\nvvsvc.exe - (NVIDIA Corporation)
      [nvvsvc] -SYSTEM- C:\WINDOWS\system32\nvvsvc.exe - (NVIDIA Corporation)
      [nvxdsync] -SYSTEM- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - (NVIDIA Corporation)
      [offSyncService] -SYSTEM- C:\Program Files (x86)\Workspace\offSyncService.exe - (Starfield Technologies)
      [ogmservice] -SYSTEM- C:\Program Files (x86)\Online Games Manager\ogmservice.exe - (RealNetworks, Inc.)
      [SearchFilterHost] -SYSTEM- C:\WINDOWS\system32\SearchFilterHost.exe - (Microsoft Corporation)
      [SearchIndexer] -SYSTEM- C:\WINDOWS\system32\SearchIndexer.exe - (Microsoft Corporation)
      [SearchProtocolHost] -SYSTEM- C:\WINDOWS\system32\SearchProtocolHost.exe - (Microsoft Corporation)
      [services] -SYSTEM- C:\Windows\System32\services.exe - (services.exe)
      [sftlist] -SYSTEM- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - (Microsoft Corporation)
      [sftvsa] -SYSTEM- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - (Microsoft Corporation)
      [SmartMenu] -Franca- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe - ()
      [smss] -SYSTEM- C:\Windows\System32\smss.exe - (smss.exe)
      [spoolsv] -SYSTEM- C:\WINDOWS\System32\spoolsv.exe - (Microsoft Corporation)
      [stacsv64] -SYSTEM- C:\Program Files\IDT\WDM\STacSV64.exe - (IDT, Inc.)
      [sttray64] -Franca- C:\Program Files\IDT\WDM\sttray64.exe - (IDT, Inc.)
      [System] -N/A- - (System)
      [taskeng] -Franca- C:\WINDOWS\system32\taskeng.exe - (Microsoft Corporation)
      [taskeng] -SYSTEM- C:\WINDOWS\system32\taskeng.exe - (Microsoft Corporation)
      [taskhostex] -Franca- C:\WINDOWS\system32\taskhostex.exe - (Microsoft Corporation)
      [TeamViewer_Service] -SYSTEM- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe - (TeamViewer GmbH)
      [wininit] -SYSTEM- C:\WINDOWS\system32\wininit.exe - (Microsoft Corporation)
      [winlogon] -SYSTEM- C:\WINDOWS\system32\winlogon.exe - (Microsoft Corporation)
      [WmiPrvSE] -NETWORK SERVICE- C:\WINDOWS\system32\wbem\wmiprvse.exe - (Microsoft Corporation)
      [WmiPrvSE] -SYSTEM- C:\WINDOWS\system32\wbem\wmiprvse.exe - (Microsoft Corporation)
      [WmiPrvSE] -SYSTEM- C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe - (Microsoft Corporation)

      ==================== IE PAGES ==================================================

      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main
      Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
      Local Page = C:\Windows\SysWOW64\blank.htm
      Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
      Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
      Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896

      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes
      DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      DisplayName = @ieframe.dll,-12512
      URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}
      DisplayName = Yahoo
      URL = hxxp://nl.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF

      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
      DisplayName = Wikipedia
      URL = hxxp://nl.wikipedia.org/wiki/Special:Search?search={searchTerms}

      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{d944bb61-2e34-4dbf-a683-47e505c587dc}
      DisplayName = eBay
      URL = hxxp://rover.ebay.com/rover/1/1346-111086-4124-0/4?satitle={searchTerms}&mfe=Desktops

      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{ec29edf6-ad3c-4e1c-a087-d6cb81400c43}
      DisplayName = Bing
      URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox

      ==================== IE PAGES x64 ==============================================

      HKLM\Software\Microsoft\Internet Explorer\Main
      Start Page = hxxp://g.uk.msn.com/HPCON/8
      Local Page = C:\Windows\System32\blank.htm
      Default_Page_URL = hxxp://g.uk.msn.com/HPCON/8
      Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
      Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896

      HKLM\Software\Microsoft\Internet Explorer\SearchScopes
      DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

      HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      DisplayName = @ieframe.dll,-12512
      URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

      HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{d944bb61-2e34-4dbf-a683-47e505c587dc}
      DisplayName = eBay
      URL = hxxp://rover.ebay.com/rover/1/1346-111086-4124-0/4?satitle={searchTerms}&mfe=Desktops

      ==================== Auto Load =================================================

      HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon
      Userinit = userinit.exe,
      Shell = explorer.exe

      ==================== Auto Load x64 =============================================

      HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon
      Userinit = C:\Windows\system32\userinit.exe,
      Shell = explorer.exe

      ==================== Browsers present ==========================================

      FIREFOX.EXE
      Google Chrome
      IEXPLORE.EXE

      ==================== Firefox ===================================================

      FF - ProfilePath - C:\Users\Gevruiker\AppData\Roaming\Mozilla\firefox\Profiles\9m1qavuk.default-1434466990127

      FF - Ext: [WBE Paste 1.3 ] - extension - [email protected] [ visible: True # active: False]
      FF - Ext: [Default 42.0 ] - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} [ visible: True # active: True]

      FF - PlugIn: [Adobe® Flash® Player 20.0.0.286 Plugin] - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll
      FF - PlugIn: [Ag Player] - c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll

      FF - prefs.js: user_pref("browser.startup.homepage", "hxxps://mail.google.com/mail/u/0/#inbox|hxxps://www5.loi.nl/portal/site/66f47e35-0517-4023-989b-49888f82ae99/page/920e1112-75d1-4612-98c0-6333e79b67f9|hxxps://www.linkedin.com/home?trk=nav_responsive_tab_home|hxxps://www.wunderlist.com/#/lists/inbox|hxxps://yellowsite.atlassian.net/browse/BB-1?filter=-1|aboutreferences");

      ==================== Google Chrome =============================================

      GC - Local State Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\User Data\Local State

      GC - Profile: [Default] Name: Persoon 1 - Shortcut name: - Username:

      ==================== Google Chrome Profile: Default ============================

      GC - Prefpath: C:\Users\Gevruiker\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

      GC - Homepage: ["hxxps://www.google.nl/?gws_rd=ssl"]

      GC - Ext: [ Store ] version: 0.2
      Description: Chrome Web Store
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\27.0.1453.94\resources\web_store

      GC - Ext: [ Bookmark Manager ] version: 0.1
      Description: Bookmark Manager
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\25.0.1364.97\resources\bookmark_manager

      GC - Ext: [ Settings ] version: 0.2
      Description: Settings
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\27.0.1453.94\resources\settings_app

      GC - Ext: [ Feedback ] version: 1.0
      Description: User feedback extension
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\31.0.1650.48\resources\feedback

      GC - Ext: [ CryptoTokenExtension ] version: 0.9.31
      Description: CryptoToken Component Extension
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\47.0.2526.73\resources\cryptotoken

      GC - Ext: [ Cloud Print ] version: 0.1
      Description: Cloud Print
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\25.0.1364.97\resources\cloud_print

      GC - Ext: [ GaiaAuthExtension ] version: 0.0.1
      Description: GAIA Component Extension
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\38.0.2125.104\resources\gaia_auth

      GC - Ext: [ Chrome ] version: 0.1
      Description: Chrome as an app
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\26.0.1410.43\resources\chrome_app

      GC - Ext: [ Chrome PDF Viewer ] version: 1
      Description:
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\42.0.2311.90\resources\pdf

      GC - Ext: [ Google Network Speech ] version: 1.0
      Description: Component extension providing speech via the Google network text-to-speech service.
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\33.0.1750.117\resources\network_speech_sy nthesis

      GC - Ext: [ Google Hangouts ] version: 1.1.2
      Description:
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\47.0.2526.73\resources\hangout_services

      GC - Ext: [ Google Now ] version: 1.2.0.1
      Description: Integrates Google Now into Chrome.
      Path: C:\Users\Gevruiker\AppData\Local\Google\Chrome\Application\35.0.1916.114\resources\google_now

      ==================== Windows Host File =========================================


      ==================== BHO =======================================================

      HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
      {31D09BA0-12F5-4CCE-BE8A-2923E76605DA}
      HKCR\CLSID\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} Default = Lync Browser Helper
      => HKCR\CLSID\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}\InProcServer32 Default = C:\Program Files (x86)\Microsoft Lync\OCHelper.dll

      {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
      HKCR\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Default = Java(tm) Plug-In SSV Helper
      => HKCR\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\InProcServer32 Default = C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll

      {DBC80044-A445-435b-BC74-9C25C1C588A9}
      HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} Default = Java(tm) Plug-In 2 SSV Helper
      => HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\InProcServer32 Default = C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll

      ==================== Auto Start Programs =======================================

      HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
      AVG_UI = "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe" C:\Program Files (x86)\AVG\Av\avgui.exe
      AvgUi = "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
      Communicator = "C:\Program Files (x86)\Microsoft Lync\communicator.exe" /fromrunkey
      SunJavaUpdateSched = "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

      HKCU\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
      Dropbox Update = "C:\Users\Gevruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
      Google Update = "C:\Users\Gevruiker\AppData\Local\Google\Update\GoogleUpdate.exe" /c
      LightScribe Control Panel = C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
      OfficeSyncProcess = "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
      Starfield Updater = "C:\Users\Gevruiker\AppData\Local\Workspace\WorkspaceUpdate.exe"
      wben = "C:\Users\Gevruiker\AppData\Local\Workspace\wben.exe"
      Workspace Status = "C:\Users\Gevruiker\AppData\Local\Workspace\workspacestatus.exe"

      ==================== Auto Start Programs x64 ===================================

      HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
      AdobeAAMUpdater-1.0 = "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
      BeatsOSDApp = C:\Program Files\IDT\WDM\beats64.exe
      hpsysdrv = c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
      NvBackend = "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
      ShadowPlay = C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
      SmartMenu = C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background
      SysTrayApp = C:\Program Files\IDT\WDM\sttray64.exe

      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved [2 = enabled 3= disabled]
      AdobeAAMUpdater-1.0 = 2
      BeatsOSDApp = 6
      hpsysdrv = 2
      Logitech Download Assistant = 2
      NvBackend = 2
      ShadowPlay = 2
      SmartMenu = 2
      SysTrayApp = 6
      Adobe ARM = 2
      AVG_UI = 2
      AvgUi = 2
      BATINDICATOR = 2
      BrStsMon00 = 2
      CanonSolutionMenuEx = 2
      Communicator = 3
      ConsumerClickSysTrayIcon = 2
      DLSService = 2
      Easybits Recovery = 2
      GfK-WatchDog = 3
      HF_G_Jul = 2
      HP Remote Solution = 2
      HP Software Update = 2
      iTunesHelper = 2
      LaunchHPOSIAPP = 2
      PDF Complete = 2
      ROC_ROC_JULY_P1 = 2
      ROC_ROC_NT = 2
      SunJavaUpdateSched = 2
      Wondershare Helper Compact.exe = 3
      Snapfish PictureMover.lnk = 3

      HKCU\Software\Microsoft\Windows\CurrentVersion\Run
      Dropbox Update = "C:\Users\Gevruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
      Google Update = "C:\Users\Gevruiker\AppData\Local\Google\Update\GoogleUpdate.exe" /c
      LightScribe Control Panel = C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
      OfficeSyncProcess = "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
      Starfield Updater = "C:\Users\Gevruiker\AppData\Local\Workspace\WorkspaceUpdate.exe"
      wben = "C:\Users\Gevruiker\AppData\Local\Workspace\wben.exe"
      Workspace Status = "C:\Users\Gevruiker\AppData\Local\Workspace\workspacestatus.exe"

      Startup - C:\Users\Gevruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
      ==================== Extra Items IE ============================================

      HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\ACCELERATED_GRAPHICS @ Text = Accelerated graphics
      HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\ACCESSIBILITY @ Text = Accessibility
      HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\BROWSE @ Text = Browsing
      HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\CRYPTO @ Text = Security
      HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\HTTP @ Text = HTTP settings
      HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\INTERNATIONAL @ Text = International
      HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\MULTIMEDIA @ Text = Multimedia

      HKCU\CLSID\{DBC80044-A445-435B-BC74-9C25C1C588A9}\InProcServer32
      => HKCR\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\InProcServer32 {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} = C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll
      => HKCR\CLSID\{DBC80044-A445-435B-BC74-9C25C1C588A9}\InProcServer32 {DBC80044-A445-435B-BC74-9C25C1C588A9} = C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll
      ==================== Extra Items IE x64 ========================================

      HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\ACCELERATED_GRAPHICS @ Text = Accelerated graphics
      HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\ACCESSIBILITY @ Text = Accessibility
      HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\BROWSE @ Text = Browsing
      HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\CRYPTO @ Text = Security
      HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\HTTP @ Text = HTTP settings
      HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\INTERNATIONAL @ Text = International
      HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\MULTIMEDIA @ Text = Multimedia

      ==================== Internet Default Prefix ===================================

      HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
      Default = http://

      HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\URL\Prefixes
      WWW = http://

      ==================== Internet Default Prefix x64 ===============================

      HKLM\Software\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
      Default = http://

      HKLM\Software\Microsoft\Windows\CurrentVersion\URL\Prefixes
      WWW = http://

      ==================== ShellServiceObjectDelayLoad ===============================

      HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
      EldosMountNotificator = {5FF49FE8-B332-4CB9-B102-FB6951629E55}
      => HKCR\CLSID\{5FF49FE8-B332-4CB9-B102-FB6951629E55}\InProcServer32 @ Default = C:\WINDOWS\SysWow64\CbFsMntNtf3.dll [9d26998c33ac7e96fab0fe59dfc35fdd]

      WebCheck = {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
      => HKCR\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED} [CLSID not present]


      ==================== ShellServiceObjectDelayLoad x64 =========================

      HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
      EldosMountNotificator = {5FF49FE8-B332-4CB9-B102-FB6951629E55}
      => HKCR\CLSID\{5FF49FE8-B332-4CB9-B102-FB6951629E55}\InProcServer32 @ Default = C:\WINDOWS\system32\CbFsMntNtf3.dll [2508cc9b93d1a8c297dc01e7046cb4ab]

      WebCheck = {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
      => HKCR\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED} [CLSID not present]


      ==================== SharedTaskSheduler =======================================

      HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
      {5FF49FE8-B332-4CB9-B102-FB6951629E55} = Virtual Storage Mount Notification
      => HKCR\CLSID\{5FF49FE8-B332-4CB9-B102-FB6951629E55}\InProcServer32 @ Default = C:\WINDOWS\SysWow64\CbFsMntNtf3.dll

      ==================== SharedTaskSheduler x64 ====================================

      HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
      {5FF49FE8-B332-4CB9-B102-FB6951629E55} = Virtual Storage Mount Notification
      => HKCR\CLSID\{5FF49FE8-B332-4CB9-B102-FB6951629E55}\InProcServer32 @ Default = C:\WINDOWS\SysWow64\CbFsMntNtf3.dll

      ==================== Extra (Torpig/ConduitSearch) ==============================

      HKCR\Directory\shellex\CopyHookHandlers\DropboxCopyHook @ Default = {FBC9D74C-AF55-4309-9FB2-C426E071637F}
      => HKCR\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InProcServer32 @ Default = C:\Users\Gevruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll

      HKCR\Directory\shellex\CopyHookHandlers\FileSystem @ Default = {217FC9C0-3AEA-1069-A2DB-08002B30309D}
      => HKCR\CLSID\{217FC9C0-3AEA-1069-A2DB-08002B30309D}\InProcServer32 @ Default = C:\WINDOWS\system32\shell32.dll

      HKCR\Directory\shellex\CopyHookHandlers\FileZilla3CopyHook @ Default = {DB70412E-EEC9-479C-BBA9-BE36BFDDA41B}
      => HKCR\CLSID\{DB70412E-EEC9-479C-BBA9-BE36BFDDA41B}\InProcServer32 @ Default = C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll

      HKCR\Directory\shellex\CopyHookHandlers\Sharing @ Default = {40dd6e20-7c17-11ce-a804-00aa003ca9f6}
      => HKCR\CLSID\{40dd6e20-7c17-11ce-a804-00aa003ca9f6}\InProcServer32 @ Default = C:\WINDOWS\system32\ntshrui.dll


      ==================== DRIVERS and SERVICES ======================================

      *** Win32OwnProcess ***

      SERV - R2 - [AdobeARMservice] - Adobe Acrobat Update Service - c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe
      SERV - R2 - [AESTFilters] - Andrea ST Filters Service - c:\program files\idt\wdm\aestsr64.exe
      SERV - R2 - [Apple Mobile Device Service] - Apple Mobile Device Service - c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe
      SERV - R2 - [AVGIDSAgent] - AVGIDSAgent - c:\program files (x86)\avg\av\avgidsagent.exe
      SERV - R2 - [avgsvc] - AVG Service - c:\program files (x86)\avg\framework\common\avgsvca.exe
      SERV - R2 - [avgwd] - AVG WatchDog - c:\program files (x86)\avg\av\avgwdsvcx.exe
      SERV - R2 - [Bonjour Service] - Bonjour-service - c:\program files\bonjour\mdnsresponder.exe
      SERV - R2 - [cvhsvc] - Client Virtualization Handler - c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe
      SERV - R2 - [HP Health Check Service] - HP Health Check Service - c:\program files (x86)\hewlett-packard\hp health check\hphc_service.exe
      SERV - R2 - [HPClientSvc] - HP Client Services - c:\program files\hewlett-packard\hp client services\hpclientservices.exe
      SERV - R2 - [HPDrvMntSvc.exe] - HP Quick Synchronization Service - c:\program files (x86)\hewlett-packard\shared\hpdrvmntsvc.exe
      SERV - R2 - [LightScribeService] - LightScribeService Direct Disc Labeling Service - c:\program files (x86)\common files\lightscribe\lssrvc.exe
      SERV - R2 - [LMS] - Intel(R) Management and Security Application Local Management Service - c:\program files (x86)\intel\intel(r) management engine components\lms\lms.exe
      SERV - R2 - [msoidsvc] - Microsoft Online Services Sign-in Assistant - c:\program files\common files\microsoft shared\microsoft online services\msoidsvc.exe
      SERV - R2 - [NvNetworkService] - NVIDIA Network Service - c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe
      SERV - R2 - [NvStreamSvc] - NVIDIA Streamer Service - c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe
      SERV - R2 - [nvsvc] - NVIDIA Display Driver Service - c:\windows\system32\nvvsvc.exe
      SERV - R2 - [ogmservice] - Online Games Manager - c:\program files (x86)\online games manager\ogmservice.exe
      SERV - R2 - [sftlist] - Application Virtualization Client - c:\program files (x86)\microsoft application virtualization client\sftlist.exe
      SERV - R2 - [sppsvc] - Software Protection - c:\windows\system32\sppsvc.exe
      SERV - R2 - [STacSV] - Audio Service - c:\program files\idt\wdm\stacsv64.exe
      SERV - R2 - [Stereo Service] - NVIDIA Stereoscopic 3D Driver Service - c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe
      SERV - R2 - [TeamViewer] - TeamViewer 10 - c:\program files (x86)\teamviewer\teamviewer_service.exe
      SERV - R2 - [WSearch] - Windows Search - c:\windows\system32\searchindexer.exe
      SERV - R3 - [msiserver] - Windows Installer - c:\windows\system32\msiexec.exe
      SERV - R3 - [sftvsa] - Application Virtualization Service Agent - c:\program files (x86)\microsoft application virtualization client\sftvsa.exe
      SERV - S2 - [CLKMSVC10_C6F09094] - CyberLink Product - 2011/03/29 22:17:23 - c:\program files (x86)\hewlett-packard\media\dvd\kernel\hddvd\navfilter\kmsvc.exe
      SERV - S2 - [gupdate] - Google Update-service (gupdate) - c:\program files (x86)\google\update\googleupdate.exe
      SERV - S2 - [MBAMService] - MBAMService - c:\program files (x86)\malwarebytes anti-malware\mbamservice.exe
      SERV - S2 - [UNS] - Intel(R) Management and Security Application User Notification Service - c:\program files (x86)\intel\intel(r) management engine components\uns\uns.exe
      SERV - S2 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - c:\program files\windows media player\wmpnetwk.exe
      SERV - S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe
      SERV - S3 - [ALG] - Application Layer Gateway Service - c:\windows\system32\alg.exe
      SERV - S3 - [AvgAMPS] - AvgAMPS - c:\program files (x86)\avg\av\avgamps.exe
      SERV - S3 - [COMSysApp] - COM+ System Application - c:\windows\system32\dllhost.exe
      SERV - S3 - [Fax] - Fax - c:\windows\system32\fxssvc.exe
      SERV - S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe
      SERV - S3 - [gupdatem] - Google Update-service (gupdatem) - c:\program files (x86)\google\update\googleupdate.exe
      SERV - S3 - [hpqwmiex] - HP Software Framework Service - c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe
      SERV - S3 - [IEEtwCollectorService] - Internet Explorer ETW Collector Service - c:\windows\system32\ieetwcollector.exe
      SERV - S3 - [MozillaMaintenance] - Mozilla Maintenance Service - c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe
      SERV - S3 - [MSDTC] - Distributed Transaction Coordinator - c:\windows\system32\msdtc.exe
      SERV - S3 - [ose] - Office Source Engine - c:\program files (x86)\common files\microsoft shared\source engine\ose.exe
      SERV - S3 - [osppsvc] - Office Software Protection Platform - c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe
      SERV - S3 - [PerfHost] - Performance Counter DLL Host - c:\windows\syswow64\perfhost.exe
      SERV - S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - c:\windows\system32\locator.exe
      SERV - S3 - [SNMPTRAP] - SNMP Trap - c:\windows\system32\snmptrap.exe
      SERV - S3 - [TrustedInstaller] - Windows Modules Installer - c:\windows\servicing\trustedinstaller.exe
      SERV - S3 - [vds] - Virtual Disk - c:\windows\system32\vds.exe
      SERV - S3 - [VSS] - Volume Shadow Copy - c:\windows\system32\vssvc.exe
      SERV - S3 - [wbengine] - Block Level Backup Engine Service - c:\windows\system32\wbengine.exe
      SERV - S3 - [WdNisSvc] - Windows Defender Network Inspection Service - c:\program files\windows defender\nissrv.exe
      SERV - S3 - [WinDefend] - Windows Defender Service - c:\program files\windows defender\msmpeng.exe
      SERV - S3 - [wmiApSrv] - WMI Performance Adapter - c:\windows\system32\wbem\wmiapsrv.exe

      *** Win32ShareProcess ***

      SERV - R2 - [SamSs] - Security Accounts Manager - c:\windows\system32\lsass.exe
      SERV - S3 - [EFS] - Encrypting File System (EFS) - c:\windows\system32\lsass.exe
      SERV - S3 - [KeyIso] - CNG Key Isolation - c:\windows\system32\lsass.exe
      SERV - S3 - [Netlogon] - Netlogon - c:\windows\system32\lsass.exe
      SERV - S3 - [VaultSvc] - Credential Manager - c:\windows\system32\lsass.exe
      SERV - S4 - [NetTcpPortSharing] - Net.Tcp Port Sharing Service - c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe

      *** Others ***

      SERV - R2 - [File Backup] - File Backup Service - c:\program files (x86)\workspace\offsyncservice.exe
      SERV - R2 - [Spooler] - Print Spooler - c:\windows\system32\spoolsv.exe
      SERV - S3 - [UI0Detect] - Interactive Services Detection - c:\windows\system32\ui0detect.exe

      *** File System Driver ***

      DRV - R0 - [AVGIDSHA] - AVGIDSHA - C:\WINDOWS\system32\Drivers\AVGIDSHA.sys
      DRV - R0 - [Avgloga] - AVG Logging Driver - C:\WINDOWS\system32\Drivers\Avgloga.sys
      DRV - R0 - [Avgmfx64] - AVG Mini-Filter Resident Anti-Virus Shield - C:\WINDOWS\system32\Drivers\Avgmfx64.sys
      DRV - R0 - [Avgrkx64] - AVG Anti-Rootkit Driver - C:\WINDOWS\system32\Drivers\Avgrkx64.sys
      DRV - R0 - [Avguniva] - AVG Universal Driver - C:\WINDOWS\system32\Drivers\Avguniva.sys
      DRV - R0 - [FileInfo] - File Information FS MiniFilter - C:\WINDOWS\system32\Drivers\FileInfo.sys
      DRV - R0 - [FltMgr] - FltMgr - C:\WINDOWS\system32\Drivers\FltMgr.sys
      DRV - R0 - [Mup] - Mup - C:\WINDOWS\system32\Drivers\Mup.sys
      DRV - R0 - [Wof] - Windows Overlay File System Filter Driver - C:\WINDOWS\system32\Drivers\Wof.sys
      DRV - R1 - [NetBIOS] - NetBIOS Interface - C:\WINDOWS\system32\Drivers\NetBIOS.sys
      DRV - R2 - [srv] - Server SMB 1.xxx Driver - C:\WINDOWS\system32\Drivers\srv.sys
      DRV - R3 - [srv2] - Server SMB 2.xxx Driver - C:\WINDOWS\system32\Drivers\srv2.sys

      *** Kernel Driver ***

      DRV - R0 - [ACPI] - Microsoft ACPI-stuurprogramma - C:\WINDOWS\system32\Drivers\ACPI.sys
      DRV - R0 - [acpiex] - Microsoft ACPIEx Driver - C:\WINDOWS\system32\Drivers\acpiex.sys
      DRV - R0 - [CLFS] - Common Log (CLFS) - C:\WINDOWS\system32\Drivers\CLFS.sys
      DRV - R0 - [CNG] - CNG - C:\WINDOWS\system32\Drivers\CNG.sys
      DRV - R0 - [disk] - Stuurprogramma voor schijfstations - C:\WINDOWS\system32\Drivers\disk.sys
      DRV - R0 - [fvevol] - BitLocker Drive Encryption Filter Driver - C:\WINDOWS\system32\Drivers\fvevol.sys
      DRV - R0 - [iaStor] - Intel AHCI Controller - C:\WINDOWS\system32\Drivers\iaStor.sys
      DRV - R0 - [intelpep] - Stuurprogramma voor Intel(R) Power Engine-invoegtoepassing - C:\WINDOWS\system32\Drivers\intelpep.sys
      DRV - R0 - [KSecDD] - KSecDD - C:\WINDOWS\system32\Drivers\KSecDD.sys
      DRV - R0 - [KSecPkg] - KSecPkg - C:\WINDOWS\system32\Drivers\KSecPkg.sys
      DRV - R0 - [mountmgr] - Mount Point Manager - C:\WINDOWS\system32\Drivers\mountmgr.sys
      DRV - R0 - [msisadrv] - msisadrv - C:\WINDOWS\system32\Drivers\msisadrv.sys
      DRV - R0 - [NDIS] - NDIS System Driver - C:\WINDOWS\system32\Drivers\NDIS.sys
      DRV - R0 - [partmgr] - Partition Manager - C:\WINDOWS\system32\Drivers\partmgr.sys
      DRV - R0 - [pci] - PCI Bus-stuurprogramma - C:\WINDOWS\system32\Drivers\pci.sys
      DRV - R0 - [pcw] - Performance Counters for Windows Driver - C:\WINDOWS\system32\Drivers\pcw.sys
      DRV - R0 - [pdc] - pdc - C:\WINDOWS\system32\Drivers\pdc.sys
      DRV - R0 - [rdyboost] - ReadyBoost - C:\WINDOWS\system32\Drivers\rdyboost.sys
      DRV - R0 - [spaceport] - Stuurprogramma voor opslagruimten - C:\WINDOWS\system32\Drivers\spaceport.sys
      DRV - R0 - [Tcpip] - Stuurprogramma voor TCP/IP-protocol - C:\WINDOWS\system32\Drivers\Tcpip.sys
      DRV - R0 - [vdrvroot] - Microsoft Virtual Drive Enumerator - C:\WINDOWS\system32\Drivers\vdrvroot.sys
      DRV - R0 - [volmgr] - Stuurprogramma voor Volumebeheer - C:\WINDOWS\system32\Drivers\volmgr.sys
      DRV - R0 - [volmgrx] - Dynamic Volume Manager - C:\WINDOWS\system32\Drivers\volmgrx.sys
      DRV - R0 - [volsnap] - Opslagvolumes - C:\WINDOWS\system32\Drivers\volsnap.sys
      DRV - R0 - [Wdf01000] - Kernel Mode Driver Frameworks service - C:\WINDOWS\system32\Drivers\Wdf01000.sys
      DRV - R0 - [WFPLWFS] - Microsoft Windows Filtering Platform - C:\WINDOWS\system32\Drivers\WFPLWFS.sys
      DRV - R1 - [AFD] - Ancillary Function Driver for Winsock - C:\WINDOWS\system32\Drivers\AFD.sys
      DRV - R1 - [Beep] - Beep - C:\WINDOWS\system32\Drivers\Beep.sys
      DRV - R1 - [tdx] - Stuurprogramma voor ondersteuning van NetIO Legacy TDI - C:\WINDOWS\system32\Drivers\tdx.sys
      DRV - R2 - [tcpipreg] - TCP/IP Registry Compatibility - C:\WINDOWS\system32\Drivers\tcpipreg.sys
      DRV - S0 - [Avgboota] - AVG Early Launch Anti-Malware Driver - C:\WINDOWS\system32\Drivers\Avgboota.sys
      DRV - S0 - [EhStorClass] - Enhanced Storage Filter Driver - C:\WINDOWS\system32\Drivers\EhStorClass.sys
      DRV - S0 - [hwpolicy] - Hardware Policy Driver - C:\WINDOWS\system32\Drivers\hwpolicy.sys
      DRV - S3 - [atapi] - IDE-kanaal - C:\WINDOWS\system32\Drivers\atapi.sys

      ==================== SvcHost - White Listed ====================================

      WOW x64 - All Ok

      ==================== SvcHost x64 - White Listed ================================

      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\[email protected]
      BthHFSrv = ServiceDll = C:\WINDOWS\System32\BthHFSrv.dll [9307a4b743d277c499cda8e19e5687ac]

      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\[email protected]
      DiagTrack = ServiceDll = C:\WINDOWS\system32\diagtrack.dll [21edad8188372c912b7bb9b1c6cb0d38]



      ==================== SigCheck x86 Fast =========================================

      Fast Scan All ok

      ==================== SigCheck x64 Fast =========================================

      Fast Scan All ok

      ==================== Job tasks at C:\WINDOWS\Tasks =============================

      C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 940 bytes [ 17-5-2012 21:31:41 ]

      C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1837827021-989101287-499177145-1000Core.job 998 bytes [ 18-6-2015 22:31:36 ]

      C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1837827021-989101287-499177145-1000UA.job 1050 bytes [ 18-6-2015 22:31:36 ]

      C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 1076 bytes [ 18-7-2012 13:10:51 ]

      C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 1080 bytes [ 18-7-2012 13:10:52 ]

      C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1837827021-989101287-499177145-1000Core.job 1040 bytes [ 17-5-2012 21:39:27 ]

      C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1837827021-989101287-499177145-1000UA.job 1092 bytes [ 17-5-2012 21:39:27 ]

      C:\WINDOWS\Tasks\SA.DAT 6 bytes [ 22-8-2013 16:45:54 ]


      ==================== Job tasks at C:\WINDOWS\system32\Tasks ====================

      C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 3886 bytes [ 24-5-2015 15:31:03 ]
      => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

      C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater 3852 bytes [ 17-5-2012 21:31:41 ]
      => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

      C:\WINDOWS\system32\Tasks\CreateChoiceProcessTask 3550 bytes [ 9-12-2013 14:22:46 ]
      => C:\Windows\BrowserChoice\browserchoice.exe

      C:\WINDOWS\system32\Tasks\DropboxUpdateTaskUserS-1-5-21-1837827021-989101287-499177145-1000Core 3618 bytes [ 18-6-2015 22:31:36 ]
      => C:\Users\Gevruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe

      C:\WINDOWS\system32\Tasks\DropboxUpdateTaskUserS-1-5-21-1837827021-989101287-499177145-1000UA 3998 bytes [ 18-6-2015 22:31:36 ]
      => C:\Users\Gevruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe

      C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 3816 bytes [ 18-7-2012 13:10:51 ]
      => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

      C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 4052 bytes [ 18-7-2012 13:10:52 ]
      => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

      C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1837827021-989101287-499177145-1000Core 3660 bytes [ 2-2-2016 18:34:03 ]
      => C:\Users\Gevruiker\AppData\Local\Google\Update\GoogleUpdate.exe

      C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1837827021-989101287-499177145-1000UA 4040 bytes [ 17-5-2012 21:39:27 ]
      => C:\Users\Gevruiker\AppData\Local\Google\Update\GoogleUpdate.exe

      C:\WINDOWS\system32\Tasks\HPOSIAPP64 3184 bytes [ 30-3-2011 7:19:55 ]
      => "%ProgramFiles(x86)%\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe"

      C:\WINDOWS\system32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1837827021-989101287-499177145-1000 3096 bytes [ 11-12-2015 1:24:48 ]
      => %localappdata%\Microsoft\OneDrive\OneDrive.exe

      C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1837827021-989101287-499177145-1000 3596 bytes [ 26-10-2012 21:17:35 ]

      C:\WINDOWS\system32\Tasks\RMCreator 3290 bytes [ 26-8-2011 19:33:47 ]
      => C:\Program Files (x86)\Hewlett-Packard\Recovery\Reminder.exe

      C:\WINDOWS\system32\Tasks\SidebarExecute 3230 bytes [ 17-5-2012 22:53:33 ]
      => C:\Program Files\Windows Sidebar\sidebar.exe

      C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{0A1E62FD-7962-4139-8024-11E2E49EF895} 3970 bytes [ 7-12-2013 18:28:02 ]
      => C:\WINDOWS\system32\msfeedssync.exe

      C:\WINDOWS\system32\Tasks\{2430D9DF-0D6F-45A3-8360-88D7F41F22E9} 3042 bytes [ 5-7-2012 19:04:25 ]
      => C:\Windows\system32\pcalua.exe

      C:\WINDOWS\system32\Tasks\{4566DB4F-2BC3-4F60-8480-6597644809AE} 3256 bytes [ 19-9-2011 9:56:57 ]
      => C:\Windows\system32\pcalua.exe

      C:\WINDOWS\system32\Tasks\{601D21F0-5BC6-4390-B387-1F7E26EF2D4C} 3488 bytes [ 15-5-2013 2:02:03 ]
      => C:\WINDOWS\system32\pcalua.exe

      C:\WINDOWS\system32\Tasks\{6F044B2F-93CE-4399-93F6-C44C95D9EF51} 3246 bytes [ 17-8-2014 15:52:59 ]
      => C:\WINDOWS\system32\pcalua.exe


      ==================== Job tasks at C:\WINDOWS\SysWOW64\Tasks ====================

      There are no .job files found.

      ==================== End scanning at wo 3 feb 2016 23:18 (0 Min 53 Sec ) =======

      Comment


      • #4
        Download ZHPDiag via onderstaande link:
        - ZHPDiag (klik op de blauwe knop 'Télécharger')
        Bewaar het op je bureaublad.

        Antivirussoftware uitschakelen
        Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met ZHPDiag.

        ZHPDiag uitvoeren
        • Rechtsklik op ZHPDiag3.exe en klik op Als Administrator uitvoeren.
        • Klik op "I agree" in het openingsscherm "TERMS OF USE".
        • Klik op "Scanner" en wacht geduldig tot dit klaar is.
        • Na afloop staat er een tekstbestand met de naam ZHPDiag.txt op je bureaublad, post deze als bijlage in je volgende bericht.
          (Het logbestand kan je ook terugvinden in de map %AppData%\ZHP.)

        Windows 10 opstarten in Veilige Modus

        Comment


        • #5
          Hi Juisterr, dank voor je hulp

          ZHPDiag.txt

          Comment


          • #6
            Ik zie geen malware oid terug in dit logje.

            Schakel eerst de Antivirussoftware uit voordat je zoek.exe download of uitvoert.
            Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk de werking van Zoek.exe nadelig beïnvloeden.
            (hier en hier) kan je lezen hoe je dat doet.

            en download Zoek.exe naar het bureaublad.
            klik hier voor meer informatie over hoe zoek.exe te gebruiken)
            • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kan je dat negeren, het is namelijk een onterechte waarschuwing.
            • Dubbelklik vervolgens op Zoek.exe om de tool te starten.
            • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
            • Kopieer nu onderstaande code en plak die in het grote invulvenster:
            • Note: Dit script is speciaal bedoeld voor deze Computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
              Code:
              emptyfolderscheck;delete
              firefoxlook; 
              Chromelook; 
              CHRdefaults;
              autoclean; 
              iedefaults;
            • Klik nu op de knop "Run script".
            • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
            • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
            • Post het geopende logje in het volgende bericht als bijlage.

            Windows 10 opstarten in Veilige Modus

            Comment


            • #7
              zoek-results.txt

              Comment


              • #8
                Ok, toch een flinke opruiming, hoe gaat het nu?

                Windows 10 opstarten in Veilige Modus

                Comment


                • #9
                  Oorspronkelijk geplaatst door Juisterr Bekijk Berichten
                  Ok, toch een flinke opruiming, hoe gaat het nu?
                  Stukken beter!

                  Ik ga even het een en ander proberen en dan kom ik over 5 minuten melden hoe het ging!

                  Comment


                  • #10
                    Nice!!!!! Ik ben dik tevreden

                    Comment


                    • #11
                      Download Delfix by Xplode naar het bureaublad.

                      KLIK HIER voor een vergroting!
                      (Klik bovenstaande afbeelding aan voor een vergroting!)

                      Dubbelklik op Delfix.exe om de tool te starten.
                      Zet nu vinkjes voor de volgende items:
                      • Remove disinfection tools
                      • Purge System Restore
                      • Reset system settings

                      Klik nu op "Run" en wacht geduldig tot de tool gereed is.
                      Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.

                      Bescherming tegen ongewenste software.

                      Unchecky voorkomt installatie van ongewenste software

                      Dubbelklik op het installatiebestand unchecky_setup.exe om de installatie te starten.
                      In het scherm wat nu verschijnt kunt u voor meer opties kiezen, op deze manier kunt u zelf de locatie instellen waar Unchecky geïnstalleerd dien te worden.
                      Klik vervolgens op de knop Install om Unchecky te installeren.
                      Wanneer de installatie van Unchecky gereed is klikt u op Finish.
                      Start na de installatie wel even de computer opnieuw op, dit om de wijzigingen in het hostsbestand van Windows door te voeren.



                      Misschien ook beter om Hitmanproalert te installeren. Alert
                      Uitleg hieronder.
                      Uitleg

                      Windows 10 opstarten in Veilige Modus

                      Comment


                      • #12
                        Oorspronkelijk geplaatst door Juisterr Bekijk Berichten
                        Bescherming tegen ongewenste software.

                        Misschien ook beter om Hitmanproalert te installeren.
                        Done & Done

                        Weer heel erg bedankt voor je hulp

                        Comment

                        Sorry, you are not authorized to view this page
                        Working...
                        X