Ga naar inhoud

h.dereus

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    142

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door h.dereus

  1. h.dereus
    Klopt. Ik ben bang dat ik een bericht gemist heb. Excuses hiervoor. Ik ga de uitgezette stappen volgen. Moet ik eerst een backup maken, of kan het programma HD Tune geen kwaad?
  2. h.dereus
    Sorry, had ik even moeten vermelden natuurlijk.Office 2010.
  3. h.dereus
    Hallo, Ik ben na een computercrash en een herinstallatie van Windows 7 m'n emailadressen in Outlook kwijt geraakt. Zij deze nog terug te halen? Ter info: Voor de crash maakte ik nog nog wel een kopie van de C-schijf (geen image). Mvg., Henk
  4. h.dereus
    Hallo, Ik had problemen met m'n PC. Ik besloot Windows 7 opnieuw te installeren. Als ik de PC opstart krijg ik een Intel schermpje te zien, waarna er 12 minuten niets gebeurt. Hierna start de PC verder normaal op. Dit had ik niet eerder, ook niet voor de herinstallatie. Ik dacht dat er bij de herinstallatie misschien iets niet goed was gegaan en deed de herinstallatie opnieuw, met hetzelfde resultaat. Hoe is dit te verhelpen, anders dan de PC constant aan laten staan? Henk
  5. h.dereus
    Fijn dat je meedenkt! Dat is juist het probleem. Ik kan Windows niet meer in de veilige modus opstarten. Hij blijft hangen bij het laten van de sysbestanden.
  6. h.dereus
    Helaas, na controle C-schijf blijft Windows 7 weer in de automatische opstart hangen. Zijn er programma's waarmee de verloren gegane bestandjes kunnen worden opgespoord? Zo ja, hoe doe ik dat? Henk
  7. h.dereus
    Hallo, Dank voor jullie reactie en sorry voor mijn late reactie, maar dit had een reden. Ik raakte van de regen in de drup. Voordat ik jullie reactie ontving liet ik Norton Power Eraser op de PC los. Na de fix-functie te hebben geactiveerd ontstond er een nieuw probleem. Ik kreeg een foutcode en kon de PC niet meer opstarten. Op een gegeven moment lukte dit ook niet meer in de veilige modus. Ik heb op de harde schijf ook nog een Vista-partitie staan. Het opstarten in Vista lukt wel. Dit betekent dat de harde schijf niet defect is. Vervolgens heb ik via Vista een controle van de hele harde schijf (dus Windows 7 en de Vista partitie) ingesteld. Deze controle is kort geleden gestart en ik hoop de resultaten morgenochtend te zien. Uiteraard hoop ik dat de PC dan ook weer in Windows 7 opstart, maar ik heb hier niet veel vertrouwen in. Ik denk dat er op een of andere manier sys- of dll file'tjes zijn weggevallen. Als dit het geval is, is de vraag hoe ik er achter kom om welke files het gaat. Suggesties om in deze situatie (zonder in Windows 7 te kunnen opstarten) de weggevallen files te komen zijn welkom. Anders zal ik de harde schijf opnieuw moeten installeren en dat is het laatste wat ik wil doen. Pas als alles weer mocht draaien kan ik jullie eerdere adviezen uitvoeren. Ik houd jullie op de hoogte Vriendelijke groeten, Henk
  8. h.dereus
    Mijn PC is de laatste weken erg traag. Als ik een programma opstart of afsluit, duurt het wel 30 - 60 seconden. Een pagina op Internet openen zo'n 10 - 15 seconden en ik hoor de PC steeds met tussenpozen lang pruttelen. Als ik met meer dan 1 programma werk is het helemaal een drama. Ik heb een actuele versie van Norton Internetsecurity, AVG Tune up, en anti malware bytes. Ik defragmenteerde de systeemschijf, deed een systeemschijfcontrole en paste C-cleaner toe. Ook schakelde ik de meeste achtergrondprogramma's uit. Wat kan er nog meer aan de hand zijn? Mvg., Henk
  9. h.dereus
    [ATTACH]36749[/ATTACH] Beste Kape. Het programma Malwarebytes Anti Malware vond nog 3 files. Omdat de PC voor zijn doen nog steeds traag was belde ik zekerheidshalve ook even met Norton. Men heeft (door de besturing ober te nemen) de PC gecheckt en er een speciale scan op los gelaten. Ook bleek dat er veel programma's bij het opstarten van de PC onnodig worden meegenomen. Hoe dit kan weet ik niet want ik had deze op 4 of 5 programma's na, allemaal uitgevinkt in het startmenu. Dit zorgde er waarschijnlijk ook voor dat de PC tijdens het werken erbij (met namen bij mulititasking super traag was. Alles deed natuurlijk op de achtergrond mee. Dit leidde mogelijk ook tot het hoge CPU gebruik. Dit kon jij niet op afstand uiteraard niet weten. Nu dit ook is hersteld lijkt alles het weer enigzins normaal te doen. Een combinatie dus van malware en te veel startprogramma's. Malwarebytes Anti-Malware heb ik inmiddels geïnstalleerd op de PC. Ik zal dit eens per week aanzetten. Ik ben je zeer dankbaar voor de snelle hulp, je geduld, je kennis en goede aanwijzingen. Ik vind het fijn dat er Helpforums als deze zijn en ik zal mijn waardering wederom in een geldelijke bijdrage laten blijken. Nogmaals hartelijk dank!! Henk P.S.: ik ga toch nadenken over de vraag of mijn volgende PC toch niet een Apple gaat worden... MBAMscanlog.txt
  10. h.dereus
    Kape, na veel horten en stoten is dit het resultaatgeworden van de scan door ESET online scanner. Hij geeft aan 77 threads found and cleaned. PC deed er 14 uur over. Moet ik het programma MalwareBytes Anti malware alsnog op de PC loslaten?[ATTACH]36721[/ATTACH] log.txt
  11. h.dereus
    Kape, ik kom nog even bij je terug. De PC gaat tijdens het scannen steeds na verloop van tijd steeds in de slaapstand over. Het scannen wordt dan ook gestaakt. Dat de monitors na een periode van inactiviteit op zwart gaan begrijp ik, maar niet dat het scannen ophoudt. Hoe kan ik bereiken dat het scannen continue doorgaat?
  12. h.dereus
    Kape, nog maar even wachten met reageren. Toen ik vanavond thuiskwam bleek de PC zich vanzelf te hebben uitgeschakeld (?) PC vervolgens opgestart. Hij startte op met het ESET online scanner programma (?) Nog maar eens op start geklikt en warempel, nu zie ik dat de scan gestart is. Inmiddels geeft het programma aan dat er twee geïnfecteerde bestanden gevonden zijn. Mogelijk komen we dichter bij het probleem van de oplossing. Als de scan voltooid is (ddurt voorlopig nog wel even), dan stuur ik het logje toe.
  13. h.dereus
    Tussen de middag nog even naar huis gebeld om te vragen bij welke stap het programma was aanbeland, maar deze lijkt nog steeds met stap 1 te moeten beginnen. De PC maakt ook niet de geluiden als bij een scan (pruttelen).
  14. h.dereus
    Ik voerde de acties uit. Als ik op "start" klik gebeurt er niets. Programma geeft wel aan dat er andere anti virussoftware is geïnstalleerd. Ik hweb hierop Norton uitgeschakeld en vervolgens weer op start geklikt. Nu gebeurt er weer niets. Ik zie wel onder het "enable Anti-Stealth technology" de tekst "Current scan targets: Operating memory, local drives (Change). Betekent dit soms dat het programma zijn werk doet?
  15. h.dereus
    Beste Kape, Voordat ik het laatst toegestuurde programmaatje installeerde heb ik eerst de computer opgestart. Dit duurde erg lang. De PC bleef lang napruttelen voordat ik een programma kon opstarten. Het schakelen tussen een programma en internet of andersom duurt lang. Als ik in Word werk en een ander documenten wil openen naast het document dat open staat heeft de PC ook langer werk dan de laatste keer. Hij is dus weer minder snel. Ik krijg ook regelmatig een melding over een hoog CPU gebruik en vanavond bij het opstarten kreeg ik de melding "intensief ingangengebruik door Microsoft .... Klopt het trouwens dat het lampje dat aangeeft dat de PC aan staat, knippert in de slaapstand. Ik dacht mij te herinneren dat dit lampje ook in de slaapstand constant brandt. Hierbij het logje. Met vriendelijke groet, Henk de Reus[ATTACH]36681[/ATTACH] JRT.txt
  16. h.dereus
    Is al een heel stuk beter. Nog niet zo snel als 2 maanden terug, maar ik ben hier al heel erg blij mee! Ook met de supersnelle hulp! Ik heb drie vragen: 1. nog een laatste check doen, om te zien of er nog wat is achtergebleven? 2. Hoe kan ik dit soort dingen in de toekomst voorkomen? Zijn er speciale programma's in de handel waarmee ik van tijd tot tijd zelf malware van de PC kan halen? Norton Internetsecurity doet dit namelijk niet. 3. Komen dit soort problemen ook voor met Apple PC' s? Met vr.gr. Henk de Reus
  17. h.dereus
    Ik volgde de aangegeven stappen. Toen ik in AdwCleaner op scannen klikte, zag ik echter niets gebeuren. Wel was deze functie toe niet actief meer. Uiteindelijk op "clean" geklikt en PC afgesloten. Na opnieuw opstarten verscheen het volgende logbestand in het scherm: # AdwCleaner v4.000 - Rapport aangemaakt 19/10/2014 op 18:54:57 # DB v2014-10-17.9 # Laatste Update 12/10/2014 door Xplode # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits) # Gebruikersnaam : Henk - WINDOWS7 # Gestart vanuit : C:\Users\Henk\Desktop\adwcleaner_4.000.exe # Optie : Verwijderen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** Map Verwijderd : C:\Users\Henk\AppData\LocalLow\CieoNetUtilities_0eEI Map Verwijderd : C:\ProgramData\NCH Software Map Verwijderd : C:\Program Files (x86)\NCH Software Map Verwijderd : C:\Program Files (x86)\VideoConverter Map Verwijderd : C:\Users\Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj Map Verwijderd : C:\Users\Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [!] Map Verwijderd : C:\Users\Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk Bestand Verwijderd : C:\Users\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\rdgob3y6.default\user.js Bestand Verwijderd : C:\Users\Henk\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pflphaooapbgpeakohlggbpidpppgdff_0.localstorage ***** [ Taken ] ***** Taak Verwijderd : BrowserDefendert ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** Sleutel Verwijderd : HKLM\SOFTWARE\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj Sleutel Verwijderd : HKLM\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk Sleutel Verwijderd : HKCU\Software\Classes\pokki Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\esrv.EXE Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\NCTAudioCompress3.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\NCTAudioFormatSettings3.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\esrv.mysearchdialesrvc Sleutel Verwijderd : HKLM\SOFTWARE\Classes\esrv.mysearchdialesrvc.1 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\protector_dll.protectorbho Sleutel Verwijderd : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\MegaBrowse_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\MegaBrowse_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\registrybooster_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\registrybooster_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\updateMegaBrowse_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\updateMegaBrowse_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\utilMegaBrowse_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\utilMegaBrowse_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{10E9E863-3913-40D0-903D-D46DEB18C982} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{C430996F-4AA8-4AA8-81DE-F54432CD5786} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{0F9AF7E3-3853-473F-A49B-E470A3A41501} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{10E9E863-3913-40D0-903D-D46DEB18C982} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{DADF82FD-0783-4CA9-98AA-615F657A2A9E} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{0F9AF7E3-3853-473F-A49B-E470A3A41501} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{DADF82FD-0783-4CA9-98AA-615F657A2A9E} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{FEB62B15-CC00-4736-AAEC-BA046C9DFF73} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98EE749F-A86F-4C48-8007-4B47F5657936} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Waarde Verwijderd : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5} Sleutel Verwijderd : HKCU\Software\InstallCore Sleutel Verwijderd : HKCU\Software\Myfree Codec Sleutel Verwijderd : HKCU\Software\mysearchdial.com Sleutel Verwijderd : HKCU\Software\ParetoLogic Sleutel Verwijderd : HKCU\Software\Softonic Sleutel Verwijderd : HKCU\Software\WEDLMNGR Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\CieoNetUtilities_0eEI Sleutel Verwijderd : HKLM\SOFTWARE\Myfree Codec Sleutel Verwijderd : HKLM\SOFTWARE\mysearchdial Sleutel Verwijderd : HKLM\SOFTWARE\ParetoLogic Sleutel Verwijderd : HKLM\SOFTWARE\simplitec Sleutel Verwijderd : HKLM\SOFTWARE\systweak Sleutel Verwijderd : HKLM\SOFTWARE\Uniblue Sleutel Verwijderd : HKLM\SOFTWARE\Vittalia Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Speedchecker Limited Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964 Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B2468513CA2D6943A1A233CD3F88CE7 Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467 Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\5E8031606EB60A64C882918F8FF38DD4 ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17344 Instelling Hersteld : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page] -\\ Mozilla Firefox v32.0.3 (x86 nl) -\\ Google Chrome v38.0.2125.104 ************************* AdwCleaner[R0].txt - [3677 octets] - [01/09/2013 16:10:58] AdwCleaner[R1].txt - [9426 octets] - [19/10/2014 09:03:17] AdwCleaner[s0].txt - [3228 octets] - [01/09/2013 16:13:29] AdwCleaner[s1].txt - [8605 octets] - [19/10/2014 18:54:57] ########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [8665 octets] ##########
  18. h.dereus
    Ik volgde alle stappen. Hierbij het logje Groet, H. de Reus zoek-results.txt
  19. h.dereus
    Hierbij het logbestand[ATTACH]36576[/ATTACH] log.txt
  20. h.dereus
    ---------------------------------------------------------------------------------------- De optie "meer opties" (zoals in de instructie aangegeven) tref ik niet aan onder mijn bericht. Wel "met citaat reageren". Nu ik niet weet hoe ik het logbestand als bijlage moet versturen, plak ik deze maar onder deze tekst (sorry). --------------------------------------------------------------------------------------- Logfile of random's system information tool 1.10 (written by random/random) Run by Henk at 2014-10-17 22:49:36 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 53 GB (14%) free of 382 GB Total RAM: 4094 MB (59% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:49:45, on 17-10-2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17344) Boot mode: Normal Running processes: C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe C:\Program Files (x86)\Samsung\Kies\Kies.exe C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe C:\Users\Henk\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files\MAGIX\Video deluxe 2015 Premium\Bridge32_V103.exe C:\Program Files (x86)\Canon\Solution Menu EX\CNSEUPDT.EXE C:\Users\Henk\AppData\Local\Temp\Foxit Reader Updater.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe C:\Program Files (x86)\simplitec\simpliclean\ServiceProvider.exe c:\program files (x86)\real\realplayer\update\realsched.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files\trend micro\Henk.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = msn R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Mysearchdial Search R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\IPS\IPSBHO.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [TrayServer] C:\Program Files (x86)\MAGIX\Video_deluxe_MX_Premium\TrayServer_nl.exe O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" O4 - HKLM\..\Run: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon O4 - HKLM\..\Run: [iJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Henk\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - Startup: Dropbox.lnk = Henk\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE O4 - Global Startup: i1Profiler Tray.lnk = C:\Program Files (x86)\X-Rite\i1Profiler\i1ProfilerTray.exe O4 - Global Startup: ImageBrowser EX Agent.lnk = C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe O4 - Global Startup: RealPlayer Cloud Service UI.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe O4 - Global Startup: XRGamma.lnk = C:\Program Files (x86)\X-Rite\i1Profiler\XRGamma.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Converteren naar Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Doel van koppeling converteren naar Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Doel van koppeling toevoegen aan bestaande PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Toevoegen aan bestaande PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe O23 - Service: Adobe Active File Monitor V11 (AdobeActiveFileMonitor11.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: CDMA Device Service - Unknown owner - C:\Program Files (x86)\Samsung\USB Drivers\26_VIA_driver2\amd64\VIAService.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Corporation - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HASP License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe O23 - Service: NitroPDFReaderDriverCreatorReadSpool3 (NitroReaderDriverReadSpool3) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: X-Rite Device Services Manager (xrdd.exe) - X-Rite Inc. - C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe -- End of file - 19262 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe winlogon.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch "C:\Windows\system32\nvvsvc.exe" "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe" C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe" "C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe" "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe" "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "C:\Program Files\Bonjour\mDNSResponder.exe" "C:\Program Files (x86)\Samsung\USB Drivers\26_VIA_driver2\amd64\VIAService.exe" "C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe" "C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe" "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe" C:\Windows\system32\hasplms.exe -run "C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE" "C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\diMaster.dll" /prefetch:1 "C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe" "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe" "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss d0e80f6f-0f20-471c-a39a-d4a627286d85 1 \??\C:\Windows\system32\conhost.exe "-4746175511646170790-473036883-4296399621290416739-1744291707825592153-938285154 "C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe" "c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe" "C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe" "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe" "C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe" "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" "C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe" WLIDSvcM.exe 3044 C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\SearchIndexer.exe /Embedding C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8503f983-ac4b-44e0-ae95-5915a770d994 -SystemEventPortName:HostProcess-6b51649c-1e29-4d42-bde5-01dbc7f2b558 -IoCancelEventPortName:HostProcess-308bed11-1aa1-4749-a344-6fec5de3a9c3 -NonStateChangingEventPortName:HostProcess-1ba82922-8d4f-4e7a-bf34-e42642b95d30 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:87c082a5-77b4-4fd6-ade5-9c45d53948af -DeviceGroupId:WpdFsGroup C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7} "C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe" C:\Windows\system32\nvvsvc.exe -session -first "C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe" /DisableUI "C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe" "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\ehome\ehRecvr.exe "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp \??\C:\Windows\system32\conhost.exe "5484515351278705308-281523021-6966388881897478062-1719151795-99217431543370791 "C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe" /c /a /s UserSession "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" "C:\Program Files (x86)\Samsung\Kies\Kies.exe" /preload "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe" "C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe" "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" "C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1 "C:\Users\Henk\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup "C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe" "C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE" /tsr "C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon "C:\Program Files\MAGIX\Video deluxe 2015 Premium\Videodeluxe.exe" "C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\iTunes\iTunesHelper.exe" "C:\Program Files\iPod\bin\iPodService.exe" C:\Windows\splwow64.exe 8192 /SamBridge5560-1 "C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE" "C:\Program Files (x86)\Canon\Solution Menu EX\CNSEUPDT.EXE" "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac C:\Windows\system32\wbem\unsecapp.exe -Embedding /event 2248 /clsid {415E2382-CEA6-43E9-A4F1-11FA46FBCBD6} /processid 5560 C:\Windows\system32\svchost.exe -k SDRSVC "C:\Users\Henk\AppData\Local\Temp\Foxit Reader Updater.exe" -updater -type "Auto Updater" -hwnd 787186 -readerpath "C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\" -regpath "HKEY_CURRENT_USER\Software\Foxit Software\Foxit Reader 6.0" -version "6.1.4.0217" "C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" -Embedding "C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE" "taskhost.exe" "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe" "C:\Program Files (x86)\simplitec\simpliclean\ServiceProvider.exe" "c:\program files (x86)\real\realplayer\update\realsched.exe" taskeng.exe {B5F8BBD1-ECC1-4472-850B-2CE61EBA1B87} "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" "C:\Users\Henk\Downloads\RSITx64.exe" ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\Power Suite (Tray).job - C:\Program Files (x86)\simplitec\simpliclean\ServiceProvider.exe C:\Windows\tasks\Power Suite.job - C:\Program Files (x86)\simplitec\simpliclean\PowerSuite.exe -task C:\Windows\tasks\simplitec Power Suite.job - C:\Program Files (x86)\simplitec\simpliclean\PowerSuite.exe -task C:\Windows\tasks\X-Rite Device Services Software Updater.job - C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe C:\Windows\tasks\{3A1B2112-3617-4D99-BF54-7AB8F9D18F97}.job - C:\Users\Henk\AppData\Local\Temp\is-HJ80N.tmp\XRD Manager.exe /exenoupdates /noprereqs /qr AI_RESUME=1 ADDLOCAL=MainFeature,XRDdrivers64 ACTION="INSTALL" EXECUTEACTION="INSTALL" ROOTDRIVE="L:\" AI_PREREQFILES="C:\Users\Henk\AppData\Local\Temp\{3A1B2112-3617-4D99-BF54-7AB8F9D18F97}\drivers64.msi" AI_PREREQDIRS="C:\Users\Henk\AppData\Local\Temp" OLDPRODUCTS="{425E7005-9EC8-4CFC-818A-D3511CE343B7}" AI_SETUPEXEPATH="C:\Users\Henk\AppData\Local\Temp\is-HJ80N.tmp\XRD Manager.exe" SETUPEXEDIR="C:\Users\Henk\AppData\Local\Temp\is-HJ80N.tmp\" TARGETDIR="L:\" APPDIR="C:\Program Files (x86)\X-Rite\Devices\" =========Mozilla firefox========= ProfilePath - C:\Users\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\rdgob3y6.default prefs.js - "browser.search.useDBForOrder" - "false" prefs.js - "browser.startup.homepage" - "https://www.google.nl/" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 15.0.0.152 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=] "Description"=iTunes Detector Plug-in "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0] "Description"= "Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX] "Description"=Canon Easy-PhotoPrint EX "Path"=C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/MycameraPlugin] "Description"=Canon MycameraPlugin "Path"=C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\NPCIG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@CieoNetUtilities_0e.com/Plugin] "Description"=CieoNet Utilities Plugin "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf] "Description"= "Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf] "Description"= "Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin] "Description"=Google Earth in your browser "Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] "Description"=Picasa3 plugin "Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] "Description"=Microsoft SharePoint Plug-in for Firefox "Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nitropdf.com/NitroPDF] "Description"=NitroPDF Web Browser Plugin "Path"=C:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision] "Description"=NVIDIA stereo images plugin for Mozilla browsers "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming] "Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=17.0.11.0] "Description"=RealPlayer LiveConnect-Enabled Plug-In "Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=17.0.11] "Description"=RealPlayer Video Downloader (32-bit) "Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.11] "Description"=RealPlayer Video Downloader for HTML5 (32-bit) "Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=17.0.11] "Description"=RealPlayer Video Downloader for PepperFlash (32-bit) "Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=17.0.11.0] "Description"=RealPlayer Download Plugin "Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat] "Description"=Handles PDFs in-place in Firefox "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 15.0.0.152 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.10.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Windows\system32\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll C:\Users\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\rdgob3y6.default\searchplugins\ ask-search.xml Mysearchdial.xml safesearch.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealNetworks Download and Record Plugin for Internet Explorer - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2014-06-10 590408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}] Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\21.6.0.32\coIEPlg.dll [2014-09-20 917856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-04-17 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}] MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealNetworks Download and Record Plugin for Internet Explorer - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2014-06-10 475720] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}] Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2009-11-25 202080] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}] Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll [2014-09-20 655200] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}] Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\IPS\IPSBHO.DLL [2014-07-23 392336] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-04-17 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}] Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2012-12-18 352016] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}] SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2012-12-18 352016] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\21.6.0.32\coIEPlg.dll [2014-09-20 917856] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-04-17 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2012-12-18 352016] {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2009-11-25 1496408] {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll [2014-09-20 655200] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-04-17 194504] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2013-12-11 311152] "Acronis Scheduler2 Service"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2013-08-21 518960] "Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [] "AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392] "ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784] "NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2460488] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "TomTomHOME.exe"=C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [2013-08-27 248208] "NextLive"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544] "KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2013-12-11 1564528] "swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2014-04-17 39408] "CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2012-08-09 2774160] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2009-03-17 767312] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [2013-10-30 578560] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2013-12-11 845168] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe [2013-12-11 1564528] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC] C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl] C:\Program Files (x86)\HomeCinema\PowerDVD\PDVDServ.exe [2007-02-09 71216] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14 20584608] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [2013-08-27 248208] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TVEService] C:\Program Files (x86)\HomeCinema\TV Enhance\TVEService.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HD Writer.lnk] C:\PROGRA~2\COMMON~1\PANASO~1\HDWRIT~1\HDWRIT~1.EXE [2010-12-15 292240] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Henk^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Canon IJ Status Monitor Canon MP640 series Printer.lnk] C:\Users\Henk\CNMSSC~1.DLL,SMStarterEntryPoint USB001;Canon MP640 series Printer;cnmss Canon MP640 series Printer (Local).dll;Canon IJ Status Monitor Canon MP640 series Printer.lnk [] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""= [] "TrayServer"=C:\Program Files (x86)\MAGIX\Video_deluxe_MX_Premium\TrayServer_nl.exe [2008-09-10 90112] "TrueImageMonitor.exe"=C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2014-03-05 7836312] "AcronisTibMounterMonitor"=C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2013-10-10 1103272] "CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2011-08-04 1612920] "IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016] "KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2013-12-11 311152] "BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184] "SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] "AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312] "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176] "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888] "TkBellExe"=c:\program files (x86)\real\realplayer\Update\realsched.exe [2014-07-31 296520] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896] "iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-09-01 152392] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup i1Profiler Tray.lnk - C:\Program Files (x86)\X-Rite\i1Profiler\i1ProfilerTray.exe ImageBrowser EX Agent.lnk - C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe RealPlayer Cloud Service UI.lnk - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe XRGamma.lnk - C:\Program Files (x86)\X-Rite\i1Profiler\XRGamma.exe C:\Users\Henk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Dropbox.lnk - C:\Users\Henk\AppData\Roaming\Dropbox\bin\Dropbox.exe OneNote 2010 Schermopname en Snel starten.lnk - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro35Crusader] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableLinkedConnections"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "MSVideo8"=VfWWDM32.dll "wave1"=wdmaud.drv "mixer1"=wdmaud.drv "wave2"=wdmaud.drv "midi1"=wdmaud.drv "mixer2"=wdmaud.drv "aux1"=wdmaud.drv "wave3"=wdmaud.drv "midi2"=wdmaud.drv "mixer3"=wdmaud.drv "aux2"=wdmaud.drv "VIDC.FPS1"=frapsv64.dll "wave4"=wdmaud.drv "midi3"=wdmaud.drv "mixer4"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 1 month====== 2014-10-17 22:49:36 ----D---- C:\rsit 2014-10-17 22:49:36 ----D---- C:\Program Files\trend micro 2014-10-15 03:45:48 ----D---- C:\Program Files (x86)\Microsoft ASP.NET 2014-10-14 23:45:05 ----A---- C:\Windows\system32\win32k.sys 2014-10-14 23:45:01 ----A---- C:\Windows\SYSWOW64\mscorier.dll 2014-10-14 23:45:01 ----A---- C:\Windows\SYSWOW64\dfshim.dll 2014-10-14 23:45:01 ----A---- C:\Windows\system32\mscorier.dll 2014-10-14 23:45:01 ----A---- C:\Windows\system32\dfshim.dll 2014-10-14 23:45:00 ----A---- C:\Windows\system32\mscories.dll 2014-10-14 23:44:59 ----A---- C:\Windows\SYSWOW64\mscories.dll 2014-10-14 23:44:39 ----A---- C:\Windows\system32\blackbox.dll 2014-10-14 23:44:38 ----A---- C:\Windows\SYSWOW64\blackbox.dll 2014-10-14 23:44:38 ----A---- C:\Windows\system32\drmv2clt.dll 2014-10-14 23:44:37 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll 2014-10-14 23:44:36 ----A---- C:\Windows\system32\wmp.dll 2014-10-14 23:44:34 ----A---- C:\Windows\system32\wmdrmsdk.dll 2014-10-14 23:44:34 ----A---- C:\Windows\system32\mf.dll 2014-10-14 23:44:33 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll 2014-10-14 23:44:33 ----A---- C:\Windows\system32\AUDIOKSE.dll 2014-10-14 23:44:32 ----A---- C:\Windows\SYSWOW64\wmp.dll 2014-10-14 23:44:32 ----A---- C:\Windows\system32\drmmgrtn.dll 2014-10-14 23:44:31 ----A---- C:\Windows\SYSWOW64\mf.dll 2014-10-14 23:44:31 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll 2014-10-14 23:44:31 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll 2014-10-14 23:44:31 ----A---- C:\Windows\system32\drivers\PEAuth.sys 2014-10-14 23:44:31 ----A---- C:\Windows\system32\ci.dll 2014-10-14 23:44:30 ----A---- C:\Windows\SYSWOW64\AudioSes.dll 2014-10-14 23:44:30 ----A---- C:\Windows\system32\wintrust.dll 2014-10-14 23:44:30 ----A---- C:\Windows\system32\winresume.exe 2014-10-14 23:44:30 ----A---- C:\Windows\system32\winload.exe 2014-10-14 23:44:30 ----A---- C:\Windows\system32\quartz.dll 2014-10-14 23:44:30 ----A---- C:\Windows\system32\ntoskrnl.exe 2014-10-14 23:44:30 ----A---- C:\Windows\system32\cryptsvc.dll 2014-10-14 23:44:30 ----A---- C:\Windows\system32\AudioEng.dll 2014-10-14 23:44:29 ----A---- C:\Windows\SYSWOW64\wintrust.dll 2014-10-14 23:44:29 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2014-10-14 23:44:29 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll 2014-10-14 23:44:29 ----A---- C:\Windows\system32\evr.dll 2014-10-14 23:44:29 ----A---- C:\Windows\system32\EncDump.dll 2014-10-14 23:44:29 ----A---- C:\Windows\system32\crypt32.dll 2014-10-14 23:44:29 ----A---- C:\Windows\system32\AudioSes.dll 2014-10-14 23:44:28 ----A---- C:\Windows\SYSWOW64\quartz.dll 2014-10-14 23:44:28 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2014-10-14 23:44:28 ----A---- C:\Windows\SYSWOW64\mfplat.dll 2014-10-14 23:44:28 ----A---- C:\Windows\SYSWOW64\evr.dll 2014-10-14 23:44:28 ----A---- C:\Windows\SYSWOW64\cryptui.dll 2014-10-14 23:44:28 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2014-10-14 23:44:28 ----A---- C:\Windows\system32\srcore.dll 2014-10-14 23:44:28 ----A---- C:\Windows\system32\pcasvc.dll 2014-10-14 23:44:28 ----A---- C:\Windows\system32\mfplat.dll 2014-10-14 23:44:28 ----A---- C:\Windows\system32\cryptui.dll 2014-10-14 23:44:28 ----A---- C:\Windows\system32\audiosrv.dll 2014-10-14 23:44:27 ----A---- C:\Windows\SYSWOW64\cryptsp.dll 2014-10-14 23:44:27 ----A---- C:\Windows\SYSWOW64\AudioEng.dll 2014-10-14 23:44:27 ----A---- C:\Windows\system32\msscp.dll 2014-10-14 23:44:27 ----A---- C:\Windows\system32\cryptsp.dll 2014-10-14 23:44:26 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe 2014-10-14 23:44:26 ----A---- C:\Windows\SYSWOW64\msscp.dll 2014-10-14 23:44:26 ----A---- C:\Windows\SYSWOW64\msnetobj.dll 2014-10-14 23:44:26 ----A---- C:\Windows\system32\rstrui.exe 2014-10-14 23:44:26 ----A---- C:\Windows\system32\rrinstaller.exe 2014-10-14 23:44:26 ----A---- C:\Windows\system32\msnetobj.dll 2014-10-14 23:44:26 ----A---- C:\Windows\system32\drivers\appid.sys 2014-10-14 23:44:26 ----A---- C:\Windows\system32\audiodg.exe 2014-10-14 23:44:26 ----A---- C:\Windows\system32\appidsvc.dll 2014-10-14 23:44:26 ----A---- C:\Windows\system32\appidapi.dll 2014-10-14 23:44:25 ----A---- C:\Windows\SYSWOW64\mfps.dll 2014-10-14 23:44:25 ----A---- C:\Windows\system32\mfps.dll 2014-10-14 23:44:24 ----A---- C:\Windows\SYSWOW64\appidapi.dll 2014-10-14 23:44:24 ----A---- C:\Windows\system32\mfpmp.exe 2014-10-14 23:44:24 ----A---- C:\Windows\system32\appidpolicyconverter.exe 2014-10-14 23:44:23 ----A---- C:\Windows\SYSWOW64\mfpmp.exe 2014-10-14 23:44:23 ----A---- C:\Windows\system32\setbcdlocale.dll 2014-10-14 23:44:22 ----A---- C:\Windows\SYSWOW64\srclient.dll 2014-10-14 23:44:22 ----A---- C:\Windows\system32\srclient.dll 2014-10-14 23:44:21 ----A---- C:\Windows\system32\appidcertstorecheck.exe 2014-10-14 23:44:20 ----A---- C:\Windows\SYSWOW64\wmploc.DLL 2014-10-14 23:44:20 ----A---- C:\Windows\SYSWOW64\spwmp.dll 2014-10-14 23:44:20 ----A---- C:\Windows\SYSWOW64\mferror.dll 2014-10-14 23:44:20 ----A---- C:\Windows\SYSWOW64\dxmasf.dll 2014-10-14 23:44:20 ----A---- C:\Windows\system32\wmploc.DLL 2014-10-14 23:44:20 ----A---- C:\Windows\system32\spwmp.dll 2014-10-14 23:44:20 ----A---- C:\Windows\system32\mferror.dll 2014-10-14 23:44:20 ----A---- C:\Windows\system32\dxmasf.dll 2014-10-14 23:43:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2014-10-14 23:43:29 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2014-10-14 23:43:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2014-10-14 23:43:28 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2014-10-14 23:43:28 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2014-10-14 23:43:28 ----A---- C:\Windows\system32\iernonce.dll 2014-10-14 23:43:28 ----A---- C:\Windows\system32\ie4uinit.exe 2014-10-14 23:43:27 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2014-10-14 23:43:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2014-10-14 23:43:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2014-10-14 23:43:27 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2014-10-14 23:43:27 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2014-10-14 23:43:27 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-10-14 23:43:27 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-10-14 23:43:25 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2014-10-14 23:43:25 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2014-10-14 23:43:25 ----A---- C:\Windows\system32\urlmon.dll 2014-10-14 23:43:25 ----A---- C:\Windows\system32\iedkcs32.dll 2014-10-14 23:43:24 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2014-10-14 23:43:24 ----A---- C:\Windows\SYSWOW64\ieui.dll 2014-10-14 23:43:24 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2014-10-14 23:43:24 ----A---- C:\Windows\system32\msfeeds.dll 2014-10-14 23:43:24 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-10-14 23:43:24 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-10-14 23:43:24 ----A---- C:\Windows\system32\dxtmsft.dll 2014-10-14 23:43:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2014-10-14 23:43:23 ----A---- C:\Windows\system32\iesetup.dll 2014-10-14 23:43:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2014-10-14 23:43:22 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2014-10-14 23:43:22 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2014-10-14 23:43:22 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2014-10-14 23:43:22 ----A---- C:\Windows\system32\iertutil.dll 2014-10-14 23:43:21 ----A---- C:\Windows\SYSWOW64\wininet.dll 2014-10-14 23:43:21 ----A---- C:\Windows\SYSWOW64\msrating.dll 2014-10-14 23:43:21 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2014-10-14 23:43:21 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2014-10-14 23:43:21 ----A---- C:\Windows\system32\jsproxy.dll 2014-10-14 23:43:21 ----A---- C:\Windows\system32\ieui.dll 2014-10-14 23:43:21 ----A---- C:\Windows\system32\dxtrans.dll 2014-10-14 23:43:20 ----A---- C:\Windows\system32\mshtmlmedia.dll 2014-10-14 23:43:20 ----A---- C:\Windows\system32\mshtmled.dll 2014-10-14 23:43:20 ----A---- C:\Windows\system32\ieUnatt.exe 2014-10-14 23:43:20 ----A---- C:\Windows\system32\ieframe.dll 2014-10-14 23:43:19 ----A---- C:\Windows\system32\wininet.dll 2014-10-14 23:43:19 ----A---- C:\Windows\system32\vbscript.dll 2014-10-14 23:43:19 ----A---- C:\Windows\system32\jscript9diag.dll 2014-10-14 23:43:19 ----A---- C:\Windows\system32\jscript9.dll 2014-10-14 23:43:19 ----A---- C:\Windows\system32\ieapfltr.dll 2014-10-14 23:43:18 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-10-14 23:43:18 ----A---- C:\Windows\system32\msrating.dll 2014-10-14 23:43:18 ----A---- C:\Windows\system32\MshtmlDac.dll 2014-10-14 23:43:18 ----A---- C:\Windows\system32\mshtml.dll 2014-10-14 23:42:57 ----A---- C:\Windows\system32\msi.dll 2014-10-14 23:42:56 ----A---- C:\Windows\SYSWOW64\msi.dll 2014-10-14 23:42:35 ----A---- C:\Windows\SYSWOW64\rastls.dll 2014-10-14 23:42:35 ----A---- C:\Windows\system32\rastls.dll 2014-10-14 23:42:24 ----A---- C:\Windows\SYSWOW64\mstscax.dll 2014-10-14 23:42:24 ----A---- C:\Windows\system32\termsrv.dll 2014-10-14 23:42:24 ----A---- C:\Windows\system32\mstscax.dll 2014-10-14 23:42:24 ----A---- C:\Windows\system32\mstsc.exe 2014-10-14 23:42:23 ----A---- C:\Windows\SYSWOW64\winsta.dll 2014-10-14 23:42:23 ----A---- C:\Windows\SYSWOW64\mstsc.exe 2014-10-14 23:42:23 ----A---- C:\Windows\SYSWOW64\aaclient.dll 2014-10-14 23:42:23 ----A---- C:\Windows\system32\winsta.dll 2014-10-14 23:42:23 ----A---- C:\Windows\system32\winlogon.exe 2014-10-14 23:42:23 ----A---- C:\Windows\system32\rdpcorekmts.dll 2014-10-14 23:42:23 ----A---- C:\Windows\system32\drivers\rdpwd.sys 2014-10-14 23:42:22 ----A---- C:\Windows\SYSWOW64\TSpkg.dll 2014-10-14 23:42:22 ----A---- C:\Windows\SYSWOW64\credssp.dll 2014-10-14 23:42:22 ----A---- C:\Windows\system32\TSpkg.dll 2014-10-14 23:42:22 ----A---- C:\Windows\system32\credssp.dll 2014-10-14 23:42:21 ----A---- C:\Windows\system32\drivers\tssecsrv.sys 2014-10-14 23:41:40 ----A---- C:\Windows\SYSWOW64\packager.dll 2014-10-14 23:41:40 ----A---- C:\Windows\system32\packager.dll 2014-10-08 16:51:58 ----D---- C:\Program Files\Red Giant 2014-10-08 16:51:58 ----A---- C:\Windows\system32\Gpu_Shader_Engine_x64.dll 2014-10-08 16:51:58 ----A---- C:\Windows\system32\glut64.dll 2014-10-08 16:46:10 ----D---- C:\Program Files (x86)\myphotobook print service NL 2014-10-07 23:10:52 ----D---- C:\Program Files\Common Files\MAGIX Shared 2014-10-07 23:07:22 ----D---- C:\Program Files\Common Files\MAGIX Services 2014-10-07 23:07:14 ----D---- C:\Program Files\MAGIX 2014-10-07 22:38:13 ----D---- C:\ProgramData\simplitec 2014-10-07 22:38:13 ----D---- C:\Program Files (x86)\simplitec 2014-10-07 22:37:56 ----D---- C:\ProgramData\Package Cache 2014-10-01 01:11:41 ----A---- C:\Windows\SYSWOW64\qdvd.dll 2014-10-01 01:11:41 ----A---- C:\Windows\system32\qdvd.dll 2014-09-24 23:25:31 ----D---- C:\Program Files (x86)\Mozilla Firefox 2014-09-24 05:22:41 ----A---- C:\Windows\SYSWOW64\tzres.dll 2014-09-24 05:22:41 ----A---- C:\Windows\system32\tzres.dll 2014-09-21 23:25:41 ----D---- C:\Program Files (x86)\Mozilla Firefox.bak 2014-09-21 22:14:17 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll 2014-09-21 22:14:17 ----A---- C:\Windows\system32\drivers\nvvad64v.sys ======List of files/folders modified in the last 1 month====== 2014-10-17 22:49:45 ----D---- C:\Windows\Prefetch 2014-10-17 22:49:36 ----D---- C:\Program Files 2014-10-17 22:45:10 ----D---- C:\Windows\Temp 2014-10-17 20:00:30 ----D---- C:\Windows\system32\config 2014-10-17 19:46:21 ----D---- C:\Windows 2014-10-15 22:32:13 ----D---- C:\Windows\inf 2014-10-15 22:25:21 ----D---- C:\Windows\Tasks 2014-10-15 22:25:20 ----D---- C:\Windows\system32\Tasks 2014-10-15 22:24:53 ----RSD---- C:\Windows\Fonts 2014-10-15 21:48:23 ----D---- C:\Users\Henk\AppData\Roaming\Canon_Inc_IC 2014-10-15 21:44:09 ----D---- C:\Windows\debug 2014-10-15 21:27:43 ----D---- C:\Users\Henk\AppData\Roaming\Nitro PDF 2014-10-15 21:20:32 ----D---- C:\Users\Henk\AppData\Roaming\MAGIX 2014-10-15 21:20:32 ----D---- C:\ProgramData\MAGIX 2014-10-15 21:20:17 ----D---- C:\Program Files (x86)\Canon 2014-10-15 21:19:51 ----D---- C:\Program Files\Canon 2014-10-15 10:05:31 ----D---- C:\Users\Henk\AppData\Roaming\Dropbox 2014-10-15 10:04:50 ----D---- C:\Users\Henk\AppData\Roaming\newnext.me 2014-10-15 05:06:09 ----D---- C:\Windows\rescache 2014-10-15 04:36:01 ----D---- C:\Windows\Microsoft.NET 2014-10-15 04:35:16 ----RSD---- C:\Windows\assembly 2014-10-15 04:19:36 ----D---- C:\Windows\winsxs 2014-10-15 04:19:21 ----D---- C:\Windows\system32\catroot2 2014-10-15 04:17:03 ----D---- C:\ProgramData\NVIDIA 2014-10-15 04:16:31 ----D---- C:\Config.Msi 2014-10-15 04:16:18 ----SHD---- C:\System Volume Information 2014-10-15 04:13:18 ----D---- C:\Windows\System32 2014-10-15 04:13:17 ----D---- C:\Windows\SysWOW64 2014-10-15 04:13:12 ----D---- C:\Windows\SYSWOW64\nl-NL 2014-10-15 04:13:12 ----D---- C:\Windows\SYSWOW64\Dism 2014-10-15 04:13:12 ----D---- C:\Program Files\Windows Media Player 2014-10-15 04:13:12 ----D---- C:\Program Files (x86)\Windows Media Player 2014-10-15 04:13:10 ----D---- C:\Windows\system32\nl-NL 2014-10-15 04:13:10 ----D---- C:\Windows\system32\drivers 2014-10-15 04:13:10 ----D---- C:\Windows\system32\Dism 2014-10-15 04:13:05 ----D---- C:\Windows\system32\CodeIntegrity 2014-10-15 04:13:05 ----D---- C:\Windows\system32\Boot 2014-10-15 04:13:05 ----D---- C:\Program Files\Internet Explorer 2014-10-15 04:13:03 ----D---- C:\Windows\SYSWOW64\en-US 2014-10-15 04:13:03 ----D---- C:\Windows\system32\en-US 2014-10-15 04:12:59 ----D---- C:\Program Files (x86)\Internet Explorer 2014-10-15 03:55:14 ----SHD---- C:\Windows\Installer 2014-10-15 03:53:08 ----D---- C:\ProgramData\Microsoft Help 2014-10-15 03:45:48 ----RD---- C:\Program Files (x86) 2014-10-15 03:45:26 ----D---- C:\Windows\system32\MRT 2014-10-15 03:02:06 ----A---- C:\Windows\system32\MRT.exe 2014-10-14 23:41:31 ----D---- C:\Windows\system32\catroot 2014-10-12 07:58:10 ----SD---- C:\Users\Henk\AppData\Roaming\Microsoft 2014-10-11 22:17:56 ----D---- C:\ProgramData\CanonIJPLM 2014-10-08 17:00:14 ----N---- C:\Windows\SYSWOW64\DLLDEV32i.dll 2014-10-08 16:58:54 ----D---- C:\Program Files (x86)\MAGIX 2014-10-08 16:57:51 ----D---- C:\Windows\Help 2014-10-08 16:46:04 ----D---- C:\Program Files (x86)\Adobe 2014-10-07 23:10:52 ----D---- C:\Program Files\Common Files 2014-10-07 22:38:13 ----D---- C:\ProgramData 2014-10-04 15:59:24 ----D---- C:\Windows\system32\drivers\NISx64 2014-10-01 22:58:47 ----D---- C:\Windows\Logs 2014-10-01 22:57:48 ----D---- C:\Program Files\CCleaner 2014-09-26 19:20:27 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2014-09-24 04:10:26 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2014-09-21 22:14:57 ----D---- C:\Windows\system32\DriverStore 2014-09-21 22:14:56 ----D---- C:\Program Files\NVIDIA Corporation ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 fltsrv;Acronis Storage Filter Management; C:\Windows\system32\DRIVERS\fltsrv.sys [2013-12-31 116000] R0 hotcore3;hotcore3; C:\Windows\SysWOW64\drivers\hotcore3.sys [2008-01-21 36368] R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2012-08-10 56336] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2013-12-31 269600] R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1506000.020\SYMDS64.SYS [2013-09-10 493656] R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1506000.020\SYMEFA64.SYS [2014-03-04 1148120] R0 tib;Acronis TIB Manager; C:\Windows\system32\DRIVERS\tib.sys [2013-12-31 1120032] R0 tib_mounter;Acronis TIB Mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [2013-12-31 198432] R0 vididr;Acronis Virtual Disk; C:\Windows\system32\DRIVERS\vididr.sys [2013-12-31 161568] R0 vidsflt;Acronis Disk Storage Filter; C:\Windows\system32\DRIVERS\vidsflt.sys [2013-12-31 117024] R1 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20141003.001\BHDrvx64.sys [2014-10-03 1587416] R1 ccSet_NIS;NIS Settings Manager; C:\Windows\system32\drivers\NISx64\1506000.020\ccSetx64.sys [2013-09-26 162392] R1 cdrblock;cdrblock; C:\Windows\system32\DRIVERS\cdrblock.sys [2008-05-30 34360] R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2014-09-09 487216] R1 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20141016.001\IDSvia64.sys [2014-08-29 633560] R1 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1506000.020\SRTSP64.SYS [2014-08-26 876248] R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1506000.020\SRTSPX64.SYS [2014-08-26 37592] R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1506000.020\Ironx64.SYS [2014-08-06 266968] R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NISx64\1506000.020\SYMNETS.SYS [2014-02-18 593112] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632] R2 aksdf;aksdf; \??\C:\Windows\system32\drivers\aksdf.sys [2009-08-26 71040] R2 hardlock;hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2009-03-13 318464] R3 afcdp;afcdp; C:\Windows\system32\DRIVERS\afcdp.sys [2014-05-27 367200] R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2014-09-09 142640] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20141016.034\ENG64.SYS [2014-08-21 129752] R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20141016.034\EX64.SYS [2014-08-21 2137304] R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 19272] R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048] R3 NxpCap64;CTX capture service; C:\Windows\system32\DRIVERS\NxpCap64.sys [2008-09-25 1591008] R3 RTL8167;Realtek 8167 NT-stuurprogramma; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392] R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2014-01-28 177752] S1 ctredr15.sys;ctredr15.sys; \??\C:\Windows\system32\drivers\ctredr15.sys [] S3 akshasp;Aladdin HASP Key; C:\Windows\system32\DRIVERS\akshasp.sys [2009-03-13 53760] S3 akshhl;Aladdin HASP HL Key; C:\Windows\system32\DRIVERS\akshhl.sys [2007-07-23 56960] S3 aksusb;Aladdin USB Key; C:\Windows\system32\DRIVERS\aksusb.sys [2009-03-13 25344] S3 azvusb;Virtual USB Hub; C:\Windows\system32\DRIVERS\azvusb.sys [2009-08-24 54784] S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232] S3 catchme;catchme; \??\C:\ComboFix\catchme.sys [] S3 cpuz132;cpuz132; \??\C:\Users\Henk\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [] S3 e1express;Stuurprogramma voor Intel® PRO/1000 PCI Express-netwerkverbinding; C:\Windows\system32\DRIVERS\e1e6032e.sys [2009-06-10 278016] S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\SysWOW64\FsUsbExDisk.SYS [2013-02-05 37344] S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120] S3 mod7700;DiBcom DIB7700 based TV tuner device; C:\Windows\system32\DRIVERS\mod7700.sys [2008-06-26 698376] S3 MODRC;PCTV Infrared Receiver; C:\Windows\system32\DRIVERS\modrc.sys [2007-10-19 24200] S3 netr28ux;Stuurprogramma voor RT2870 USB draadloze LAN-kaart voor Vista; C:\Windows\system32\DRIVERS\netr28ux.sys [2009-06-10 867328] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 Spyder4;Datacolor Spyder4; C:\Windows\system32\DRIVERS\dccmtr.sys [2011-06-02 15360] S3 tdrpman;Acronis Try&Decide and Restore Points filter; C:\Windows\system32\DRIVERS\tdrpman.sys [2014-05-27 1464096] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-07-28 54784] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984] S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S4 aksfridge;aksfridge; C:\Windows\system32\DRIVERS\aksfridge.sys [2010-04-13 131072] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2013-08-21 1144144] R2 AdobeActiveFileMonitor11.0;Adobe Active File Monitor V11; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [2012-09-23 171600] R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704] R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2014-05-27 3881976] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-08-28 43336] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] R2 CDMA Device Service;CDMA Device Service; C:\Program Files (x86)\Samsung\USB Drivers\26_VIA_driver2\amd64\VIAService.exe [2011-08-02 159232] R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2012-01-23 1858048] R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [2014-02-19 239680] R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-06-06 100864] R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1148744] R2 hasplms;HASP License Manager; C:\Windows\system32\hasplms.exe [2009-04-21 2869760] R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2011-02-07 138192] R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe [2014-09-21 276376] R2 NitroReaderDriverReadSpool3;NitroPDFReaderDriverCreatorReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [2013-05-01 230416] R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1795912] R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19439944] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368] R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2014-06-10 39568] R2 RealPlayer Cloud Service;RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [2014-07-31 1141848] R2 RealPlayerUpdateSvc;RealPlayer Update Service; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [2014-06-10 23552] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936] R2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2014-02-04 7148216] R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072] R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-06-14 61440] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-09-01 640840] R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] S2 gupdate;Google Updateservice (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-05-30 136176] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24 267440] S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848] S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-05-27 1038088] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-05-27 655624] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-05-30 136176] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-04-17 194032] S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-09-19 111616] S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-24 114288] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-29 1255736] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896] S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [2008-10-14 241734] -----------------EOF-----------------
  21. h.dereus
    Hallo, M'n PC is sinds 1 1/2 maand terug steeds trager geworden. Het openen van de Internet startpagina duurt lang, maar ook het opstarten van programma's.Ik hoor de PC vaak lang pruttelen. Ik heb in de afgelopen periode nagenoeg geen, of weinig nieuwe programma's geïnstalleerd. Verder lijkt het mij niet waarschijnlijk dat dit komt door een virus, want ik gebruik Norton Internet Security. Weet iemand hoe ik m'n PC weer sneller kan krijgen zonder deze opnieuw te installeren? Henk
  22. h.dereus
    Dank je wel. Ga ik doen. Dacht dat het een Windowsprobleem was.
  23. h.dereus
    Hallo, Als ik in mijn documenten rechts op een pdf document klik, verschijnt de functie "openen met" niet. Als ik op "openen" klik verschijnt het bericht "kan het bestand niet openen" omdat niet bekend is met welk programma ik het bestand wil openen en wordt ik naar Internet gestuurd. De ikoontjes van de pdf bestanden in "mijn documenten" zijn ook blanco (het rode Adobe-pdf logo ontbreekt). Als ik het programma Adobe Reader open en naar het desbetreffende bestand ga kan ik het pdf document wel openen door hier op te dubbelklikken. Weet iemand hoe ik in Windows de functie "openen met" weer terugkrijg ? Henk
  24. h.dereus
    Die was ik ook tegengekomen. Ik wist niet of op Office Object Linking and Embedding van toepassing is. Bovendien leek de procedure nogal omslachtig. Bij de afdeling Automatisering op m'n werk kwamen ze er ook niet uit. Ik ben nu maar begonnen met het handmatig omzetten van de Word-bestanden naar PP. Ik ben er in elk geval achter hoe ik de gewenste achtergrondkleur in PP kan krijgen. Dat scheelt weer wat werk. Erg bedankt voor het meedenken!
  25. h.dereus
    Ja, met name de tip van Kurrt (plaatsen extra ikoontje op het lint. Ik was niet helemaal correct met mijn vraag. Er gebeurt wel wat als ik op verzenden op "verzenden naar Microsoft PowerPoint" klik (en PP open staat), maar ik zie alleen de tekst overvliegen (in een ander formaat). De achtergrondkleur en de ingevoegde plaatjes verhuizen niet mee. De andere tips ook geprobeerd, maar ik kreeg hetzelfde resultaat te zien, Ik probeerde het Word bestand ook te converteren naar pdf formaat en daarna te importeren, maar dan krijg je in PP een klein pdf ikoontje te zien waar je niks mee kan. Als je erop klikt opent het in Adobe Reader, maar niet in PP. Wat ik nog geprobeerd heb, is het Word document in Photoshop Elements te openen (afbeeldingen kun je immers wel in PP importeren(, maar dan gaat de kwaliteit sterk achteruit.
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.