Ga naar inhoud

Verwijderen van Malware

fre101
 Delen

Aanbevolen berichten

fre101 Nieuweling

fre101

Geplaatst:
Geplaatst:

Beste pc kenners,

 

Momenteel zit ik met een hoop malware. Ik kwam op jullie forum terecht toen ik opzocht hoe ik dit efficient kon verwijderen. Zelf heb ik gevonden welke dingen hoogstwaarschijnlijk de oorzaak zijn, maar helaas ken ik de syntax niet voor het verwijderen van deze malware. Het programma zoek heb ik ook reeds gedownload :).

Alvast bedankt voor jullie hulp!

Hier zie je mijn Hijack logfile:

 

Logfile of random's system information tool 1.10 (written by random/random)
Run by Frederik at 2015-02-02 20:26:52
Microsoft Windows 8.1
System drive C: has 593 GB (63%) free of 938 GB
Total RAM: 11462 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:26:54, on 2/02/2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Users\Frederik\AppData\Roaming\uTorrent\updates\3.4.2_37754.exe
C:\Users\Frederik\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\National Instruments\LabVIEW 2013\resource\myRIO\ni_usbmon.exe
C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Windows\syswow64\wwahost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Frederik\AppData\Local\HPConnectedMusic\Application\HPConnectedMusic.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_296.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_296.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Frederik.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts=1419417639&from=wpm12233&uid=HGSTXHTS541010A9E680_JA1003BVJAJZHMJAJZHMX
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?type=ds&ts=1419417639&from=wpm12233&uid=HGSTXHTS541010A9E680_JA1003BVJAJZHMJAJZHMX&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?type=ds&ts=1419417639&from=wpm12233&uid=HGSTXHTS541010A9E680_JA1003BVJAJZHMJAJZHMX&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts=1419417639&from=wpm12233&uid=HGSTXHTS541010A9E680_JA1003BVJAJZHMJAJZHMX
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1404763244&from=cor&uid=HGSTXHTS541010A9E680_JA1003BVJAJZHMJAJZHMX&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1404763244&from=cor&uid=HGSTXHTS541010A9E680_JA1003BVJAJZHMJAJZHMX&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Frederik\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BS Player ControlBar B - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Frederik\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O3 - Toolbar: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Frederik\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll
O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Reader Application Helper] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Frederik\AppData\Roaming\uTorrent\updates\3.4.2_37754.exe"  /MINIMIZED
O4 - HKCU\..\Run: [EPSON638446] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEKU.EXE /FU "C:\Windows\TEMP\E_SA03F.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [EPSON BX600FW Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEKU.EXE /FU "C:\Windows\TEMP\E_S2408.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Frederik\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Google+ Auto Backup] "C:\Users\Frederik\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
O4 - HKCU\..\Run: [backgroundContainerV2] "C:\Windows\SysWOW64\Rundll32.exe" "C:\Users\Frederik\AppData\Local\Tbccint\BackgroundContainer\BackgroundContainer.dll",DllRun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_1B7299DA0A681771E57FD43AFDAD020D] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
O4 - Startup: Verzenden naar OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
O4 - Global Startup: NI Error Reporting.lnk = C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
O4 - Global Startup: NI myRIO USB Monitor.lnk = C:\Program Files (x86)\National Instruments\LabVIEW 2013\resource\myRIO\ni_usbmon.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\national instruments\shared\mdns responder\nimdnsnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\PROGRA~2\SupTab\SEARCH~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service:  HP SimplePass Cachedrv Service (Cachedrv server) - Unknown owner - C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem14.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participações Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NI Citadel 4 Service (LkCitadelServer) - National Instruments, Inc. - C:\Windows\SysWOW64\lkcitdl.exe
O23 - Service: NI PSP Service Locator (lkClassAds) - National Instruments Corporation - C:\Windows\SysWOW64\lkads.exe
O23 - Service: NI Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\Windows\SysWOW64\lktsrv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NI Configuration Manager (mxssvr) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NI Application Web Server (NIApplicationWebServer) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
O23 - Service: NI Authentication Service (niauth) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe
O23 - Service: NI Domain Service (NIDomainService) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: NI License Server (NILM License Manager) - Macrovision Corporation - C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe
O23 - Service: NI LXI Discovery Service (niLXIDiscovery) - National Instruments Corporation - C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
O23 - Service: NI mDNS Responder Service (nimDNSResponder) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
O23 - Service: NI Network Discovery (NINetworkDiscovery) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
O23 - Service: NI PXI Resource Manager (nipxirmu) - National Instruments Corporation - C:\Windows\SysWOW64\nipxism.exe
O23 - Service: NI-RIO Server (NiRioRpc) - National Instruments Corporation - C:\Windows\SysWOW64\NiRioRpc.exe
O23 - Service: NI Service Locator (NiSvcLoc) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe
O23 - Service: NI System Web Server (NISystemWebServer) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
O23 - Service: NI Variable Engine (NITaggerService) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
O23 - Service:  HP SimplePass Service (omniserv) - Softex Inc. - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
O23 - Service: OpcEnum - OPC Foundation - C:\Windows\SysWOW64\Opcenum.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Toolbar Service (TBSrv) - ClientConnect Ltd. - C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WinZiper service (winzipersvc) - Taiwan Shui Mu Chih Ching Technology Limited. - C:\Program Files (x86)\WinZipper\winzipersvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 17965 bytes

======Listing Processes======





wininit.exe


C:\Windows\system32\lsass.exe
winlogon.exe
c:\windows\system32\svchost.exe -k dcomlaunch
c:\windows\system32\svchost.exe -k rpcss
"dwm.exe"
"C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe"
"C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe"
C:\Windows\system32\atiesrxx.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted


c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localservice
atieclxx
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted
C:\Windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
c:\windows\system32\svchost.exe -k networkservice
"C:\Program Files (x86)\WinZipper\winzipersvc.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
c:\windows\system32\svchost.exe -k localservicenonetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
c:\windows\system32\svchost.exe -k apphost
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
dashost.exe {2dc8c132-c8ff-442a-908fbb00baca0856}
"C:\Program Files (x86)\National Instruments\MAX\nimxs.exe"
"C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe" -start
"C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe"
"C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe" -s
c:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe"
"C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe"
C:\Windows\SysWOW64\lkcitdl.exe
"C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe"
C:\Windows\SysWOW64\nipxism.exe
"C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe" -system
"C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe"
"C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe"
"C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe" -user
NIWebServiceContainer.exe {C0798CBB-E637-4AA4-BE1A-2C00D309197D} 3316 580 21
NIWebServiceContainer.exe {0D3AEAF9-24BB-462C-9F5A-A70DC327FF15} 3316 904 21
NIWebServiceContainer.exe {99E13340-8C15-49E0-A1D3-7259CC353081} 3316 924 21
NIWebServiceContainer.exe {9FEB37E6-B386-4C1E-96C9-5D2831D73E8F} 3712 864 21
NIWebServiceContainer.exe {FA71F3A8-23F3-42B1-A948-0EDE2120E1E6} 3316 908 21
C:\Windows\system32\wbem\wmiprvse.exe
NIWebServiceContainer.exe {0E128F7F-7DA7-444E-9F9B-860435A4A5D4} 3316 940 21
NIWebServiceContainer.exe {8BECC08B-0EB4-4FDB-9FD6-B84DFE8894CA} 3316 968 21
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_0000082c
c:\windows\system32\svchost.exe -k wbiosvcgroup
C:\Windows\System32\alg.exe
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation
c:\windows\system32\svchost.exe -k localservicepeernet
C:\Windows\Explorer.EXE
taskhostex.exe
"C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe" /hideui
"C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe"
"C:\Program Files\Hewlett-Packard\SimplePass\opbhobrokerdsktop.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Users\Frederik\AppData\Roaming\uTorrent\updates\3.4.2_37754.exe"  /MINIMIZED
"C:\Windows\System32\spool\drivers\x64\3\E_IATIEKU.EXE" /FU "C:\Windows\TEMP\E_SA03F.tmp" /EF "HKCU"
"C:\Windows\System32\spool\drivers\x64\3\E_IATIEKU.EXE" /FU "C:\Windows\TEMP\E_S2408.tmp" /EF "HKCU"
"C:\Users\Frederik\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
"C:\Windows\SysWOW64\rundll32.exe" "C:\Users\Frederik\AppData\Local\Tbccint\BackgroundContainer\BackgroundContainer.dll",DllRun
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
"C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\National Instruments\LabVIEW 2013\resource\myRIO\ni_usbmon.exe"
"C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe"
"C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE" /tsr
"C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="7060.0.1553392286\1937943240" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,39 --gpu-vendor-id=0x1002 --gpu-device-id=0x0000 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.152.1.3000 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials=BrowserBlacklist/Enabled/ChromeSuggestions/Default/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Default/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/ControlForLargePopulation/RememberCertificateErrorDecisions/Default/SPDY/Spdy31Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="7060.2.311529493\848442243" /prefetch:673131151
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://www.delta-homes.com/?type=sc&ts=1419417639&from=wpm12233&uid=HGSTXHTS541010A9E680_JA1003BVJAJZHMJAJZHMX
"C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" -Embedding
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto
"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
taskhost.exe $(Arg0)
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17499_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
"C:\Windows\syswow64\wwahost.exe" -ServerName:App.wwa
"C:\Windows\system32\wwahost.exe" -ServerName:App.wwa

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -ServerName:DefaultBrowserServer
"C:\Users\Frederik\AppData\Local\HPConnectedMusic\Application\HPConnectedMusic.exe" "C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=6248.1bde9d20.716679164 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 6248 "\\.\pipe\gecko-crash-server-pipe.6248" plugin
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_16_0_0_296.exe" --proxy-stub-channel=Flash28332.10866220.25751 --host-broker-channel=Flash28332.10866220.11222 --host-pid=28332 --host-npapi-version=27 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_16_0_0_296.dll"
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_16_0_0_296.exe" --channel=29524.006DF6D0.1198058640 --proxy-stub-channel=Flash28332.10866220.25751 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_16_0_0_296.dll" --host-npapi-version=27 --type=renderer
"C:\Windows\System32\WWAHost.exe" -ServerName:Windows.Store
C:\Windows\WinStore\WSHost.exe -Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-9c405b1c-6120-4cce-af37-521cfd828b25 -SystemEventPortName:HostProcess-4c74f7eb-6123-4000-9932-ff44db7f4391 -IoCancelEventPortName:HostProcess-440dfe98-3ea7-40b4-bdcd-78f15ace38bb -NonStateChangingEventPortName:HostProcess-94862ff2-187d-4c0e-b606-eaea4a850401 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9c229c7a-3e79-44ad-9a54-650e2ca0e3c1 -DeviceGroupId:WpdFsGroup
C:\Windows\splwow64.exe 8192
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/MaterialDesignNTP/Default/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/ControlForLargePopulation/RememberCertificateErrorDecisions/Default/SHA1ToolbarUIJanuary2017/HTTP/SPDY/Spdy31Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="7060.32.1605055864\1731986215" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/MaterialDesignNTP/Default/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/ControlForLargePopulation/RememberCertificateErrorDecisions/Default/SHA1ToolbarUIJanuary2017/HTTP/SPDY/Spdy31Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="7060.36.781720138\1962917216" /prefetch:673131151
"C:\Users\Frederik\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2347842077-1750457772-3351019540-1002Core.job - C:\Users\Frederik\AppData\Local\Google\Update\GoogleUpdate.exe  /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2347842077-1750457772-3351019540-1002UA.job - C:\Users\Frederik\AppData\Local\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler
C:\Windows\tasks\HPCeeScheduleForFrederik.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe  HPCeeScheduleForFrederik (null)
C:\Windows\tasks\MATLAB R2014b Startup Accelerator.job - C:\Program Files\MATLAB\R2014b\bin\win64\MATLABStartupAccelerator.exe  

=========Mozilla firefox=========

ProfilePath - C:\Users\Frederik\AppData\Roaming\Mozilla\Firefox\Profiles\hivvha4l.default

prefs.js - "browser.search.useDBForOrder" -  true
prefs.js - "browser.startup.homepage" -  "www.google.be"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.296 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@sony.com/ReaderDesktop]
"Description"=Reader for PC is installed if this plugin exists
"Path"=C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.296 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.5.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.5.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
npIMAQAXControl.dll
nplv2010win32.dll
nplv2011win32.dll
nplv2012win32.dll
nplv2013win32.dll
nplv2014win32.dll

C:\Users\Frederik\AppData\Roaming\Mozilla\Firefox\Profiles\hivvha4l.default\extensions\
abs@avira.com
{31264a33-a653-46c4-af49-1232c59a7da5}

C:\Users\Frederik\AppData\Roaming\Mozilla\Firefox\Profiles\hivvha4l.default\searchplugins\
V9.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-11-04 218784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java Plug-In SSV Helper - C:\Program Files\Java\jre8\bin\ssv.dll [2014-05-30 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-11-12 2334928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre8\bin\jp2ssv.dll [2014-05-30 211880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264a33-a653-46c4-af49-1232c59a7da5}]
BS Player ControlBar B Toolbar - C:\Users\Frederik\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll [2014-09-23 423744]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-06-20 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-06-20 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{31264A33-A653-46C4-AF49-1232C59A7DA5} - BS Player ControlBar B Toolbar - C:\Users\Frederik\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll [2014-09-23 423744]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
{31264a33-a653-46c4-af49-1232c59a7da5} - BS Player ControlBar B Toolbar - C:\Users\Frederik\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll [2014-09-23 423744]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-08-20 7202520]
"SimplePass"=C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe [2013-10-14 2758200]
"OPBHOBroker"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2013-10-14 155704]
"OPBHOBrokerDesktop"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2013-10-14 155704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-07-26 2771184]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-12-16 21720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\Frederik\AppData\Roaming\uTorrent\updates\3.4.2_37754.exe [2015-01-16 1374032]
"EPSON638446"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEKU.EXE [2008-03-05 221696]
"EPSON BX600FW Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEKU.EXE [2008-03-05 221696]
"Google Update"=C:\Users\Frederik\AppData\Local\Google\Update\GoogleUpdate.exe [2014-11-28 116648]
"Google+ Auto Backup"=C:\Users\Frederik\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [2014-08-12 3746120]
"BackgroundContainerV2"=C:\Windows\SysWOW64\Rundll32.exe [2013-08-22 49664]
"GoogleChromeAutoLaunch_1B7299DA0A681771E57FD43AFDAD020D"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-01-25 843592]
"Power2GoExpress8"=C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [2014-07-24 1718536]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"YouCam Service"=C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2013-09-02 267224]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-03-18 224128]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-12-11 766208]
""= []
"Reader Application Helper"=C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [2014-05-23 899400]
"HPMessageService"=C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [2014-10-09 509192]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2014-04-01 126240]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2014-11-24 702768]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
NI Error Reporting.lnk - C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
NI myRIO USB Monitor.lnk - C:\Program Files (x86)\National Instruments\LabVIEW 2013\resource\myRIO\ni_usbmon.exe

C:\Users\Frederik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Verzenden naar OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\SupTab\SEARCH~2.DLL"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2015-01-27 11:42:38 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-01-26 19:39:51 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2015-01-26 19:36:09 ----D---- C:\Users\Frederik\AppData\Roaming\Avira
2015-01-26 19:30:36 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2015-01-26 19:30:35 ----A---- C:\Windows\system32\drivers\avipbb.sys
2015-01-26 19:30:35 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2015-01-26 19:25:19 ----D---- C:\Program Files (x86)\Avira
2015-01-26 19:19:14 ----D---- C:\ProgramData\Avira
2015-01-26 15:44:35 ----D---- C:\zoek_backup
2015-01-26 14:29:54 ----D---- C:\Program Files\trend micro
2015-01-26 14:29:53 ----D---- C:\rsit
2015-01-24 11:26:59 ----A---- C:\Windows\system32\drivers\CLVirtualDrive.sys
2015-01-14 15:34:07 ----D---- C:\Windows\system32\log
2015-01-14 15:34:07 ----A---- C:\Windows\system32\drivers\iSafeNetFilter.sys
2015-01-14 15:34:07 ----A---- C:\Windows\system32\drivers\iSafeKrnlBoot.sys
2015-01-14 15:34:03 ----D---- C:\Program Files (x86)\Elex-tech
2015-01-14 15:34:02 ----D---- C:\Users\Frederik\AppData\Roaming\Elex-tech
2015-01-14 11:06:44 ----A---- C:\Windows\system32\profsvc.dll
2015-01-14 11:06:43 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-14 11:06:43 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-14 11:06:43 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 11:06:43 ----A---- C:\Windows\system32\nlaapi.dll
2015-01-14 11:06:43 ----A---- C:\Windows\system32\ncsi.dll
2015-01-14 11:06:43 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-01-14 11:06:43 ----A---- C:\Windows\system32\drivers\ahcache.sys
2015-01-14 11:06:42 ----A---- C:\Windows\SYSWOW64\wermgr.exe
2015-01-14 11:06:42 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2015-01-14 11:06:42 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2015-01-14 11:06:42 ----A---- C:\Windows\SYSWOW64\werdiagcontroller.dll
2015-01-14 11:06:42 ----A---- C:\Windows\SYSWOW64\wer.dll
2015-01-14 11:06:42 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2015-01-14 11:06:42 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-01-14 11:06:42 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-01-14 11:06:42 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-01-14 11:06:42 ----A---- C:\Windows\system32\wermgr.exe
2015-01-14 11:06:42 ----A---- C:\Windows\system32\WerFaultSecure.exe
2015-01-14 11:06:42 ----A---- C:\Windows\system32\WerFault.exe
2015-01-14 11:06:42 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-01-14 11:06:42 ----A---- C:\Windows\system32\wer.dll
2015-01-14 11:06:42 ----A---- C:\Windows\system32\Faultrep.dll
2015-01-14 11:06:42 ----A---- C:\Windows\system32\EncDump.dll
2015-01-14 11:06:42 ----A---- C:\Windows\system32\ci.dll
2015-01-14 11:06:42 ----A---- C:\Windows\system32\AudioSes.dll
2015-01-14 11:06:42 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-01-14 11:06:42 ----A---- C:\Windows\system32\AudioEng.dll
2015-01-14 11:06:42 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-01-14 11:06:42 ----A---- C:\Windows\system32\audiodg.exe
2015-01-14 11:06:41 ----A---- C:\Windows\system32\audiosrv.dll
2014-12-30 18:41:10 ----D---- C:\Program Files (x86)\Git
2014-12-30 15:40:02 ----D---- C:\MinGW
2014-12-30 10:15:30 ----D---- C:\Users\Frederik\AppData\Roaming\Subversion
2014-12-24 11:41:31 ----D---- C:\Users\Frederik\AppData\Roaming\WinZipper
2014-12-24 11:41:31 ----D---- C:\Program Files (x86)\WinZipper
2014-12-20 11:14:00 ----D---- C:\Program Files (x86)\Ralink Corporation
2014-12-20 11:06:42 ----A---- C:\Windows\system32\drivers\rtbth.sys
2014-12-17 21:56:25 ----D---- C:\Windows\Minidump
2014-12-16 22:56:52 ----D---- C:\EAGLE-7.2.0
2014-12-16 22:56:42 ----D---- C:\Users\Frederik\AppData\Roaming\CadSoft
2014-12-16 22:11:52 ----D---- C:\ProgramData\DesignSpark PCB
2014-12-16 22:09:37 ----D---- C:\Users\Frederik\AppData\Roaming\DesignSpark PCB
2014-12-16 22:09:37 ----D---- C:\Program Files (x86)\DesignSpark
2014-12-15 00:13:35 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-15 00:08:11 ----D---- C:\Windows\system32\appraiser
2014-12-13 19:34:17 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-12-13 19:34:17 ----A---- C:\Windows\system32\poqexec.exe
2014-12-12 14:24:04 ----D---- C:\Users\Frederik\AppData\Roaming\cabal
2014-12-11 19:13:35 ----A---- C:\Windows\SYSWOW64\DeviceSetupStatusProvider.dll
2014-12-11 19:13:35 ----A---- C:\Windows\system32\DeviceSetupStatusProvider.dll
2014-12-11 19:13:25 ----A---- C:\Windows\system32\crypt32.dll
2014-12-11 19:13:24 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-12-11 19:00:58 ----A---- C:\Windows\system32\invagent.dll
2014-12-11 19:00:58 ----A---- C:\Windows\system32\generaltel.dll
2014-12-11 19:00:58 ----A---- C:\Windows\system32\devinv.dll
2014-12-11 19:00:58 ----A---- C:\Windows\system32\appraiser.dll
2014-12-11 19:00:58 ----A---- C:\Windows\system32\aepic.dll
2014-12-11 19:00:58 ----A---- C:\Windows\system32\aeinv.dll
2014-12-11 19:00:57 ----A---- C:\Windows\system32\aepdu.dll
2014-12-11 19:00:50 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-11 19:00:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-11 19:00:50 ----A---- C:\Windows\system32\drivers\sdbus.sys
2014-12-11 19:00:50 ----A---- C:\Windows\system32\drivers\pdc.sys
2014-12-11 19:00:50 ----A---- C:\Windows\system32\drivers\intelpep.sys
2014-12-11 19:00:50 ----A---- C:\Windows\system32\drivers\dumpsd.sys
2014-12-11 19:00:48 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2014-12-11 19:00:48 ----A---- C:\Windows\system32\MrmCoreR.dll
2014-12-11 19:00:43 ----A---- C:\Windows\system32\mshtml.dll
2014-12-11 19:00:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-11 19:00:38 ----A---- C:\Windows\system32\ieframe.dll
2014-12-11 19:00:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-11 19:00:37 ----A---- C:\Windows\system32\jscript9.dll
2014-12-11 19:00:36 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-11 19:00:36 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-11 19:00:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-11 19:00:36 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-11 19:00:36 ----A---- C:\Windows\system32\wininet.dll
2014-12-11 19:00:36 ----A---- C:\Windows\system32\urlmon.dll
2014-12-11 19:00:36 ----A---- C:\Windows\system32\iertutil.dll
2014-12-11 19:00:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-11 19:00:35 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-11 19:00:35 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-11 19:00:34 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-12-11 19:00:34 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-11 19:00:34 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-11 19:00:34 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-11 19:00:34 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-12-11 19:00:34 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-11 19:00:34 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-11 19:00:34 ----A---- C:\Windows\system32\webcheck.dll
2014-12-11 19:00:34 ----A---- C:\Windows\system32\vbscript.dll
2014-12-11 19:00:34 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-11 19:00:34 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-11 19:00:34 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-11 19:00:34 ----A---- C:\Windows\system32\iepeers.dll
2014-12-11 19:00:34 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-11 19:00:34 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-11 19:00:34 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-11 19:00:33 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-12-11 19:00:33 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-12-11 19:00:33 ----A---- C:\Windows\system32\jscript.dll
2014-12-11 19:00:33 ----A---- C:\Windows\system32\inetcomm.dll
2014-12-09 18:33:48 ----D---- C:\Users\Frederik\AppData\Roaming\MathWorks
2014-12-09 18:23:51 ----D---- C:\ProgramData\MathWorks
2014-12-09 11:34:35 ----D---- C:\Program Files\MATLAB
2014-12-03 16:29:04 ----D---- C:\Program Files (x86)\Electronic Arts
2014-12-03 16:17:01 ----D---- C:\Program Files (x86)\BlueJ
2014-11-30 21:25:28 ----D---- C:\Program Files (x86)\Mendeley Desktop
2014-11-21 14:09:01 ----D---- C:\Users\Frederik\AppData\Roaming\ghc
2014-11-21 13:55:04 ----D---- C:\Program Files\Haskell Platform
2014-11-18 22:52:11 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-11-18 22:52:11 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-11-18 22:52:11 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-11-18 22:52:11 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-11-18 22:52:09 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-11-18 22:52:09 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-11-18 22:52:05 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-11-18 22:52:05 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-11-18 22:52:04 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-11-18 22:52:04 ----A---- C:\Windows\system32\xinput1_3.dll
2014-11-18 22:50:55 ----D---- C:\Program Files (x86)\Team Meat
2014-11-18 20:38:02 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-18 20:38:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-18 20:38:02 ----A---- C:\Windows\system32\pku2u.dll
2014-11-18 20:38:02 ----A---- C:\Windows\system32\kerberos.dll
2014-11-18 00:32:57 ----D---- C:\Program Files (x86)\Google
2014-11-16 23:15:10 ----D---- C:\Program Files (x86)\teraterm
2014-11-16 21:23:40 ----D---- C:\Users\Frederik\AppData\Roaming\Arduino
2014-11-16 21:16:49 ----A---- C:\Windows\SYSWOW64\ftd2xx.dll
2014-11-16 21:16:48 ----A---- C:\Windows\system32\ftserui2.dll
2014-11-16 21:16:48 ----A---- C:\Windows\system32\FTLang.dll
2014-11-16 21:16:48 ----A---- C:\Windows\system32\ftd2xx.dll
2014-11-16 21:16:48 ----A---- C:\Windows\system32\ftcserco.dll
2014-11-16 21:16:48 ----A---- C:\Windows\system32\ftbusui.dll
2014-11-16 21:16:48 ----A---- C:\Windows\system32\drivers\ftser2k.sys
2014-11-16 21:16:48 ----A---- C:\Windows\system32\drivers\ftdibus.sys
2014-11-16 20:25:59 ----D---- C:\Program Files (x86)\Arduino
2014-11-15 23:14:03 ----D---- C:\ProgramData\EA Core
2014-11-15 23:05:40 ----RA---- C:\Windows\SYSWOW64\vp6vfw.dll
2014-11-14 13:53:39 ----D---- C:\Program Files (x86)\WinHugs
2014-11-13 20:47:26 ----D---- C:\Users\Frederik\AppData\Roaming\Notepad++
2014-11-13 20:47:26 ----D---- C:\Program Files (x86)\Notepad++
2014-11-13 18:45:28 ----A---- C:\Windows\system32\actxprxy.dll
2014-11-13 18:45:27 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-13 18:45:27 ----A---- C:\Windows\system32\ieui.dll
2014-11-13 18:45:26 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-13 18:45:26 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-13 18:45:25 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-13 18:45:25 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-13 18:45:23 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-13 18:45:23 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-11-13 18:45:23 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-11-13 18:45:23 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-13 18:45:23 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-11-13 18:45:23 ----A---- C:\Windows\SYSWOW64\hlink.dll
2014-11-13 18:45:23 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-11-13 18:45:23 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-11-13 18:45:23 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 18:45:23 ----A---- C:\Windows\system32\inseng.dll
2014-11-13 18:45:23 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-13 18:45:23 ----A---- C:\Windows\system32\iesysprep.dll
2014-11-13 18:45:23 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-13 18:45:23 ----A---- C:\Windows\system32\hlink.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\url.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-13 18:45:22 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\wextract.exe
2014-11-13 18:45:22 ----A---- C:\Windows\system32\url.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\pngfilt.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\occache.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\msrating.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\mshta.exe
2014-11-13 18:45:22 ----A---- C:\Windows\system32\msfeedssync.exe
2014-11-13 18:45:22 ----A---- C:\Windows\system32\licmgr10.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\imgutil.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\iexpress.exe
2014-11-13 18:45:22 ----A---- C:\Windows\system32\iesetup.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\iernonce.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-13 18:45:22 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-11-13 18:45:14 ----A---- C:\Windows\system32\rdpcorets.dll
2014-11-13 18:45:13 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-13 18:45:12 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-13 18:45:12 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-11-13 18:45:12 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-13 18:45:12 ----A---- C:\Windows\system32\rfxvmt.dll
2014-11-13 18:45:12 ----A---- C:\Windows\system32\rdpudd.dll
2014-11-13 18:45:12 ----A---- C:\Windows\system32\msaudite.dll
2014-11-13 18:45:12 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-11-13 18:45:12 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-13 18:45:12 ----A---- C:\Windows\system32\drivers\cng.sys
2014-11-13 18:45:12 ----A---- C:\Windows\system32\certcli.dll
2014-11-13 18:45:12 ----A---- C:\Windows\system32\adtschema.dll
2014-11-13 18:45:09 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-11-13 18:45:09 ----A---- C:\Windows\system32\user32.dll
2014-11-13 18:45:09 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2014-11-13 18:45:08 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2014-11-13 18:45:08 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2014-11-13 18:45:07 ----A---- C:\Windows\SYSWOW64\winshfhc.dll
2014-11-13 18:45:07 ----A---- C:\Windows\system32\winshfhc.dll
2014-11-13 18:44:59 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-13 18:44:59 ----A---- C:\Windows\system32\msxml3.dll
2014-11-13 18:44:54 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-13 18:44:54 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2014-11-13 18:44:54 ----A---- C:\Windows\system32\schannel.dll
2014-11-13 18:44:54 ----A---- C:\Windows\system32\ncryptsslp.dll
2014-11-13 18:44:54 ----A---- C:\Windows\system32\dpapisrv.dll
2014-11-13 18:44:51 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-13 18:44:51 ----A---- C:\Windows\system32\win32k.sys
2014-11-13 18:44:51 ----A---- C:\Windows\system32\packager.dll
2014-11-13 18:44:48 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-13 18:44:48 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-13 18:44:35 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-11-13 18:44:35 ----A---- C:\Windows\system32\rastls.dll
2014-11-13 18:44:33 ----A---- C:\Windows\system32\msi.dll
2014-11-13 18:44:31 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-13 18:44:31 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-11-13 18:44:31 ----A---- C:\Windows\system32\msihnd.dll
2014-11-13 18:44:31 ----A---- C:\Windows\system32\authui.dll
2014-11-13 18:44:30 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-11-13 18:44:30 ----A---- C:\Windows\system32\consent.exe
2014-11-13 18:44:30 ----A---- C:\Windows\system32\appinfo.dll
2014-11-13 18:44:23 ----A---- C:\Windows\system32\wuaueng.dll
2014-11-13 18:44:22 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-11-13 18:44:22 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-11-13 18:44:22 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-11-13 18:44:22 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-11-13 18:44:22 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-11-13 18:44:22 ----A---- C:\Windows\system32\wuwebv.dll
2014-11-13 18:44:22 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-11-13 18:44:22 ----A---- C:\Windows\system32\wups2.dll
2014-11-13 18:44:22 ----A---- C:\Windows\system32\wups.dll
2014-11-13 18:44:22 ----A---- C:\Windows\system32\wudriver.dll
2014-11-13 18:44:22 ----A---- C:\Windows\system32\wucltux.dll
2014-11-13 18:44:22 ----A---- C:\Windows\system32\wuauclt.exe
2014-11-13 18:44:22 ----A---- C:\Windows\system32\wuapp.exe
2014-11-13 18:44:22 ----A---- C:\Windows\system32\wuapi.dll
2014-11-13 18:44:22 ----A---- C:\Windows\system32\wuaext.dll
2014-11-13 18:44:14 ----A---- C:\Windows\system32\shell32.dll
2014-11-13 18:44:13 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-11-13 18:44:11 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-11-13 18:44:09 ----A---- C:\Windows\system32\SettingsHandlers.dll
2014-11-13 18:44:08 ----A---- C:\Windows\system32\twinui.dll
2014-11-13 18:44:07 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2014-11-13 18:44:07 ----A---- C:\Windows\system32\MFMediaEngine.dll
2014-11-13 18:44:07 ----A---- C:\Windows\system32\localspl.dll
2014-11-13 18:44:07 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-11-13 18:44:06 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-11-13 18:44:05 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2014-11-13 18:44:05 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2014-11-13 18:44:04 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-11-13 18:44:04 ----A---- C:\Windows\system32\WsmSvc.dll
2014-11-13 18:44:04 ----A---- C:\Windows\system32\drivers\netio.sys
2014-11-13 18:44:03 ----A---- C:\Windows\system32\win32spl.dll
2014-11-13 18:44:03 ----A---- C:\Windows\system32\puiobj.dll
2014-11-13 18:44:02 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2014-11-13 18:44:02 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-11-13 18:44:01 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-11-13 18:44:01 ----A---- C:\Windows\system32\untfs.dll
2014-11-13 18:44:01 ----A---- C:\Windows\system32\FXSCOMEX.dll
2014-11-13 18:44:01 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-11-13 18:44:00 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2014-11-13 18:44:00 ----A---- C:\Windows\system32\winbici.dll
2014-11-13 18:44:00 ----A---- C:\Windows\system32\FXSAPI.dll

======List of files/folders modified in the last 3 months======

2032-09-21 04:16:09 ----D---- C:\Windows\system32\Sysprep
2015-02-02 20:26:52 ----D---- C:\Windows\Temp
2015-02-02 20:26:49 ----D---- C:\Users\Frederik\AppData\Roaming\uTorrent
2015-02-02 20:00:01 ----D---- C:\Windows\system32\sru
2015-02-02 19:53:16 ----RD---- C:\Windows\System32
2015-02-02 19:53:16 ----D---- C:\Windows\Inf
2015-02-02 19:53:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-02 19:52:21 ----D---- C:\Windows\Prefetch
2015-02-01 17:38:49 ----D---- C:\Windows\Tasks
2015-02-01 17:38:49 ----D---- C:\Windows\system32\Tasks
2015-02-01 17:36:42 ----D---- C:\Windows\AppReadiness
2015-02-01 11:00:22 ----D---- C:\Windows\Microsoft.NET
2015-01-30 08:55:32 ----D---- C:\Windows\system32\config
2015-01-30 08:53:15 ----D---- C:\Windows\system32\DriverStore
2015-01-30 08:26:23 ----D---- C:\Windows\WinSxS
2015-01-29 17:35:02 ----D---- C:\Windows\system32\catroot2
2015-01-29 17:34:21 ----D---- C:\Windows
2015-01-29 17:34:09 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-29 12:20:51 ----RD---- C:\Program Files (x86)
2015-01-29 10:26:00 ----SHD---- C:\System Volume Information
2015-01-29 09:04:13 ----HD---- C:\Program Files\WindowsApps
2015-01-28 09:38:14 ----D---- C:\Windows\CbsTemp
2015-01-27 00:10:29 ----HD---- C:\ProgramData
2015-01-26 23:43:36 ----D---- C:\Windows\system32\NDF
2015-01-26 19:39:51 ----D---- C:\Windows\system32\drivers
2015-01-26 19:25:49 ----SHD---- C:\Windows\Installer
2015-01-26 19:25:20 ----D---- C:\Windows\SysWOW64
2015-01-26 19:19:06 ----D---- C:\ProgramData\Package Cache
2015-01-26 18:12:13 ----D---- C:\Windows\system32\wbem
2015-01-26 18:08:47 ----D---- C:\Program Files\Windows Defender
2015-01-26 18:08:30 ----D---- C:\Windows\system32\drivers\etc
2015-01-26 18:08:28 ----RD---- C:\Program Files
2015-01-26 17:49:44 ----D---- C:\Windows\registration
2015-01-26 17:38:07 ----D---- C:\Windows\Logs
2015-01-26 15:36:27 ----D---- C:\ProgramData\McAfee
2015-01-26 15:32:58 ----D---- C:\Program Files\Common Files
2015-01-26 15:32:55 ----D---- C:\Program Files (x86)\McAfee
2015-01-26 15:32:55 ----D---- C:\Program Files (x86)\Common Files
2015-01-26 15:08:24 ----HD---- C:\Windows\ELAMBKUP
2015-01-26 14:11:31 ----D---- C:\Users\Frederik\AppData\Roaming\CyberLink
2015-01-24 11:26:59 ----DC---- C:\Windows\system32\DRVSTORE
2015-01-24 11:26:59 ----D---- C:\Windows\system32\catroot
2015-01-24 11:25:20 ----D---- C:\Program Files (x86)\CyberLink
2015-01-24 11:22:49 ----D---- C:\SWSetup
2015-01-24 10:53:48 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2015-01-16 17:22:04 ----D---- C:\Windows\system32\CodeIntegrity
2015-01-14 14:11:05 ----D---- C:\Windows\system32\MRT
2015-01-14 14:00:45 ----A---- C:\Windows\system32\MRT.exe
2015-01-10 16:50:49 ----D---- C:\ProgramData\Origin
2014-12-31 12:14:31 ----N---- C:\Windows\system32\MpSigStub.exe
2014-12-26 16:25:34 ----RSD---- C:\Windows\assembly
2014-12-26 14:31:59 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-12-26 14:30:55 ----D---- C:\Program Files\Microsoft Office 15
2014-12-16 22:10:00 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-12-16 17:04:45 ----D---- C:\Windows\rescache
2014-12-15 00:08:15 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-12-15 00:08:14 ----D---- C:\Windows\system32\sr-Latn-RS
2014-12-15 00:08:14 ----D---- C:\Windows\system32\sr-Latn-CS
2014-12-15 00:08:14 ----D---- C:\Windows\system32\nl-NL
2014-12-15 00:08:12 ----SD---- C:\Windows\system32\CompatTel
2014-12-15 00:08:10 ----SD---- C:\ProgramData\Microsoft
2014-12-15 00:08:03 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-15 00:08:01 ----D---- C:\Program Files\Internet Explorer
2014-12-15 00:07:50 ----D---- C:\Windows\PolicyDefinitions
2014-11-22 13:32:40 ----D---- C:\Program Files (x86)\Hewlett-Packard
2014-11-20 13:18:01 ----D---- C:\Program Files (x86)\Origin
2014-11-19 13:48:46 ----SD---- C:\Users\Frederik\AppData\Roaming\Microsoft
2014-11-16 23:15:12 ----RSD---- C:\Windows\Fonts
2014-11-15 22:41:35 ----D---- C:\Program Files (x86)\Origin Games
2014-11-13 21:29:23 ----RD---- C:\Windows\ToastData
2014-11-13 21:29:19 ----RD---- C:\Windows\ImmersiveControlPanel
2014-11-13 21:29:16 ----D---- C:\Windows\apppatch
2014-11-13 21:29:09 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-13 21:29:02 ----D---- C:\Windows\MediaViewer
2014-11-13 21:29:01 ----D---- C:\Windows\Camera
2014-11-13 21:29:00 ----D---- C:\Windows\FileManager
2014-11-13 21:28:42 ----D---- C:\Windows\SYSWOW64\migration
2014-11-13 21:28:34 ----D---- C:\Windows\system32\migration
2014-11-13 17:26:37 ----D---- C:\Windows\Hewlett-Packard
2014-11-13 17:22:49 ----D---- C:\ProgramData\CyberLink
2014-11-13 16:47:52 ----D---- C:\ProgramData\Xilinx
2014-11-13 14:56:44 ----D---- C:\Xilinx
2014-11-13 14:50:36 ----D---- C:\Users\Frederik\AppData\Roaming\Xilinx

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem1.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\Windows\System32\drivers\amdkmpfd.sys [2013-05-22 36096]
R0 hpdskflt;@oem14.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2013-07-23 30520]
R0 NIPALK;NIPALK; C:\Windows\System32\drivers\nipalk.sys [2014-06-05 773464]
R0 nipbcfk;National Instruments Class Upper Filter Driver; C:\Windows\System32\drivers\nipbcfk.sys [2014-02-28 19288]
R0 nipxibaf;National Instruments PXI Bridge Access Driver; C:\Windows\System32\drivers\nipxibaf.sys [2014-06-12 89992]
R0 nipxibrc;National Instruments PXI Bridge Configuration Driver; C:\Windows\System32\drivers\nipxibrc.sys [2014-05-16 70336]
R0 nischifk;NI SoftCore Chinch Filter Driver; C:\Windows\System32\Drivers\nischifk.sys [2014-06-11 66936]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2014-11-24 131608]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2014-11-24 28600]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2013-11-12 91912]
R1 iSafeKrnl;YAC Mini-Filter Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [2015-01-14 249000]
R1 iSafeKrnlKit;YAC Kit Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [2015-01-14 99496]
R1 iSafeKrnlMon;YAC Monitor Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [2015-01-14 42152]
R1 iSafeKrnlR3;YAC Ring3 Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [2015-01-14 93352]
R1 iSafeNetFilter;YAC NDIS Driver; C:\Windows\system32\DRIVERS\iSafeNetFilter.sys [2015-01-03 52392]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-19 59648]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2014-11-24 119272]
R2 nipxirmk;nipxirmk; \??\C:\Windows\system32\drivers\nipxirmkl.sys [2014-01-09 15184]
R2 nistreamk;nistreamk; C:\Windows\system32\drivers\nistreamkl.sys [2014-06-04 24912]
R2 NiViPxiK;NI-VISA PXI Driver; C:\Windows\System32\drivers\NiViPxiKl.sys [2014-06-13 15200]
R3 Accelerometer;@oem14.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2013-07-23 43320]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-09-26 12533760]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-09-26 619008]
R3 AtiHDAudioService;@oem41.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdWB6.sys [2014-06-22 222720]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\Windows\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy-stuurprogramma; C:\Windows\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth-apparaat (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@Bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 clwvd;@oem16.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2013-03-05 41408]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-08-21 3591000]
R3 netr28x;@oem20.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2014-03-29 2510536]
R3 nidimk;nidimk; \??\C:\Windows\system32\drivers\nidimkl.sys [2014-03-12 15200]
R3 nimdbgk;nimdbgk; \??\C:\Windows\system32\drivers\nimdbgkl.sys [2014-03-12 15200]
R3 nimxdfk;nimxdfk; \??\C:\Windows\system32\drivers\nimxdfkl.sys [2014-03-13 15184]
R3 NiViPciK;NI-VISA PCI Driver; C:\Windows\System32\drivers\NiViPciKl.sys [2014-06-13 15200]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2014-01-27 167424]
R3 RSP2STOR;@oem6.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2013-07-05 290008]
R3 rtbth;@oem10.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\Windows\System32\drivers\rtbth.sys [2014-12-20 1205872]
R3 RTL8168;@oem8.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-08-15 830680]
R3 SynTP;@oem5.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-07-26 524016]
S3 BTHPORT;@Bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem21.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 FTDIBUS;@oem54.inf,%SvcDesc%;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2014-09-09 98160]
S3 FTSER2K;@oem55.inf,%SvcDesc%;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2014-09-09 79872]
S3 iSafeKrnlBoot;YAC Boot Driver; C:\Windows\system32\DRIVERS\iSafeKrnlBoot.sys [2015-01-14 45224]
S3 NationalInstrumentsUSBLAN;@oem39.inf,%BTCUsbLan.Service.DispName%;NationalInstrumentsUSBLAN; C:\Windows\system32\DRIVERS\btblan.sys [2014-01-15 78168]
S3 ni1045k;NI PXI-1045 Chassis Pilot; \??\C:\Windows\system32\drivers\ni1045kl.sys [2014-05-16 12984]
S3 ni1065k;NI PXIe-1065 Chassis Pilot; \??\C:\Windows\system32\drivers\ni1065k.sys [2014-05-16 30032]
S3 niimaqdxk;niimaqdxk; C:\Windows\system32\drivers\niimaqdxkl.sys [2013-06-24 15160]
S3 niimaqk;NI-IMAQ Driver; C:\Windows\system32\drivers\niimaqk.sys []
S3 niorbk;niorbk; \??\C:\Windows\system32\drivers\niorbkl.sys [2014-03-12 15184]
S3 nipalfwedl;nipalfwedl; C:\Windows\System32\drivers\nipalfwedl.sys [2014-06-05 15232]
S3 nipalusbedl;nipalusbedl; C:\Windows\System32\drivers\nipalusbedl.sys [2014-06-05 15224]
S3 nipxifpk;NI PXI Forwarding Chassis Pilot; \??\C:\Windows\system32\drivers\nipxifpk.sys [2013-09-10 37272]
S3 nipxigpk;NI PXI Generic Chassis Pilot; \??\C:\Windows\system32\drivers\nipxigpk.sys [2011-08-09 22680]
S3 niwdk;niwdk; C:\Windows\system32\drivers\niwdk.sys []
S3 RtlWlanu;@netrtwlanu.inf,%RtlWlanu.DeviceDesc.DispName%;Realtek draadloze LAN 802.11n USB 2.0-netwerkadapter; C:\Windows\system32\DRIVERS\rtwlanu.sys [2013-07-31 1975000]
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2013-07-26 30448]
S3 SmbDrvI;SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [2013-07-26 34544]
S3 ssudmdm;@oem22.inf,%ssud.Service.Name%;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-09-26 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-12-11 344064]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2014-11-24 431920]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2014-11-24 431920]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2013-08-22 37768]
R2 Avira.OE.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [2015-01-19 182520]
R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 Cachedrv server; HP SimplePass Cachedrv Service; C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe [2013-10-14 109568]
R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-11-12 2449592]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpsrv;@oem14.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 iSafeService;YAC Service; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [2015-01-14 120128]
R2 LkCitadelServer;NI Citadel 4 Service; C:\Windows\SysWOW64\lkcitdl.exe [2014-01-14 695136]
R2 mxssvr;NI Configuration Manager; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [2014-06-07 84280]
R2 NIApplicationWebServer;NI Application Web Server; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2014-06-10 57184]
R2 niauth;NI Authentication Service; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [2014-06-20 569152]
R2 NIDomainService;NI Domain Service; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [2014-06-09 394544]
R2 niLXIDiscovery;NI LXI Discovery Service; C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [2014-06-13 383352]
R2 nimDNSResponder;NI mDNS Responder Service; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2014-06-06 320368]
R2 NINetworkDiscovery;NI Network Discovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [2014-06-19 177536]
R2 nipxirmu;NI PXI Resource Manager; C:\Windows\SysWOW64\nipxism.exe [2014-01-09 20816]
R2 NiSvcLoc;NI Service Locator; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [2014-06-06 89928]
R2 NISystemWebServer;NI System Web Server; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [2014-06-10 57168]
R2 omniserv; HP SimplePass Service; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [2013-10-14 87552]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-06-19 246488]
R2 TBSrv;Toolbar Service; C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe [2014-04-10 350528]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-09-10 1129760]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-18 107912]
S2 HPWMISVC;HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [2014-10-09 569608]
S2 lkTimeSync;NI Time Synchronization; C:\Windows\SysWOW64\lktsrv.exe [2014-06-09 63280]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-24 267440]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-08-10 50784]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-06-09 1471352]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-23 43696]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-18 107912]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-12 136120]
S3 lkClassAds;NI PSP Service Locator; C:\Windows\SysWOW64\lkads.exe [2014-06-09 53032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-27 114800]
S3 NILM License Manager;NI License Server; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [2010-08-02 1427688]
S3 NiRioRpc;NI-RIO Server; C:\Windows\SysWOW64\NiRioRpc.exe [2014-07-30 39232]
S3 NITaggerService;NI Variable Engine; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [2013-06-15 687944]
S3 OpcEnum;OpcEnum; C:\Windows\SysWOW64\Opcenum.exe [2013-05-21 172832]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2014-11-14 1900400]
S3 ose;Office  Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-02-01 150600]
S3 Sony SCSI Helper Service;Sony SCSI Helper Service; C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [2014-04-25 73728]
S4 NIApplicationWebServer64;NI Application Web Server (64-bit); C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2014-06-10 80736]

-----------------EOF-----------------
 

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Je Java software is verouderd.

Oudere versies hebben lekken die malware de kans geeft om zich te installeren op je systeem.

Ga naar Java en download daar de correcte Java versie.

  • Klik op "Gratis Java-download".
  • Ga akkoord met de licentiebepalingen en klik op de button voor de gratis download.
  • Het bestand JavaSetup wordt aangeboden - kies hier voor "bestand opslaan".
  • Sluit alle programma's die eventueel open zijn - zeker je web browser!
  • Ga dan naar Start > Configuratiescherm > Software en verwijder alle oudere versies van Java uit de Softwarelijst.
  • Vink alles aan met Java Runtime Environment (JRE of J2SE of JAVA) in de naam.
  • Klik dan op Verwijderen of op de Wijzig/Verwijder knop.
  • Herhaal dit tot alle oudere versies verdwenen zijn.
  • Na het verwijderen van alle oudere versies, herstart je pc.
  • Klik vervolgens op JavaSetup om de nieuwste versie van Java te installeren.
  • Vink de installatie van de Ask toolbar uit en ga dan verder met de installatie.

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
{31264a33-a653-46c4-af49-1232c59a7da5};c
C:\Users\Frederik\AppData\LocalLow\BS_Player_ControlBar_B;fs
{8dcb7100-df86-4384-8842-8fa844297b3f};c
C:\Program Files (x86)\Microsoft\BingBar;fs
Winzipersvc;s
C:\Program Files (x86)\WinZipper;fs
C:\Users\Frederik\AppData\Roaming\Mozilla\Firefox\Profiles\hivvha4l.default\extensions\{31264a33-a653-46c4-af49-1232c59a7da5};fs
C:\Users\Frederik\AppData\Roaming\Mozilla\Firefox\Profiles\hivvha4l.default\searchplugins\V9.xml;f
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264a33-a653-46c4-af49-1232c59a7da5}];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}];r64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r64
""=-;r64
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
"AppInit_DLLs"=-;r64
C:\zoek_backup;fs
C:\Users\Frederik\AppData\Roaming\WinZipper;fs
emptyfolderscheck;delete
startupall;
filesrcm;
  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Deep Scan
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.
Zoek.exe logbestand plaatsen
  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.