Brejen
-
Items
305 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door Brejen
-
Sorry, het gaat over word 2010. Daar ziet het optiescherm er iets anders uit. Het vinkje waar je het over hebt zie ik daar niet. Waar kan ik het vinden in de versie 2010?
-
wanneer ik vroeger word opstartte stond mijn scherm standaard op tabblad 'start'; Nu start dat telkens op in tabblad 'bestand'. voor elke bewerking opnieuw moet ik op tabblad 'start' drukken. dat verdwijnt echter steeds weer opnieuw. Moet ik ergens een instelling veranderen om dit op te lossen?
-
het probleem is inderdaad opgelost. Bedankt;
-
in bijlage het gevraagde logje zoek-results.log
-
Logfile of random's system information tool 1.09 (written by random/random) Run by Erik Vanhoof 1 at 2013-11-22 16:23:05 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 401 GB (86%) free of 468 GB Total RAM: 8174 MB (58% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:23:20, on 22/11/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16736) Boot mode: Normal Running processes: C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files\trend micro\Erik Vanhoof 1.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = AARTEMIS R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = {searchTerms - Yahoo Search Results} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = {searchTerms - Yahoo Search Results} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = AARTEMIS R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [suiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [LaCie Ethernet Agent Startup] C:\Program Files (x86)\LaCie\Network Assistant\LaCie Network Assistant.exe O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe O4 - HKUS\S-1-5-18\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user') O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\OFFICE11\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing) O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\Windows\system32\dgdersvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: USBS3S4Detection - Unknown owner - C:\OEM\USBDECTION\USBS3S4Detection.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 11547 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe C:\PROGRA~2\AVG\AVG2014\avgrsa.exe /boot C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=18d9113a-f7d4-4744-95d8-ff63545b0b01 /coreSdkOptions=4364 /logConfFile="C:\Windows\TEMP\c1a7ce08-83a1-4c74-9553-82309219be15-1e8-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe winlogon.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe" "C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe" C:\Windows\system32\nvvsvc.exe -session -first "C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe" "C:\Program Files\Bonjour\mDNSResponder.exe" crypserv.exe C:\Windows\system32\dgdersvc.exe "C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe" /DisableUI "C:\Program Files (x86)\Acer\Registration\GREGsvc.exe" "C:\Program Files\Acer\Acer Updater\UpdaterService.exe" "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe" "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe" C:\Windows\system32\svchost.exe -k imgsvc C:\OEM\USBDECTION\USBS3S4Detection.exe "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe" WLIDSvcM.exe 1364 "C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE" "taskhost.exe" taskeng.exe {67720D52-E4ED-4875-B8D1-5D3CB42FAD25} "C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe" "C:\Program Files (x86)\AVG\AVG2014\avgemca.exe" "C:\Windows\system32\Dwm.exe" "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s "C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" "C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe" "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY "C:\Program Files (x86)\iTunes\iTunesHelper.exe" "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" taskeng.exe {4EE3ED1D-C983-45A1-B998-C056AEEA225A} "C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe" "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" "C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\iPod\bin\iPodService.exe" C:\Windows\system32\svchost.exe -k bthsvcs C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files\Windows Media Player\wmpnetwk.exe" "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-80eb5a1d-d52e-4643-b1a0-dec5a2c141dc -SystemEventPortName:HostProcess-d38e6d2b-e561-478c-a270-dcd5b7e14806 -IoCancelEventPortName:HostProcess-a4a5dce0-6aef-4a77-82c6-5fe7e4537417 -NonStateChangingEventPortName:HostProcess-a97504f7-5ec2-427c-bbe6-27a42db2d26f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3f23173e-0cf9-4b5c-a458-799aa79e2460 -DeviceGroupId:WpdFsGroup "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\Nero\Update\NASvc.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe" "C:\Windows\system32\wuauclt.exe" "C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe" -scan -tt_on C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=487dda04-1233-4c74-9aeb-533021757805 /coreSdkOptions=4096 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\a7200c44-f352-4573-86a0-ff5d13ada444-f34-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\" C:\Windows\splwow64.exe 8192 C:\Windows\system32\msiexec.exe /V Explorer.exe C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=c2290231-5492-4523-bde2-430c7a2ab818 /coreSdkOptions=4096 /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\" /logPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\log\" "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe15_ Global\UsGthrCtrlFltPipeMssGthrPipe15 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544 "C:\Program Files\Internet Explorer\iexplore.exe" artemis.com "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:6684 CREDAT:267521 /prefetch:2 C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe -Embedding "C:\Users\Erik Vanhoof 1\Desktop\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-11-30 11660904] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "LaCie Ethernet Agent Startup"=C:\Program Files (x86)\LaCie\Network Assistant\LaCie Network Assistant.exe [2009-10-16 5722112] "KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2010-10-13 3366200] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-09-28 340336] "EgisTecPMMUpdate"=C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-09-18 407920] "EgisUpdate"=C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-09-18 201584] "Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056] "IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2010-11-05 283160] "ArcadeMovieService"=C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [2011-05-13 177448] "Hotkey Utility"=C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2011-01-19 620136] "AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2013-10-07 4908592] "APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720] "iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-05-31 152392] "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888] "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 1 month====== 2013-11-22 16:15:35 ----SHD---- C:\Config.Msi 2013-11-22 15:31:54 ----D---- C:\Windows\CD09642E061D4844BA37ED1480916404.TMP 2013-11-22 13:29:32 ----D---- C:\ProgramData\Labcenter Electronics 2013-11-20 18:54:54 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\Nero 2013-11-19 15:04:24 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\vlc 2013-11-17 15:25:17 ----D---- C:\Program Files\SAMSUNG 2013-11-17 14:41:14 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\Samsung 2013-11-16 17:46:42 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\PowerCinema 2013-11-16 15:48:38 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2013-11-16 15:43:20 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\WinRAR 2013-11-16 14:30:32 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\AVG2014 2013-11-16 14:30:27 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\OEM 2013-11-16 14:30:27 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\Macromedia 2013-11-16 14:30:27 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\Intel Corporation 2013-11-16 14:30:27 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\Apple Computer 2013-11-16 14:30:20 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\CyberLink 2013-11-16 14:30:16 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\Adobe 2013-11-16 14:30:10 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\Identities 2013-11-16 14:30:03 ----SD---- C:\Users\Erik Vanhoof 1\AppData\Roaming\Microsoft 2013-11-16 14:30:03 ----D---- C:\Users\Erik Vanhoof 1\AppData\Roaming\Media Center Programs 2013-11-14 20:48:51 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-11-14 20:48:51 ----A---- C:\Windows\system32\ieui.dll 2013-11-14 20:48:50 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe 2013-11-14 20:48:50 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2013-11-14 20:48:50 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2013-11-14 20:48:50 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-11-14 20:48:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2013-11-14 20:48:50 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-14 20:48:50 ----A---- C:\Windows\system32\iesysprep.dll 2013-11-14 20:48:50 ----A---- C:\Windows\system32\iesetup.dll 2013-11-14 20:48:50 ----A---- C:\Windows\system32\iernonce.dll 2013-11-14 20:48:50 ----A---- C:\Windows\system32\ie4uinit.exe 2013-11-14 20:48:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-11-14 20:48:49 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-11-14 20:48:49 ----A---- C:\Windows\system32\msfeeds.dll 2013-11-14 20:48:49 ----A---- C:\Windows\system32\jscript.dll 2013-11-14 20:48:49 ----A---- C:\Windows\system32\iertutil.dll 2013-11-14 20:48:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-11-14 20:48:48 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-11-14 20:48:48 ----A---- C:\Windows\system32\urlmon.dll 2013-11-14 20:48:48 ----A---- C:\Windows\system32\jscript9.dll 2013-11-14 20:48:47 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-11-14 20:48:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-11-14 20:48:47 ----A---- C:\Windows\system32\wininet.dll 2013-11-14 20:48:47 ----A---- C:\Windows\system32\jsproxy.dll 2013-11-14 20:48:46 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-11-14 20:48:46 ----A---- C:\Windows\system32\ieframe.dll 2013-11-14 20:48:45 ----A---- C:\Windows\system32\mshtml.dll 2013-11-14 20:48:44 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-11-14 15:05:34 ----SHD---- C:\$RECYCLE.BIN 2013-11-14 14:51:27 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2013-11-14 14:51:27 ----A---- C:\Windows\system32\crypt32.dll 2013-11-14 14:51:25 ----A---- C:\Windows\system32\drivers\afd.sys 2013-11-14 14:51:25 ----A---- C:\Windows\system32\authui.dll 2013-11-14 14:51:24 ----A---- C:\Windows\zip.exe 2013-11-14 14:51:24 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll 2013-11-14 14:51:24 ----A---- C:\Windows\SYSWOW64\credui.dll 2013-11-14 14:51:24 ----A---- C:\Windows\SYSWOW64\authui.dll 2013-11-14 14:51:24 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll 2013-11-14 14:51:24 ----A---- C:\Windows\system32\credui.dll 2013-11-14 14:51:24 ----A---- C:\Windows\SWSC.exe 2013-11-14 14:51:24 ----A---- C:\Windows\SWREG.exe 2013-11-14 14:51:24 ----A---- C:\Windows\sed.exe 2013-11-14 14:51:24 ----A---- C:\Windows\PEV.exe 2013-11-14 14:51:24 ----A---- C:\Windows\NIRCMD.exe 2013-11-14 14:51:24 ----A---- C:\Windows\MBR.exe 2013-11-14 14:51:24 ----A---- C:\Windows\grep.exe 2013-11-14 14:51:21 ----A---- C:\Windows\SYSWOW64\schannel.dll 2013-11-14 14:51:21 ----A---- C:\Windows\system32\schannel.dll 2013-11-14 14:51:21 ----A---- C:\Windows\system32\lsasrv.dll 2013-11-14 14:51:21 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2013-11-14 14:51:21 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2013-11-14 14:51:21 ----A---- C:\Windows\system32\drivers\cng.sys 2013-11-14 14:51:20 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2013-11-14 14:51:20 ----A---- C:\Windows\SYSWOW64\secur32.dll 2013-11-14 14:51:20 ----A---- C:\Windows\system32\sspicli.dll 2013-11-14 14:51:19 ----A---- C:\Windows\SYSWOW64\ncrypt.dll 2013-11-14 14:51:19 ----A---- C:\Windows\system32\sspisrv.dll 2013-11-14 14:51:19 ----A---- C:\Windows\system32\secur32.dll 2013-11-14 14:51:19 ----A---- C:\Windows\system32\ncrypt.dll 2013-11-14 14:51:19 ----A---- C:\Windows\system32\lsass.exe 2013-11-14 14:51:12 ----A---- C:\Windows\SYSWOW64\gdi32.dll 2013-11-14 14:51:12 ----A---- C:\Windows\system32\gdi32.dll 2013-11-14 14:51:09 ----A---- C:\Windows\system32\IKEEXT.DLL 2013-11-14 14:51:08 ----A---- C:\Windows\SYSWOW64\nshwfp.dll 2013-11-14 14:51:08 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL 2013-11-14 14:51:08 ----A---- C:\Windows\system32\nshwfp.dll 2013-11-14 14:51:08 ----A---- C:\Windows\system32\FWPUCLNT.DLL 2013-11-14 14:50:23 ----D---- C:\Qoobox 2013-11-14 14:49:44 ----D---- C:\Windows\erdnt 2013-11-13 16:20:59 ----D---- C:\ProgramData\HitmanPro 2013-11-13 16:02:57 ----D---- C:\ProgramData\Malwarebytes 2013-11-13 15:49:33 ----D---- C:\AdwCleaner 2013-11-12 15:40:21 ----D---- C:\Windows\Temp 2013-11-12 15:36:51 ----D---- C:\zoek 2013-11-11 17:55:21 ----D---- C:\Windows\MSApps 2013-11-11 15:13:29 ----D---- C:\zoek_backup 2013-11-11 14:33:54 ----D---- C:\rsit 2013-11-11 14:33:54 ----D---- C:\Program Files\trend micro 2013-10-31 12:16:34 ----A---- C:\Windows\SYSWOW64\javaws.exe 2013-10-31 12:16:32 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll 2013-10-31 12:16:32 ----A---- C:\Windows\SYSWOW64\javaw.exe 2013-10-31 12:16:32 ----A---- C:\Windows\SYSWOW64\java.exe ======List of files/folders modified in the last 1 month====== 2013-11-22 16:17:19 ----SHD---- C:\System Volume Information 2013-11-22 16:15:51 ----D---- C:\Windows\system32\drivers 2013-11-22 16:15:39 ----SHD---- C:\Windows\Installer 2013-11-22 16:15:39 ----D---- C:\Windows\system32\Tasks 2013-11-22 15:31:54 ----D---- C:\Windows 2013-11-22 15:26:55 ----A---- C:\Windows\SYSWOW64\log.txt 2013-11-22 15:23:24 ----D---- C:\ProgramData\NVIDIA 2013-11-22 15:22:14 ----D---- C:\Windows\system32\config 2013-11-22 15:06:06 ----RD---- C:\Program Files (x86) 2013-11-22 14:30:14 ----D---- C:\Windows\Tasks 2013-11-22 14:22:19 ----D---- C:\Windows\Prefetch 2013-11-22 13:29:32 ----D---- C:\ProgramData 2013-11-22 09:29:52 ----D---- C:\ProgramData\MFAData 2013-11-17 17:41:18 ----D---- C:\Windows\System32 2013-11-17 17:41:18 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-11-17 17:41:16 ----D---- C:\Windows\inf 2013-11-17 15:56:31 ----RD---- C:\Users 2013-11-17 15:39:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2013-11-17 15:38:48 ----D---- C:\Program Files (x86)\Samsung 2013-11-17 15:38:28 ----D---- C:\Windows\SysWOW64 2013-11-17 15:38:25 ----D---- C:\Windows\SYSWOW64\drivers 2013-11-17 15:38:13 ----D---- C:\Program Files (x86)\PC Connectivity Solution 2013-11-17 15:37:59 ----D---- C:\ProgramData\Samsung 2013-11-17 15:31:38 ----D---- C:\Windows\system32\catroot 2013-11-17 15:25:51 ----D---- C:\Windows\system32\DriverStore 2013-11-17 15:25:51 ----D---- C:\Windows\system32\catroot2 2013-11-17 15:25:17 ----RD---- C:\Program Files 2013-11-16 15:42:41 ----D---- C:\ProgramData\clear.fi 2013-11-16 15:05:04 ----A---- C:\Windows\ODBC.INI 2013-11-16 06:17:26 ----D---- C:\Windows\system32\wdi 2013-11-15 14:33:15 ----D---- C:\Windows\winsxs 2013-11-15 14:29:43 ----D---- C:\Program Files (x86)\Internet Explorer 2013-11-15 14:29:42 ----D---- C:\Program Files\Internet Explorer 2013-11-15 14:29:39 ----D---- C:\Windows\SYSWOW64\nl-NL 2013-11-15 14:29:39 ----D---- C:\Windows\system32\nl-NL 2013-11-14 20:48:41 ----A---- C:\Windows\win.ini 2013-11-14 20:47:40 ----D---- C:\Windows\system32\MRT 2013-11-14 20:45:40 ----A---- C:\Windows\system32\MRT.exe 2013-11-14 15:24:22 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI 2013-11-14 15:03:41 ----A---- C:\Windows\system.ini 2013-11-14 14:59:42 ----D---- C:\Windows\AppPatch 2013-11-14 14:59:41 ----D---- C:\Program Files (x86)\Common Files 2013-11-12 18:10:26 ----D---- C:\Windows\system32\wfp 2013-11-12 18:10:20 ----D---- C:\Windows\system32\wbem 2013-11-12 18:08:55 ----D---- C:\Windows\system32\drivers\UMDF 2013-11-12 18:08:55 ----D---- C:\Windows\system32\drivers\etc 2013-11-12 18:08:55 ----D---- C:\Windows\system32\CodeIntegrity 2013-11-12 18:08:55 ----D---- C:\Windows\AppCompat 2013-11-12 18:08:55 ----D---- C:\Program Files (x86)\newsXpresso 2013-11-12 18:08:22 ----D---- C:\ProgramData\Apple Computer 2013-11-12 18:08:22 ----D---- C:\ProgramData\Apple 2013-11-12 18:08:22 ----D---- C:\ProgramData\Anicesoft 2013-11-12 18:08:22 ----D---- C:\Program Files (x86)\MarkAny 2013-11-12 18:08:21 ----HD---- C:\Windows\system32\GroupPolicy 2013-11-12 18:08:21 ----D---- C:\Windows\SYSWOW64\GroupPolicy 2013-11-12 18:08:20 ----D---- C:\Windows\registration 2013-11-12 18:04:17 ----D---- C:\ProgramData\Adobe 2013-11-12 18:04:17 ----D---- C:\ProgramData\Acer 2013-10-31 12:16:32 ----D---- C:\Program Files (x86)\Java 2013-10-29 18:09:53 ----D---- C:\Windows\system32\LogFiles ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-09-02 192824] R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-09-02 294712] R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-08-20 123704] R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-09-08 31544] R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-05 438808] R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-02-24 25960] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2013-09-25 148792] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-09-02 241464] R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-09-02 212280] R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2013-08-01 251192] R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-03-16 22912] R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-03-16 20328] R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-03-16 62584] R1 NetworkX;NetworkX; C:\Windows\syswow64\ckldrv.sys [] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R3 ACSSCR;ACR38 Smart Card Reader; C:\Windows\system32\DRIVERS\a38usb.sys [2013-08-14 44672] R3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984] R3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784] R3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384] R3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2010-09-15 20552] R3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-30 2647528] R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344] R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752] R3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-12-24 412264] R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144] R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576] R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840] R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208] S3 AGERESoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880] S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-08-20 103576] S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista; C:\Windows\system32\DRIVERS\netr28x.sys [2009-06-10 620544] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-08-20 204568] S3 ssudobex;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudobex.sys [2013-08-20 204568] S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudserd.sys [2013-08-20 204568] S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2010-09-15 16392] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784] S3 usbrndis6;USB RNDIS6-adapter; C:\Windows\system32\DRIVERS\usb80236.sys [2013-02-12 19968] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496] S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2013-10-03 3538480] R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2013-09-25 301152] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] R2 Crypkey License;Crypkey License; C:\Windows\system32\crypserv.exe [2008-05-08 122880] R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504] R2 dgdersvc;Device Error Recovery Service; C:\Windows\system32\dgdersvc.exe [2010-09-15 119632] R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376] R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-05 13336] R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-01-31 244624] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2011-02-01 326168] R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080] R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-02-23 1005160] R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-02-23 378472] R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-02-01 2656280] R2 USBS3S4Detection;USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [2009-12-09 76320] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-05-31 641352] R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-15 116648] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09 257416] S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-09-28 172912] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-15 116648] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-08-16 194032] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-08-16 1255736] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] -----------------EOF-----------------
-
wanneer ik IE open dan verschijnt de pagina: Artemis.com als ik dan op de hometoets druk verschijnen mjin normale startpagina's. via configuratiescherm en dan startpagina vind ik ook mijn normale startpagina Hoe kan ik deze Artemis.com pagina verwijderen?
-
samsung wave synchroniseren met outlook
Brejen reageerde op Brejen's topic in Archief Tablet- en Smartphone
ik heb kies ondertussen verwijderd en opnieuw geinstalleerd. Nu kan ik starten met het synchroniseren maar wanneer het agenda van het toestel moet gelezen worden verschijnt detekts: u hebt te weinig uitvoeringsrechten om outlook te openen. Probeer het nogmaals met beheersrechten. Hoe moet ik dat dan doen? -
ik synchroniseer mijn samsung wave via KIES met outlook. Sinds vorige week had ik problemen in windows tgv een virus. Ik heb daarom mijn account verwijderd en een nieuw gemaakt in windows 7. alles terug geinstalleerd en alles werkt weer perfect. Wanneer ik nu echter mijn samsung aansluit en KIES open dan verschijnt een window met foutmeldingen zoals in bijlage. Ik kan geen update doen van KIES want dan werkt mijn samsung niet meer samen met outlook 2003. (heeft trouwens tot nu toe altijd gewerkt. Hoe kan ik dit oplossen? - - - Updated - - - [ATTACH]29013[/ATTACH]ziehier de bijlage: Doc2.doc
-
moet ik dan eerst mijn oude account verwijderen? Ik heb dat account gebruikt om de pc te installeren. Kan ik dat gewoon wegdoen en opnieuwmaken?
-
Ik heb dat geprobeerd maar dat lukt ook niet. Misschien is het wel belangrijk te melden de alle problemen zich maar bij 1 gebruiker voordoen. Bij de andere gebruikers werkt alles perfect. Indien ikzelf inlog lijkt er vanalles mis te lopen. Ik krijg bij opstart de melding dat hotkey utility niet meer werkt. Mijn externe netwerkschijf die zich normaal ook automatisch installeert moet ik iedere keer weer manueel aanmelden (ondanks het vinkje dat de inloggegevens behouden moeten blijven). Ook internet explorer werkt niet. Ook het opstarten van programma's zoals excel of word duurt enorm lang. Wanneer ik toch een bestand open heb en wijzigingen aanbreng dan krijg ik bij het opslaan de melding dat ik alleen kan lezen, niet schrijven. OUtlook start wel vlot op en alle mappen zijn bereikbaar maar bij het bedienen van de knop 'verzenden/ontvangen' krijg ik de melding dat ik niet de juiste volmacht heb voor deze map (?). ER lijkt dus vanalles fout te zitten.
-
ComboFix 13-11-12.01 - ACER 14/11/2013 14:54:41.1.8 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.8174.5258 [GMT 1:00] Gestart vanuit: c:\users\ACER\Downloads\ComboFix.exe AV: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} SP: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((( Bestanden Gemaakt van 2013-10-14 to 2013-11-14 )))))))))))))))))))))))))))))) . . 2013-11-13 15:41 . 2013-11-13 15:41 110080 ----a-r- c:\users\Jens Vanhoof\AppData\Roaming\Microsoft\Installer\{CD09642E-061D-4844-BA37-ED1480916404}\IconF7A21AF7.exe 2013-11-13 15:41 . 2013-11-13 15:41 110080 ----a-r- c:\users\Jens Vanhoof\AppData\Roaming\Microsoft\Installer\{CD09642E-061D-4844-BA37-ED1480916404}\IconD7F16134.exe 2013-11-13 15:41 . 2013-11-13 15:41 110080 ----a-r- c:\users\Jens Vanhoof\AppData\Roaming\Microsoft\Installer\{CD09642E-061D-4844-BA37-ED1480916404}\Icon1226A4C5.exe 2013-11-13 15:21 . 2013-11-13 15:21 -------- d-----w- c:\program files\HitmanPro 2013-11-13 15:20 . 2013-11-13 15:29 -------- d-----w- c:\programdata\HitmanPro 2013-11-13 15:08 . 2013-11-13 15:08 -------- d-----w- c:\users\Jens Vanhoof\AppData\Roaming\Malwarebytes 2013-11-13 15:03 . 2013-11-13 15:03 -------- d-----w- c:\users\ACER\AppData\Roaming\Malwarebytes 2013-11-13 15:02 . 2013-11-13 15:02 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2013-11-13 15:02 . 2013-11-13 15:02 -------- d-----w- c:\programdata\Malwarebytes 2013-11-13 15:02 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-11-13 14:49 . 2013-11-13 14:58 -------- d-----w- C:\AdwCleaner 2013-11-13 11:49 . 2013-11-13 11:49 -------- d-----w- c:\users\Brecht Vanhoof\AppData\Local\VirtualStore 2013-11-12 17:53 . 2013-11-12 17:53 -------- d-----w- c:\users\Jens Vanhoof\AppData\Local\VirtualStore 2013-11-12 14:36 . 2013-11-12 14:43 -------- d-----w- C:\zoek 2013-11-11 16:55 . 2013-11-12 17:08 -------- d-----w- c:\windows\MSApps 2013-11-11 13:33 . 2013-11-12 17:08 -------- d-----w- c:\program files\trend micro 2013-11-11 13:33 . 2013-11-11 13:34 -------- d-----w- C:\rsit 2013-11-11 10:25 . 2013-11-11 10:25 -------- d-----w- C:\sh4ldr 2013-10-31 11:16 . 2013-10-31 11:16 -------- d-----w- c:\program files (x86)\Common Files\Java 2013-10-31 11:16 . 2013-10-08 06:50 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2013-10-20 16:00 . 2013-10-20 16:00 -------- d-----w- c:\program files (x86)\EaseUS 2013-10-20 13:35 . 2013-11-12 17:08 -------- d-----w- c:\users\ACER\AppData\Local\Cimaware 2013-10-20 11:30 . 2013-10-20 11:30 -------- d-----w- c:\programdata\CrypKey 2013-10-20 11:30 . 2008-05-07 23:29 122880 ----a-w- c:\windows\system32\Crypserv.exe 2013-10-20 11:30 . 2008-03-17 17:12 28664 ----a-w- c:\windows\system32\Ckldrv.sys 2013-10-20 11:30 . 1999-06-18 20:49 165888 ----a-w- c:\windows\Ckconfig.exe 2013-10-20 11:30 . 1996-05-03 16:21 27648 ----a-r- c:\windows\Setup_ck.exe 2013-10-20 11:30 . 1996-05-03 14:36 18432 ----a-w- c:\windows\Setup_ck.dll 2013-10-20 11:30 . 1995-07-04 17:33 11776 ----a-w- c:\windows\Ckrfresh.exe 2013-10-20 11:30 . 2013-10-20 11:30 10022936 ----a-w- C:\spopr.exe 2013-10-19 12:52 . 2013-10-19 12:52 -------- d-----w- c:\users\Brecht Vanhoof\AppData\Roaming\Nero 2013-10-17 06:37 . 2013-10-17 06:37 -------- d-----w- c:\users\Patricia Corstjens\AppData\Local\Apple . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-10-11 11:06 . 2013-08-20 16:24 80541720 ----a-w- c:\windows\system32\MRT.exe 2013-10-09 07:37 . 2013-08-16 08:40 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-10-09 07:37 . 2013-08-16 08:40 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-10-09 07:37 . 2013-10-09 07:37 17226632 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe 2013-09-25 19:07 . 2013-09-25 19:07 148792 ----a-w- c:\windows\system32\drivers\avgdiska.sys 2013-09-22 23:28 . 2013-10-11 14:04 1767936 ----a-w- c:\windows\SysWow64\wininet.dll 2013-09-22 23:27 . 2013-10-11 14:04 2876928 ----a-w- c:\windows\SysWow64\jscript9.dll 2013-09-22 23:27 . 2013-10-11 14:04 61440 ----a-w- c:\windows\SysWow64\iesetup.dll 2013-09-22 23:27 . 2013-10-11 14:04 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll 2013-09-22 22:55 . 2013-10-11 14:04 51712 ----a-w- c:\windows\system32\ie4uinit.exe 2013-09-22 22:55 . 2013-10-11 14:04 2241024 ----a-w- c:\windows\system32\wininet.dll 2013-09-22 22:55 . 2013-10-11 14:04 1365504 ----a-w- c:\windows\system32\urlmon.dll 2013-09-22 22:54 . 2013-10-11 14:04 603136 ----a-w- c:\windows\system32\msfeeds.dll 2013-09-22 22:54 . 2013-10-11 14:04 19252224 ----a-w- c:\windows\system32\mshtml.dll 2013-09-22 22:54 . 2013-10-11 14:04 855552 ----a-w- c:\windows\system32\jscript.dll 2013-09-22 22:54 . 2013-10-11 14:04 3959296 ----a-w- c:\windows\system32\jscript9.dll 2013-09-22 22:54 . 2013-10-11 14:04 53248 ----a-w- c:\windows\system32\jsproxy.dll 2013-09-22 22:54 . 2013-10-11 14:04 67072 ----a-w- c:\windows\system32\iesetup.dll 2013-09-22 22:54 . 2013-10-11 14:04 526336 ----a-w- c:\windows\system32\ieui.dll 2013-09-22 22:54 . 2013-10-11 14:04 39936 ----a-w- c:\windows\system32\iernonce.dll 2013-09-22 22:54 . 2013-10-11 14:04 136704 ----a-w- c:\windows\system32\iesysprep.dll 2013-09-22 22:54 . 2013-10-11 14:04 2647552 ----a-w- c:\windows\system32\iertutil.dll 2013-09-22 22:54 . 2013-10-11 14:04 15404544 ----a-w- c:\windows\system32\ieframe.dll 2013-09-21 03:38 . 2013-10-11 14:04 2706432 ----a-w- c:\windows\system32\mshtml.tlb 2013-09-21 03:30 . 2013-10-11 14:04 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb 2013-09-21 02:48 . 2013-10-11 14:04 89600 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2013-09-21 02:39 . 2013-10-11 14:04 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe 2013-09-14 01:10 . 2013-10-11 05:25 497152 ----a-w- c:\windows\system32\drivers\afd.sys 2013-09-08 20:11 . 2013-09-08 20:11 31544 ----a-w- c:\windows\system32\drivers\avgrkx64.sys 2013-09-08 02:30 . 2013-10-11 05:25 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys 2013-09-08 02:27 . 2013-10-11 05:25 327168 ----a-w- c:\windows\system32\mswsock.dll 2013-09-08 02:03 . 2013-10-11 05:25 231424 ----a-w- c:\windows\SysWow64\mswsock.dll 2013-09-02 08:59 . 2013-09-02 08:59 212280 ----a-w- c:\windows\system32\drivers\avgldx64.sys 2013-09-02 08:29 . 2013-09-02 08:29 294712 ----a-w- c:\windows\system32\drivers\avgloga.sys 2013-09-02 08:26 . 2013-09-02 08:26 192824 ----a-w- c:\windows\system32\drivers\avgidsha.sys 2013-09-02 08:26 . 2013-09-02 08:26 241464 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys 2013-08-29 02:17 . 2013-10-11 05:25 5549504 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-08-29 02:16 . 2013-10-11 05:25 1732032 ----a-w- c:\windows\system32\ntdll.dll 2013-08-29 02:16 . 2013-10-11 05:25 243712 ----a-w- c:\windows\system32\wow64.dll 2013-08-29 02:16 . 2013-10-11 05:25 859648 ----a-w- c:\windows\system32\tdh.dll 2013-08-29 02:13 . 2013-10-11 05:25 878080 ----a-w- c:\windows\system32\advapi32.dll 2013-08-29 01:51 . 2013-10-11 05:25 3969472 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe 2013-08-29 01:51 . 2013-10-11 05:25 3914176 ----a-w- c:\windows\SysWow64\ntoskrnl.exe 2013-08-29 01:50 . 2013-10-11 05:25 5120 ----a-w- c:\windows\SysWow64\wow32.dll 2013-08-29 01:50 . 2013-10-11 05:25 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll 2013-08-29 01:50 . 2013-10-11 05:25 619520 ----a-w- c:\windows\SysWow64\tdh.dll 2013-08-29 01:48 . 2013-10-11 05:25 640512 ----a-w- c:\windows\SysWow64\advapi32.dll 2013-08-29 01:48 . 2013-10-11 05:25 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2013-08-29 00:49 . 2013-10-11 05:25 25600 ----a-w- c:\windows\SysWow64\setup16.exe 2013-08-29 00:49 . 2013-10-11 05:25 7680 ----a-w- c:\windows\SysWow64\instnm.exe 2013-08-29 00:49 . 2013-10-11 05:25 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll 2013-08-29 00:49 . 2013-10-11 05:25 2048 ----a-w- c:\windows\SysWow64\user.exe 2013-08-28 01:21 . 2013-10-11 05:25 3155968 ----a-w- c:\windows\system32\win32k.sys 2013-08-28 01:12 . 2013-10-11 05:25 461312 ----a-w- c:\windows\system32\scavengeui.dll 2013-08-20 20:53 . 2013-08-20 20:53 123704 ----a-w- c:\windows\system32\drivers\avgmfx64.sys 2013-08-20 05:02 . 2013-08-20 05:02 708168 ----a-w- c:\windows\system32\WinUSBCoInstaller.dll 2013-08-20 05:02 . 2013-08-20 05:02 1490656 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll 2013-08-20 05:02 . 2013-08-20 05:02 204568 ----a-w- c:\windows\system32\drivers\ssudserd.sys 2013-08-20 05:02 . 2013-08-20 05:02 204568 ----a-w- c:\windows\system32\drivers\ssudobex.sys 2013-08-20 05:02 . 2013-08-20 05:02 204568 ----a-w- c:\windows\system32\drivers\ssudmdm.sys 2013-08-20 05:02 . 2013-08-20 05:02 103576 ----a-w- c:\windows\system32\drivers\ssudbus.sys 2013-08-19 16:48 . 2013-08-19 16:48 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll 2013-08-19 16:48 . 2013-08-19 16:48 704136 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2010-10-13 3366200] "LaCie Ethernet Agent Startup"="c:\program files (x86)\LaCie\Network Assistant\LaCie Network Assistant.exe" [2009-10-16 5722112] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-09-28 340336] "EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe" [2010-09-17 407920] "EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" [2010-09-17 201584] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2013-05-08 41056] "IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-11-05 283160] "ArcadeMovieService"="c:\program files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" [2011-05-13 177448] "Hotkey Utility"="c:\program files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe" [2011-01-19 620136] "AVG_UI"="c:\program files (x86)\AVG\AVG2014\avgui.exe" [2013-10-07 4908592] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720] "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-05-31 152392] "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "IsMyWinLockerReboot"="msiexec.exe" [2010-11-21 73216] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . 2;2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x] R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe [x] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x] R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x] R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x] R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [x] R3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x] R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x] R3 ssudobex;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudobex.sys;c:\windows\SYSNATIVE\DRIVERS\ssudobex.sys [x] R3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssudserd.sys [x] R3 TFsExDisk;TFsExDisk;c:\windows\System32\Drivers\TFsExDisk.sys;c:\windows\SYSNATIVE\Drivers\TFsExDisk.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x] R3 usbrndis6;USB RNDIS6-adapter;c:\windows\system32\DRIVERS\usb80236.sys;c:\windows\SYSNATIVE\DRIVERS\usb80236.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x] S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x] S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x] S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x] S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x] S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x] S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x] S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x] S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x] S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x] S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x] S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x] S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x] S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe [x] S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe;c:\windows\SYSNATIVE\dgdersvc.exe [x] S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [x] S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x] S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x] S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x] S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x] S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x] S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x] S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x] S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x] S2 USBS3S4Detection;USBS3S4Detection;c:\oem\USBDECTION\USBS3S4Detection.exe;c:\oem\USBDECTION\USBS3S4Detection.exe [x] S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\DRIVERS\a38usb.sys;c:\windows\SYSNATIVE\DRIVERS\a38usb.sys [x] S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys;c:\windows\SYSNATIVE\drivers\dgderdrv.sys [x] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x] S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x] S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x] S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x] S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-11-13 17:12 1210320 ----a-w- c:\program files (x86)\Google\Chrome\Application\31.0.1650.48\Installer\chrmstp.exe . Inhoud van de 'Gedeelde Taken' map . 2013-11-14 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-16 07:37] . 2013-11-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-15 09:01] . 2013-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-15 09:01] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-11-30 11660904] . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local TCP: DhcpNameServer = 192.168.1.1 . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) Wow6432Node-HKLM-Run-beid - c:\program files (x86)\Belgium Identity Card\beid35gui.exe Toolbar-Locked - (no file) . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2013-11-14 15:05:29 ComboFix-quarantined-files.txt 2013-11-14 14:05 . Pre-Run: 412.693.037.056 bytes beschikbaar Post-Run: 412.768.280.576 bytes beschikbaar . - - End Of File - - 604E362CDB1B109C837CA440249B3F8B
-
heeft niets opgelost. Hotkey utility's blijft foutmelding geven. Outlook werkt niet. Ook IE niet. Wie kan mij verder naar een oplossing helpen?
-
Ik ga dit straks zeker proberen. bij opstart krijg ik ook de melding dat HOTKEY UTILITY niet meer werkt. Gaat dat daar ook mee opgelost zijn of moet ik nog andere acties nemen?
-
Iemand een idee hoe het verder moet?
-
ik heb via de veilige modus ook systeemherstel kunnen uitvoeren. Ik kom nu een stapje verder. google chrome werkt weer. IE nog steeds niet. Ook outlook krijg ik weer open maar wanneer ik op 'verzenden' druk verschijnt de melding 'geen machtiging voor deze map'. Het lijkt er dus op dat niet alles opgelost is.
-
ziehier het resultaat: Zoek.exe Version 4.0.0.5 Updated 09-November-2013 Tool run by ACER on di 12/11/2013 at 15:33:13,00. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Safe Mode NETWORK Internet Access Detected Launched: Y:\zoek.exe [script inserted] ==== Older Logs ====================== C:\zoek-results2013-11-11-142614.log 8057 bytes C:\zoek-results2013-11-11-165023.log 42479 bytes ==== Empty Folders Check ====================== C:\Users\Jens Vanhoof\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Allin1Convert Search Scope Monitor"=- "Allin1Convert_8h Browser Plugin Loader"=- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Deleting Files \ Folders ====================== "C:\Users\ACER\AppData\Local\Temp\DefaultTabSetup2.exe" not found C:\Users\Jens Vanhoof\AppData\Locallow\Torntv 2 deleted C:\Users\Patricia Corstjens\AppData\Locallow\Torntv 2 deleted C:\Windows\SysNative\tasks\0 deleted C:\Windows\SysNative\tasks\4464 deleted "C:\Users\Jens Vanhoof\AppData\Local\Temp\i4jdel1.exe" deleted ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be ==== Firefox Plugins ====================== ==== Chrome Look ====================== Chrome In-App Payments service - Brecht Vanhoof - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Chrome In-App Payments service - Jens Vanhoof - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Brecht Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Brecht Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Jens Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jens Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Patricia Corstjens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Patricia Corstjens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Brecht Vanhoof\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Jens Vanhoof\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Patricia Corstjens\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\ACER\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat" not found "C:\Users\ACER\AppData\Roaming\AVG2014" not deleted "C:\Users\ACER\AppData\Roaming\Skype" not deleted "C:\Users\ACER\AppData\Roaming\TuneUp Software" not deleted "C:\Users\ACER\AppData\Local\Xara" not deleted ==== EOF on di 12/11/2013 at 15:43:27,24 ====================== tot nu toe werkt IE nog niet; het startblad verschijnt maar blijft leeg.
-
zie hier het resultaat. Zoek.exe Version 4.0.0.5 Updated 09-November-2013 Tool run by ACER on di 12/11/2013 at 15:33:13,00. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Safe Mode NETWORK Internet Access Detected Launched: Y:\zoek.exe [script inserted] ==== Older Logs ====================== C:\zoek-results2013-11-11-142614.log 8057 bytes C:\zoek-results2013-11-11-165023.log 42479 bytes ==== Empty Folders Check ====================== C:\Users\Jens Vanhoof\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Allin1Convert Search Scope Monitor"=- "Allin1Convert_8h Browser Plugin Loader"=- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Deleting Files \ Folders ====================== "C:\Users\ACER\AppData\Local\Temp\DefaultTabSetup2.exe" not found C:\Users\Jens Vanhoof\AppData\Locallow\Torntv 2 deleted C:\Users\Patricia Corstjens\AppData\Locallow\Torntv 2 deleted C:\Windows\SysNative\tasks\0 deleted C:\Windows\SysNative\tasks\4464 deleted "C:\Users\Jens Vanhoof\AppData\Local\Temp\i4jdel1.exe" deleted ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be ==== Firefox Plugins ====================== ==== Chrome Look ====================== Chrome In-App Payments service - Brecht Vanhoof - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Chrome In-App Payments service - Jens Vanhoof - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Brecht Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Brecht Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Jens Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jens Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Patricia Corstjens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Patricia Corstjens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Brecht Vanhoof\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Jens Vanhoof\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Patricia Corstjens\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\ACER\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat" not found "C:\Users\ACER\AppData\Roaming\AVG2014" not deleted "C:\Users\ACER\AppData\Roaming\Skype" not deleted "C:\Users\ACER\AppData\Roaming\TuneUp Software" not deleted "C:\Users\ACER\AppData\Local\Xara" not deleted ==== EOF on di 12/11/2013 at 15:43:27,24 ====================== tot nu toe kan in nog niet op internet met de betroffen pc: IE blijft staan op startscherm maar blijft leeg.
-
Mag/moet ik de pc starten in veilige modus? op de normale manier kan ik niet meer op internet. zowel IE als chrome openen niet. Een andere optie is zoek.exe op een externe HD downloaden via andere pc en dan overzetten naar de betroffen pc. Ik weet niet of dat mag?
-
ik heb nog een ander gevonden . Is het dit wat je zocht? Zoek.exe Version 4.0.0.5 Updated 09-November-2013 Tool run by ACER on ma 11/11/2013 at 16:59:15,75. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: \\192.168.1.99\OpenShare\zoek.exe [Quick Scan] [Auto Clean] ==== Older Logs ====================== C:\zoek-results2013-11-11-142614.log 8057 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== "C:\PROGRA~2\Allin1Convert_8h\bar\1.bin\8hbrmon.exe" deleted "C:\PROGRA~2\Allin1Convert_8h\bar\1.bin\8hbrstub.dll" deleted "C:\PROGRA~2\Allin1Convert_8h\bar\1.bin\T8RES.DLL" deleted "C:\Users\ACER\AppData\Roaming\MAGIX" deleted "C:\PROGRA~2\Allin1Convert_8h" not deleted "C:\PROGRA~2\Allin1Convert_8h\bar" not deleted "C:\PROGRA~2\Allin1Convert_8h\bar\1.bin" not deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-10-20 11:31:02 8837F1B553AFCAD13B91A7413B85572B 4 ----a-w- C:\Windows\vx86036.dat 2013-10-20 11:30:32 D8CF9F451CE67DFC5CE08CA873D49C6D 139 ----a-w- C:\Windows\Crypkey.ini 2013-10-20 11:30:29 D45FA1C1B94487D50DD06AC4628235D3 165888 ----a-w- C:\Windows\Ckconfig.exe 2013-10-20 11:30:29 A8C462F4067732BF7FFBFFF8E02FC70D 11776 ----a-w- C:\Windows\Ckrfresh.exe 2013-10-20 11:30:29 1DC81022E7605CE5FC7BF08ACFE5FD9C 18432 ----a-w- C:\Windows\Setup_ck.dll 2013-10-20 11:30:29 178A4F6A92760DD8927B4B8C51E760DB 27648 ----a-r- C:\Windows\Setup_ck.exe ====== C:\Users\ACER\AppData\Local\Temp ==== 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Users\ACER\AppData\Local\Temp\DefaultTabSetup2.exe 2013-11-02 15:37:14 24F6D923EF6956ABD0449C879F36D7C7 27411 ----a-w- C:\Users\Jens Vanhoof\AppData\Local\Temp\i4jdel1.exe 2013-10-31 11:16:38 49F3F96A236521578C6BBEECF05567B9 510928 ----a-w- C:\Users\Patricia Corstjens\AppData\Local\Temp\APNSetup.exe ====== Java Cache ===== 2013-10-21 15:58:31 63F42202C0C5DC7CC6DAC90AE29BE41F 2125094 ----a-w- C:\Users\Jens Vanhoof\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\1ba8977c-4d36a62f-0.2.3.2- 2013-10-31 11:17:01 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-7ac0eb93 2013-10-15 11:53:53 59D6149FF64170865F5FD6578D5FA181 158 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\11be110f-29034340 2013-11-04 11:35:52 59D6149FF64170865F5FD6578D5FA181 158 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\11be110f-2d3e6b5c 2013-10-24 16:56:14 59D6149FF64170865F5FD6578D5FA181 158 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\11be110f-47f92da2 2013-10-31 11:27:50 59D6149FF64170865F5FD6578D5FA181 158 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\11be110f-654a3535 2013-10-15 11:52:45 59D6149FF64170865F5FD6578D5FA181 158 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\11be110f-6bb35003 2013-11-01 08:56:26 59D6149FF64170865F5FD6578D5FA181 158 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\11be110f-7606700d 2013-10-31 11:16:57 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-192920bd 2013-10-31 11:16:57 7FDDCA03279DA10B7E288C0A04A3D2E0 86 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-6.0.lap 2013-10-31 11:16:56 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-3149340c 2013-11-04 11:35:39 5CBEB6B3D78E6BFA1B2360EB61837344 378 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\61f481e1-14a57317 2013-10-15 11:53:54 5CBEB6B3D78E6BFA1B2360EB61837344 378 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\61f481e1-31bab002 2013-11-01 08:56:24 5CBEB6B3D78E6BFA1B2360EB61837344 378 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\61f481e1-3319ebf7 2013-10-15 11:52:56 5CBEB6B3D78E6BFA1B2360EB61837344 378 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\61f481e1-353cf843 2013-11-01 08:55:02 5CBEB6B3D78E6BFA1B2360EB61837344 378 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\61f481e1-47a196ae 2013-10-24 16:56:16 5CBEB6B3D78E6BFA1B2360EB61837344 378 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\61f481e1-50c2c3df 2013-10-24 16:55:48 5CBEB6B3D78E6BFA1B2360EB61837344 378 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\61f481e1-5e73ca7c 2013-10-31 11:28:20 5CBEB6B3D78E6BFA1B2360EB61837344 378 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\61f481e1-711da5d5 2013-11-04 11:35:28 5CBEB6B3D78E6BFA1B2360EB61837344 378 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\61f481e1-7e5feea0 2013-10-15 11:52:44 6099DA81049734B49587DA20CD40CCB6 3727 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\72290724-28728aa9 2013-11-01 08:56:25 6099DA81049734B49587DA20CD40CCB6 3727 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\72290724-4bff58e0 2013-11-04 11:35:31 6099DA81049734B49587DA20CD40CCB6 3727 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\72290724-6c13e569 2013-10-24 16:56:14 6099DA81049734B49587DA20CD40CCB6 3727 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\72290724-6fbd5d90 2013-10-31 11:27:50 6099DA81049734B49587DA20CD40CCB6 3727 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\72290724-6fdfac76 2013-10-31 11:16:58 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-66cf5832 2013-11-01 08:55:02 D4915520B972D54E8C9F6B077895B6F2 268 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\7b08d074-1d388f0d 2013-10-15 11:53:53 D4915520B972D54E8C9F6B077895B6F2 268 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\7b08d074-1ed9f2c5 2013-11-04 11:35:31 D4915520B972D54E8C9F6B077895B6F2 268 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\7b08d074-46b4a4bd 2013-10-24 16:56:14 D4915520B972D54E8C9F6B077895B6F2 268 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\7b08d074-5fbf1837 2013-10-31 11:27:50 D4915520B972D54E8C9F6B077895B6F2 268 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\7b08d074-72aa2df5 2013-10-15 11:52:45 D4915520B972D54E8C9F6B077895B6F2 268 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\7b08d074-7310b3c9 2013-11-04 11:35:52 D4915520B972D54E8C9F6B077895B6F2 268 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\7b08d074-7c992f9e 2013-10-23 11:30:22 D18B4F6BFC49B6CD33201FCBEEA149D5 115 ----a-w- C:\Users\Patricia Corstjens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\790146f6-6.0.lap ====== C:\Windows\SysWOW64 ===== 2013-10-31 11:16:34 9223A2810B73069F4A03A636052EF14A 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe 2013-10-31 11:16:32 DC1342498BEE7EF1646E9D63138B69CC 175016 ----a-w- C:\Windows\SysWOW64\javaw.exe 2013-10-31 11:16:32 9B0B14B405E0EDF76B5F5E31A49EB753 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-10-31 11:16:32 658633D255FEF154EA1CB8705B4468C5 174504 ----a-w- C:\Windows\SysWOW64\java.exe ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-11-11 13:33:54 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2013-11-09 11:46:13 -------- d-----w- C:\PROGRA~2\Allin1Convert_8h 2013-10-31 11:16:38 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2013-10-20 16:00:59 -------- d-----w- C:\PROGRA~2\EaseUS 2013-10-20 11:30:27 -------- d-----w- C:\PROGRA~2\Stellar Phoenix Outlook PST Repair ======= C: ===== 2013-10-20 11:30:52 9AE67BFEAA12ED6BE8642AEBFD722A11 86 ----a-w- C:\CKINFO.TXT 2013-10-20 11:30:17 CFDE73ECDD37449E5120CD2E8D78ECF7 10022936 ----a-w- C:\spopr.exe ====== C:\Users\ACER\AppData\Roaming ====== 2013-11-11 10:25:37 -------- d-----w- C:\Users\ACER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter 2013-10-31 15:35:38 -------- d-----w- C:\Users\Jens Vanhoof\AppData\Locallow\Torntv 2 2013-10-31 11:09:21 -------- d-----w- C:\Users\Patricia Corstjens\AppData\Locallow\Torntv 2 2013-10-30 20:45:11 -------- d-----w- C:\Users\ACER\AppData\Roaming\Mozilla 2013-10-20 13:35:41 -------- d-----w- C:\Users\ACER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cimaware OfficeFIX 6 2013-10-20 13:35:41 -------- d-----w- C:\Users\ACER\AppData\Local\Cimaware 2013-10-19 12:52:20 -------- d-----w- C:\Users\Brecht Vanhoof\AppData\Roaming\Nero 2013-10-17 06:37:02 -------- d-----w- C:\Users\Patricia Corstjens\AppData\Local\Apple ====== C:\Users\ACER ====== 2013-11-11 15:01:09 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\Users\Patricia Corstjens\ntuser.pol 2013-11-11 13:36:49 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\Users\Brecht Vanhoof\ntuser.pol 2013-11-11 10:44:00 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\Users\Jens Vanhoof\ntuser.pol 2013-11-11 10:07:41 !HASH: COULD NOT OPEN FILE !!!!! 262 --sha-r- C:\Users\ACER\ntuser.pol 2013-10-31 11:16:32 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2013-10-31 11:10:46 76C0E995B2F29E55580B8FD3F78CFB4F 915368 ----a-w- C:\Users\Patricia Corstjens\Downloads\JavaSetup7u45.exe 2013-10-20 11:30:41 -------- d-----w- C:\ProgramData\CrypKey ====== C: exe-files == 2013-11-11 13:33:46 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWPRG338\RSITx64.exe 2013-11-11 13:33:46 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWPRG338\RSITx64.exe 2013-11-11 13:33:46 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWPRG338\RSITx64.exe 2013-11-11 13:33:46 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWPRG338\RSITx64.exe 2013-11-11 13:33:46 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWPRG338\RSITx64.exe 2013-11-11 13:33:46 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWPRG338\RSITx64.exe 2013-11-11 13:33:46 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWPRG338\RSITx64.exe 2013-11-11 13:33:46 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWPRG338\RSITx64.exe 2013-11-11 13:33:46 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWPRG338\RSITx64.exe 2013-11-11 10:24:49 3BF5608BD9B2592070D02EE4BDAD96D6 728960 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SpyHunter-Installer.exe 2013-11-11 10:24:49 3BF5608BD9B2592070D02EE4BDAD96D6 728960 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SpyHunter-Installer.exe 2013-11-11 10:24:49 3BF5608BD9B2592070D02EE4BDAD96D6 728960 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SpyHunter-Installer.exe 2013-11-11 10:24:49 3BF5608BD9B2592070D02EE4BDAD96D6 728960 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SpyHunter-Installer.exe 2013-11-11 10:24:49 3BF5608BD9B2592070D02EE4BDAD96D6 728960 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SpyHunter-Installer.exe 2013-11-11 10:24:49 3BF5608BD9B2592070D02EE4BDAD96D6 728960 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SpyHunter-Installer.exe 2013-11-11 10:24:49 3BF5608BD9B2592070D02EE4BDAD96D6 728960 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SpyHunter-Installer.exe 2013-11-11 10:24:49 3BF5608BD9B2592070D02EE4BDAD96D6 728960 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SpyHunter-Installer.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:44 B0CBDA8817A0CDD858EA8AFB1C2549A5 3090032 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\DefaultTabSetup2.exe 2013-11-11 10:03:08 D44D7759C22F25FEFF0AF0BF1AE0B3E0 400736 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SoftonicDownloader_voor_prezi-desktop.exe 2013-11-11 10:03:08 D44D7759C22F25FEFF0AF0BF1AE0B3E0 400736 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SoftonicDownloader_voor_prezi-desktop.exe 2013-11-11 10:03:08 D44D7759C22F25FEFF0AF0BF1AE0B3E0 400736 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SoftonicDownloader_voor_prezi-desktop.exe 2013-11-11 10:03:08 D44D7759C22F25FEFF0AF0BF1AE0B3E0 400736 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SoftonicDownloader_voor_prezi-desktop.exe 2013-11-11 10:03:08 D44D7759C22F25FEFF0AF0BF1AE0B3E0 400736 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SoftonicDownloader_voor_prezi-desktop.exe 2013-11-11 10:03:08 D44D7759C22F25FEFF0AF0BF1AE0B3E0 400736 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SoftonicDownloader_voor_prezi-desktop.exe 2013-11-11 10:03:08 D44D7759C22F25FEFF0AF0BF1AE0B3E0 400736 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\SoftonicDownloader_voor_prezi-desktop.exe 2013-11-09 11:45:51 5F47301F178D522B1FEDCB9EE229CED6 383480 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\Allin1Convert.exe 2013-11-09 11:45:51 5F47301F178D522B1FEDCB9EE229CED6 383480 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\Allin1Convert.exe 2013-11-09 11:45:51 5F47301F178D522B1FEDCB9EE229CED6 383480 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\Allin1Convert.exe 2013-11-09 11:45:51 5F47301F178D522B1FEDCB9EE229CED6 383480 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\Allin1Convert.exe 2013-11-09 11:45:51 5F47301F178D522B1FEDCB9EE229CED6 383480 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\Allin1Convert.exe 2013-11-09 11:45:51 5F47301F178D522B1FEDCB9EE229CED6 383480 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\Allin1Convert.exe 2013-11-09 11:45:51 5F47301F178D522B1FEDCB9EE229CED6 383480 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\Allin1Convert.exe 2013-11-09 11:45:51 5F47301F178D522B1FEDCB9EE229CED6 383480 ----a-w- C:\Documents and Settings\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\3UEQV2TN\Allin1Convert.exe === C: other files == 2013-11-07 10:46:19 CA978A30ADE953AE9B6052A81761F295 8157 ----a-w- C:\Documents and Settings\Patricia Corstjens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SO6XBYX0\infos_enUS[1].zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Windows\CurrentVersion\Run] "KiesTrayAgent"="C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" "LaCie Ethernet Agent Startup"="C:\Program Files (x86)\LaCie\Network Assistant\LaCie Network Assistant.exe" "NTRedirect"="C:\Windows\SysWOW64\rundll32.exe C:\Users\ACER\AppData\Roaming\BabSolution\Shared\enhancedNT.dll,Run" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" "IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" "IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SuiteTray"="C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" "EgisTecPMMUpdate"="C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" "EgisUpdate"="C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe -d" "Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" "IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "ArcadeMovieService"="C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" "Hotkey Utility"="C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "beid"="C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe /startup" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "Allin1Convert Search Scope Monitor"="C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hsrchmn.exe /m=2 /w /h" "Allin1Convert_8h Browser Plugin Loader"="C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hbrmon.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "KiesTrayAgent"="C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" "LaCie Ethernet Agent Startup"="C:\Program Files (x86)\LaCie\Network Assistant\LaCie Network Assistant.exe" "NTRedirect"="C:\Windows\SysWOW64\rundll32.exe C:\Users\ACER\AppData\Roaming\BabSolution\Shared\enhancedNT.dll,Run" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\progra~3\\browse~1\\261519~1.190\\{c16c1~1\\browse~1.dll " ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [09/10/2013 08:37] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:36C:\ProgramC:FilesC:x86\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [15/08/2013 10:01] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\0" [c:\program files\internet explorer\iexplore.exe] "C:\Windows\SysNative\tasks\4464" [wscript.exe C:\Users\ACER\AppData\Local\Temp\launchie.vbs //B] "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\clear.fi" ["C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe"] "C:\Windows\SysNative\tasks\clear.fiAgent" ["C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\DMREngine" ["C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe"] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\{F218DBF9-BB33-4227-805F-4E18DCDC7A94}" ["C:\Program Files\Internet Explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" [] ==== Firefox Extensions ====================== ExtDir: C:\Users\ACER\AppData\Roaming\Mozilla\Firefox\Profiles\extensions - Torntv 3 - %ExtDir%\trtv3@trtv.com.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be ==== Firefox Plugins ====================== ==== Deleted Firefox Extensions ====================== C:\Users\ACER\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\trtv3@trtv.com.xpi deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions bicnnkjibmphdeigoodpjlcklcnaobdj - C:\Program Files (x86)\TornTV.com\torntv10.crx[] eooncjejnppfjjklapaamhcdmjbilmde - C:\Users\ACER\AppData\Roaming\BabSolution\CR\Delta.crx[] kdidombaedgpfiiedeimiebkmbilgmlc - C:\Program Files (x86)\DefaultTab\DefaultTab.crx[] Delta Toolbar - ACER - Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde DefaultTab - ACER - Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc Google Wallet - ACER - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Google Docs - Brecht Vanhoof - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Brecht Vanhoof - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Brecht Vanhoof - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Brecht Vanhoof - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Chrome In-App Payments service - Brecht Vanhoof - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Brecht Vanhoof - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - Jens Vanhoof - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Jens Vanhoof - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Jens Vanhoof - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Jens Vanhoof - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf DefaultTab - Jens Vanhoof - Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc Chrome In-App Payments service - Jens Vanhoof - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Jens Vanhoof - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - Patricia Corstjens - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Patricia Corstjens - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Patricia Corstjens - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Patricia Corstjens - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Web Cake - Patricia Corstjens - Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh Card number - Patricia Corstjens - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Patricia Corstjens - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www1.delta-search.com_0.localstorage deleted successfully C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www1.delta-search.com_0.localstorage-journal deleted successfully C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc deleted successfully C:\Users\Jens Vanhoof\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc deleted successfully C:\Users\Patricia Corstjens\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.mysearchresults.com/?c=3525&t=01" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\belgiumeid@eid.belgium.be deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Brecht Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Brecht Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Jens Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jens Vanhoof\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Patricia Corstjens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Patricia Corstjens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat will be deleted at reboot C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\desktop.ini will be deleted at reboot C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\container.dat will be deleted at reboot C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\desktop.ini will be deleted at reboot C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Brecht Vanhoof\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Jens Vanhoof\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Patricia Corstjens\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\ACER\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat" not found "C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\desktop.ini" not found "C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\container.dat" not found "C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\desktop.ini" not found "C:\Users\ACER\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat" not found "C:\PROGRA~2\Allin1Convert_8h" not found ==== EOF on ma 11/11/2013 at 17:50:23,90 ======================
-
Ik kan met de betroffen pc niet meer op internet. Vandaar een poging met een andere: het logje wat je gevraagd had is: Zoek.exe Version 4.0.0.5 Updated 09-November-2013 Tool run by ACER on ma 11/11/2013 at 15:15:45,48. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\ACER\Desktop\zoek.com [script inserted] [Checkboxes used] ==== System Restore Info ====================== 11/11/2013 15:17:51 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\MSXML 4.0 deleted successfully C:\PROGRA~2\COMMON~1\PDF Architect deleted successfully C:\Program Files\Google deleted successfully C:\Program Files\log deleted successfully C:\ProgramData\Babylon deleted successfully C:\ProgramData\Oracle deleted successfully C:\Users\ACER\AppData\Roaming\TP deleted successfully C:\Users\Brecht Vanhoof\AppData\Local\VirtualStore deleted successfully C:\Users\Jens Vanhoof\AppData\Local\VirtualStore deleted successfully C:\Users\Patricia Corstjens\AppData\Local\{CB6B4106-00B8-4757-8607-6E48851FA2A8} deleted successfully C:\Users\Patricia Corstjens\AppData\Local\{EB9B2DB5-7900-4D64-A02A-131ADE3B21B9} deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{cd1a63ba-a08c-431b-9a34-f240aadc728d} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{cd1a63ba-a08c-431b-9a34-f240aadc728d} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Internet Explorer\SearchScopes\{8120C9D0-DC00-4F96-A1A3-73EF9DB57247} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9a216821-0ec5-49a3-85ac-fb72ae79a1e8} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Internet Explorer\SearchScopes\{DC223404-805B-4750-9489-02ED0AE02439} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{cd1a63ba-a08c-431b-9a34-f240aadc728d} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_USERS\S-1-5-21-981637665-1960542106-3209509957-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{cd1a63ba-a08c-431b-9a34-f240aadc728d} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Allin1Convert_8hService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Allin1Convert_8hService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DefaultTabSearch deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\DefaultTabSearch deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DefaultTabUpdate deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\DefaultTabUpdate deleted successfully ==== FireFox Fix ====================== Deleted from C:\Users\ACER\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js: Added to C:\Users\ACER\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js: user_pref("browser.startup.homepage", "http://www.google.com"); user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.newtab.url", "http://www.google.com/"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.defaultenginename", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.search.order.1", "Google"); user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.search.suggest.enabled", true); user_pref("browser.search.useDBForOrder", true); ProfilePath: C:\Users\ACER\AppData\Roaming\Mozilla\Firefox\Profiles\extensions ---- FireFox user.js and prefs.js backups ---- user_20131111_1526_.backup prefs_20131111_1526_.backup ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "bProtectorDefaultScope"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "bProtectTabs"=- ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Allin1Convert Home Page Guard 64 bit"=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Allin1Convert Search Scope Monitor"=- "Allin1Convert_8h Browser Plugin Loader"=-
-
Logfile of random's system information tool 1.09 (written by random/random) Run by ACER at 2013-11-11 14:33:54 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 390 GB (83%) free of 468 GB Total RAM: 8174 MB (64% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:33:58, on 11/11/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16720) Boot mode: Normal Running processes: C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files (x86)\LaCie\Network Assistant\LaCie Network Assistant.exe C:\Windows\SysWOW64\rundll32.exe C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hbrmon.exe C:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXE C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe C:\Windows\sysWow64\SearchProtocolHost.exe C:\Program Files (x86)\Microsoft Office\OFFICE11\WINWORD.EXE C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files\trend micro\ACER.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, enhanced for Bing and MSN R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - (no file) R3 - URLSearchHook: (no name) - {5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hSrcAs.dll F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\ACER\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Search Assistant BHO - {a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hSrcAs.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: Toolbar BHO - {fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} - C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hbar.dll O3 - Toolbar: Allin1Convert - {cd1a63ba-a08c-431b-9a34-f240aadc728d} - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hbar.dll O4 - HKLM\..\Run: [suiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [beid] "C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe" /startup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Allin1Convert Search Scope Monitor] "C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hsrchmn.exe" /m=2 /w /h O4 - HKLM\..\Run: [Allin1Convert_8h Browser Plugin Loader] C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hbrmon.exe O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe O4 - HKCU\..\Run: [LaCie Ethernet Agent Startup] "C:\Program Files (x86)\LaCie\Network Assistant\LaCie Network Assistant.exe" O4 - HKCU\..\Run: [NTRedirect] C:\Windows\SysWOW64\rundll32.exe "C:\Users\ACER\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~3\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\OFFICE11\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: c:\progra~3\browse~1\261519~1.190\{c16c1~1\browse~1.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Allin1ConvertService (Allin1Convert_8hService) - COMPANYVERS_NAME - C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hbarsvc.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing) O23 - Service: DefaultTabSearch - Unknown owner - C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe O23 - Service: DefaultTabUpdate - Unknown owner - C:\Users\ACER\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\Windows\system32\dgdersvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: USBS3S4Detection - Unknown owner - C:\OEM\USBDECTION\USBS3S4Detection.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 14459 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe C:\PROGRA~2\AVG\AVG2014\avgrsa.exe /boot C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=809dca3e-4435-4b57-b8be-a71eae8e6e2c /coreSdkOptions=4364 /logConfFile="C:\Windows\TEMP\f7865c5a-a958-4a0e-9e62-dd158bdf5371-1e8-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe winlogon.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService "C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe" C:\Windows\system32\nvvsvc.exe -session -first C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hbarsvc.exe "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe" "C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe" "C:\Program Files\Bonjour\mDNSResponder.exe" crypserv.exe "C:\Users\ACER\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe" C:\Windows\system32\dgdersvc.exe "C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe" /DisableUI "C:\Program Files (x86)\Acer\Registration\GREGsvc.exe" "C:\Program Files\Acer\Acer Updater\UpdaterService.exe" "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe" "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe" C:\Windows\system32\svchost.exe -k imgsvc C:\OEM\USBDECTION\USBS3S4Detection.exe "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe" WLIDSvcM.exe 3036 "C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE" "C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe" "C:\Program Files (x86)\AVG\AVG2014\avgemca.exe" taskeng.exe {8ABE5582-D6E1-487C-B286-23C167142110} "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s "C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\AppIntegrator64.exe" "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" "C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe" "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY "C:\Program Files (x86)\iTunes\iTunesHelper.exe" "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hbrmon.exe" "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" taskeng.exe {C4A69548-99B0-406E-A648-D9FE49681906} "C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe" "C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\iPod\bin\iPodService.exe" C:\Windows\system32\svchost.exe -k bthsvcs C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-477f1381-898b-45eb-b52e-375491598cc0 -SystemEventPortName:HostProcess-01cc5eca-f762-41be-99ae-3adf5d0fa580 -IoCancelEventPortName:HostProcess-e45f7d7c-1373-4f8f-9d63-58314a4e107d -NonStateChangingEventPortName:HostProcess-df256bad-b94e-4bd6-a60a-1f514b025ffb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e3af597a-eaeb-4ed9-b034-e69dc122b947 -DeviceGroupId:WpdFsGroup "C:\Program Files\Windows Media Player\wmpnetwk.exe" "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\Nero\Update\NASvc.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:6796 CREDAT:267521 /prefetch:2 C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe -Embedding C:\Windows\splwow64.exe 4096 %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe "C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe" C:\Windows\system32\nvvsvc.exe -session "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s "C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\AppIntegrator64.exe" "C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" "C:\Program Files (x86)\LaCie\Network Assistant\LaCie Network Assistant.exe" "C:\Windows\SysWOW64\rundll32.exe" "C:\Users\ACER\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe" "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" "C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe" "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY "C:\Program Files (x86)\iTunes\iTunesHelper.exe" "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hbrmon.exe" "C:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXE" "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" taskeng.exe {865A65F8-EE20-49CD-9977-53376BF1B043} "C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe" "C:\Windows\system32\wuauclt.exe" "C:\Windows\sysWow64\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-981637665-1960542106-3209509957-100115_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-981637665-1960542106-3209509957-100115 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" "C:\Program Files (x86)\Microsoft Office\OFFICE11\WINWORD.EXE" -Embedding "C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe" C:\Windows\splwow64.exe 8192 C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=037f4a4a-84bc-4f4a-ab61-260df447c073 /coreSdkOptions=4096 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\a2660139-e3c4-466d-bb05-fe72000b343c-e08-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\" "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4368 CREDAT:267521 /prefetch:2 C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe -Embedding "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4368 CREDAT:1578348 /prefetch:2 "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4368 CREDAT:1905963 /prefetch:2 C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\sppsvc.exe "C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540 "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-981637665-1960542106-3209509957-100116_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-981637665-1960542106-3209509957-100116 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" "C:\Users\ACER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWPRG338\RSITx64.exe" C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF} ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}] DefaultTab Browser Helper - C:\Users\ACER\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll [2013-11-11 462968] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797}] Search Assistant BHO - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hSrcAs.dll [2013-11-09 62864] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d}] Toolbar BHO - C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hbar.dll [2013-11-09 716360] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {cd1a63ba-a08c-431b-9a34-f240aadc728d} - Allin1Convert - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hbar.dll [2013-11-09 716360] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-11-30 11660904] "Allin1Convert Home Page Guard 64 bit"=C:\PROGRA~2\ALLIN1~2\bar\1.bin\AppIntegrator64.exe [2013-11-09 548936] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2010-10-13 3366200] "LaCie Ethernet Agent Startup"=C:\Program Files (x86)\LaCie\Network Assistant\LaCie Network Assistant.exe [2009-10-16 5722112] "NTRedirect"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-09-28 340336] "EgisTecPMMUpdate"=C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-09-18 407920] "EgisUpdate"=C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-09-18 201584] "Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056] "IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2010-11-05 283160] "ArcadeMovieService"=C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [2011-05-13 177448] "Hotkey Utility"=C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2011-01-19 620136] "AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2013-10-07 4908592] "APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720] "iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-05-31 152392] "beid"=C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe /startup [] "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888] "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "Allin1Convert Search Scope Monitor"=C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hsrchmn.exe [2013-11-09 44784] "Allin1Convert_8h Browser Plugin Loader"=C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hbrmon.exe [2013-11-09 30096] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "DisableTaskMgr"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 "NoRun"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-11-11 14:33:54 ----D---- C:\rsit 2013-11-11 14:33:54 ----D---- C:\Program Files\trend micro 2013-11-11 11:25:37 ----D---- C:\sh4ldr 2013-11-11 11:25:17 ----D---- C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP 2013-11-11 11:07:58 ----D---- C:\Users\ACER\AppData\Roaming\com.prezi.PreziDesktop 2013-11-11 11:07:44 ----D---- C:\Program Files (x86)\DefaultTab 2013-11-11 11:07:40 ----D---- C:\Users\ACER\AppData\Roaming\defaulttab 2013-11-09 12:46:13 ----D---- C:\Program Files (x86)\Allin1Convert_8h 2013-10-31 12:18:39 ----D---- C:\ProgramData\APN 2013-10-31 12:16:34 ----A---- C:\Windows\SYSWOW64\javaws.exe 2013-10-31 12:16:32 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll 2013-10-31 12:16:32 ----A---- C:\Windows\SYSWOW64\javaw.exe 2013-10-31 12:16:32 ----A---- C:\Windows\SYSWOW64\java.exe 2013-10-30 21:45:11 ----D---- C:\Users\ACER\AppData\Roaming\Mozilla 2013-10-30 21:45:08 ----D---- C:\Program Files (x86)\TornTV.com 2013-10-22 17:06:41 ----D---- C:\ProgramData\Oracle 2013-10-20 17:00:59 ----D---- C:\Program Files (x86)\EaseUS 2013-10-20 12:31:02 ----A---- C:\Windows\vx86036.dat 2013-10-20 12:30:52 ----A---- C:\CKINFO.TXT 2013-10-20 12:30:41 ----D---- C:\ProgramData\CrypKey 2013-10-20 12:30:32 ----A---- C:\Windows\Crypkey.ini 2013-10-20 12:30:29 ----RA---- C:\Windows\Setup_ck.exe 2013-10-20 12:30:29 ----A---- C:\Windows\system32\Crypserv.exe 2013-10-20 12:30:29 ----A---- C:\Windows\system32\Ckldrv.sys 2013-10-20 12:30:29 ----A---- C:\Windows\Setup_ck.dll 2013-10-20 12:30:29 ----A---- C:\Windows\Ckrfresh.exe 2013-10-20 12:30:29 ----A---- C:\Windows\Ckconfig.exe 2013-10-20 12:30:27 ----D---- C:\Program Files (x86)\Stellar Phoenix Outlook PST Repair 2013-10-20 12:30:17 ----A---- C:\spopr.exe ======List of files/folders modified in the last 1 month====== 2013-11-11 14:33:54 ----RD---- C:\Program Files 2013-11-11 14:31:09 ----D---- C:\Windows\Temp 2013-11-11 14:30:57 ----D---- C:\ProgramData\clear.fi 2013-11-11 14:13:30 ----SHD---- C:\Windows\Installer 2013-11-11 13:37:14 ----D---- C:\Windows\System32 2013-11-11 13:37:14 ----D---- C:\Windows\inf 2013-11-11 13:37:14 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-11-11 13:35:46 ----D---- C:\Windows\Prefetch 2013-11-11 11:47:20 ----A---- C:\Windows\SYSWOW64\log.txt 2013-11-11 11:43:42 ----D---- C:\ProgramData\NVIDIA 2013-11-11 11:36:53 ----D---- C:\Windows\system32\config 2013-11-11 11:30:55 ----D---- C:\Windows\system32\wbem 2013-11-11 11:30:55 ----D---- C:\Windows 2013-11-11 11:29:56 ----D---- C:\ProgramData\MFAData 2013-11-11 11:29:54 ----SD---- C:\Users\ACER\AppData\Roaming\Microsoft 2013-11-11 11:29:54 ----HD---- C:\Windows\system32\GroupPolicy 2013-11-11 11:29:54 ----D---- C:\Windows\Tasks 2013-11-11 11:29:54 ----D---- C:\Windows\SYSWOW64\drivers 2013-11-11 11:29:54 ----D---- C:\Windows\SysWOW64 2013-11-11 11:29:54 ----D---- C:\Windows\system32\DriverStore 2013-11-11 11:29:54 ----D---- C:\Windows\system32\catroot2 2013-11-11 11:29:54 ----D---- C:\Windows\registration 2013-11-11 11:29:54 ----D---- C:\Users\ACER\AppData\Roaming\PowerCinema 2013-11-11 11:27:41 ----SHD---- C:\System Volume Information 2013-11-11 11:12:27 ----RD---- C:\Program Files (x86) 2013-11-11 11:07:41 ----D---- C:\Windows\SYSWOW64\GroupPolicy 2013-11-01 09:11:04 ----D---- C:\Windows\system32\Tasks 2013-10-31 13:09:58 ----D---- C:\Users\ACER\AppData\Roaming\uTorrent 2013-10-31 13:06:22 ----D---- C:\Users\ACER\AppData\Roaming\vlc 2013-10-31 12:43:31 ----HD---- C:\ProgramData 2013-10-31 12:16:38 ----D---- C:\Program Files (x86)\Common Files 2013-10-31 12:16:32 ----D---- C:\Program Files (x86)\Java 2013-10-29 18:16:08 ----D---- C:\Windows\system32\wfp 2013-10-29 18:16:08 ----D---- C:\Windows\system32\drivers\UMDF 2013-10-29 18:16:08 ----D---- C:\Windows\system32\drivers 2013-10-29 18:16:08 ----D---- C:\Windows\system32\CodeIntegrity 2013-10-29 18:16:07 ----D---- C:\Windows\AppCompat 2013-10-29 18:09:53 ----D---- C:\Windows\system32\LogFiles 2013-10-21 15:18:08 ----D---- C:\Windows\system32\NDF 2013-10-20 15:58:00 ----D---- C:\Windows\rescache 2013-10-16 13:38:00 ----AD---- C:\ProgramData\Temp 2013-10-12 07:02:02 ----D---- C:\Windows\system32\wdi ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-09-02 192824] R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-09-02 294712] R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-08-20 123704] R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-09-08 31544] R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-05 438808] R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-02-24 25960] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2013-09-25 148792] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-09-02 241464] R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-09-02 212280] R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2013-08-01 251192] R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-03-16 22912] R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-03-16 20328] R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-03-16 62584] R1 NetworkX;NetworkX; C:\Windows\syswow64\ckldrv.sys [] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R3 ACSSCR;ACR38 Smart Card Reader; C:\Windows\system32\DRIVERS\a38usb.sys [2013-08-14 44672] R3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984] R3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784] R3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384] R3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2010-09-15 20552] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-30 2647528] R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344] R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752] R3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-12-24 412264] R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144] R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576] R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840] R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208] R3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496] S3 AGERESoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-08-20 103576] S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2011-03-02 13088] S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista; C:\Windows\system32\DRIVERS\netr28x.sys [2009-06-10 620544] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-08-20 204568] S3 ssudobex;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudobex.sys [2013-08-20 204568] S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudserd.sys [2013-08-20 204568] S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2010-09-15 16392] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784] S3 usbrndis6;USB RNDIS6-adapter; C:\Windows\system32\DRIVERS\usb80236.sys [2013-02-12 19968] S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Allin1Convert_8hService;Allin1ConvertService; C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hbarsvc.exe [2013-11-09 44752] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2013-10-03 3538480] R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2013-09-25 301152] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] R2 Crypkey License;Crypkey License; C:\Windows\system32\crypserv.exe [2008-05-08 122880] R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504] R2 DefaultTabUpdate;DefaultTabUpdate; C:\Users\ACER\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe [2013-11-11 107520] R2 dgdersvc;Device Error Recovery Service; C:\Windows\system32\dgdersvc.exe [2010-09-15 119632] R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376] R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-05 13336] R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-01-31 244624] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2011-02-01 326168] R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080] R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-02-23 1005160] R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-02-23 378472] R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-02-01 2656280] R2 USBS3S4Detection;USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [2009-12-09 76320] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-05-31 641352] R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 DefaultTabSearch;DefaultTabSearch; C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe [2013-10-07 573952] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-15 116648] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09 257416] S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-09-28 172912] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-15 116648] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-08-16 194032] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-08-16 1255736] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] -----------------EOF-----------------
-
ik zit met een virus nl my search results: hoe kan ik dat verwijderen vanmijn pc?
-
ik heb het gevonden via de instellingen van google chrome. Lijkt opgelost te zijn. Bedankt.
-
hoe kan ik delta search verwijderen uit google chrome. ik heb via instellingen zoekmachines in google chrome een ander zoekmachine als standaard gezet en delta search uit de lijst verwijderd. toch komt delta search bij opstart telkens weer terug. via configuratiescherm en dan programma's verwijderen lukt het niet omdat het niet tussen de lijst met geinstalleerde programma's staat.
-
office 2010 starten installeren terwijl office 2003 al actief is
Brejen reageerde op Brejen's topic in Archief Microsoft Office
OK, is gelukt. Bedankt.
