Ga naar inhoud

wim aarnink

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    97

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door wim aarnink

  1. wim aarnink
    maar hoe krijg ik al mijn Hotmail post terug??
  2. wim aarnink
    mijn dochter heb een probleem ze kan geen post meer lezen in haar hotmail, dus ze kan geen beveiligingscode gebruiken voor haar account want ze kan niks aflezen hoe is dat op te lossenze moet haar hotmail adres invoeren om een code te ontvangen,n maar aangezien ze niks kan lezen in haar hotmail staan wij voor een raadsel HELP A.U.B:adore:
  3. wim aarnink
    ik kan weer inloggen wat er is gebeurd allemaal weet ikzelf niet
  4. wim aarnink
    In mijn downloads
  5. wim aarnink
    # AdwCleaner v3.212 - Rapport aangemaakt 08/06/2014 op 09:39:28 # Laatste Update 05/06/2014 door Xplode # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits) # Gebruikersnaam : Gebruiker - GEBRUIKER-PC # Gestart vanuit : C:\Users\Gebruiker\Downloads\adwcleaner_3.212 (1).exe # Optie : Verwijderen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** Map Verwijderd : C:\Program Files (x86)\SerialTrunc Bestand Verwijderd : C:\Users\Public\Desktop\RegClean Pro.lnk ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AskToolbarNRO_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AskToolbarNRO_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\YontooDesktop_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\YontooDesktop_RASMANCS Sleutel Verwijderd : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{976137e5} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F} Sleutel Verwijderd : HKCU\Software\IM Sleutel Verwijderd : HKCU\Software\ImInstaller Sleutel Verwijderd : HKCU\Software\Softonic Sleutel Verwijderd : HKCU\Software\systweak Sleutel Verwijderd : HKLM\Software\{5F189DF5-2D05-472B-9091-84D9848AE48B} Sleutel Verwijderd : HKLM\Software\{77D46E27-0E41-4478-87A6-AABE6FBCF252} Sleutel Verwijderd : HKLM\Software\ImInstaller Sleutel Verwijderd : HKLM\Software\systweak Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean-Pro_is1 ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17041 -\\ Google Chrome v33.0.1750.154 [ Bestand : C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [15514 octets] - [08/01/2014 19:48:16] AdwCleaner[R1].txt - [957 octets] - [11/01/2014 11:44:41] AdwCleaner[R2].txt - [2671 octets] - [08/06/2014 09:37:49] AdwCleaner[s2].txt - [2360 octets] - [08/06/2014 09:39:28] ########## EOF - C:\AdwCleaner\AdwCleaner[s2].txt - [2420 octets] ########## - - - Updated - - - wat is eigenlijk yosetup voor een programma
  6. wim aarnink
    oek.exe v5.0.0.0 Updated 02-June-2014 Tool run by Gebruiker on zo 08-06-2014 at 8:49:25,19. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Gebruiker\Downloads\zoek (1).exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2014-01-13-174658.log 15993 bytes C:\zoek-results2014-06-07-164222.log 15969 bytes ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1055028090-3034766534-2611135348-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2459} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Update SecretSauce] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Util SecretSauce] ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\Torntv V6.0 not found C:\Windows\Sysnative\Tasks\RegClean Pro deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro deleted C:\Windows\SysNative\tasks\Torntv V6.0-chromeinstaller deleted C:\Users\Gebruiker\AppData\LocalLow\{2404C97D-BEA9-B7B3-9BC3-5031D329F39D} deleted C:\Users\Gebruiker\AppData\LocalLow\{934F1A0F-37F1-3A71-8B6B-82187C74CD28} deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\{2404C97D-BEA9-B7B3-9BC3-5031D329F39D} deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\{934F1A0F-37F1-3A71-8B6B-82187C74CD28} deleted C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{2404C97D-BEA9-B7B3-9BC3-5031D329F39D} deleted C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{934F1A0F-37F1-3A71-8B6B-82187C74CD28} deleted C:\Users\Gebruiker\daemonprocess.txt deleted C:\Users\Gebruiker\.android deleted C:\PROGRA~2\Mobogenie deleted C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted C:\PROGRA~2\RegClean Pro deleted C:\PROGRA~2\SupTab deleted C:\PROGRA~2\Systweak deleted C:\Users\Gebruiker\AppData\Roaming\newnext.me deleted C:\Users\Gebruiker\AppData\Roaming\GoforFiles deleted C:\Users\Gebruiker\AppData\Roaming\ParetoLogic deleted C:\Users\Gebruiker\AppData\Roaming\DriverCure deleted C:\Users\Gebruiker\AppData\Roaming\SoftonicSearchDeskBar deleted C:\Users\Gebruiker\AppData\Roaming\systweak deleted C:\PROGRA~3\IePluginService deleted C:\PROGRA~3\ParetoLogic deleted C:\PROGRA~3\WPM deleted C:\PROGRA~3\InstallMate deleted C:\Users\Gebruiker\AppData\Local\Mobogenie deleted C:\Users\Gebruiker\AppData\Local\cache deleted C:\Users\Gebruiker\AppData\Local\SwvUpdater deleted C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Systweak PhotoStudio deleted C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\Windows\SysNative\roboot64.exe deleted C:\Users\Gebruiker\Downloads\iLividSetup-r834-n-bc.exe deleted C:\Users\Gebruiker\Downloads\BearShareSetup-r20-n-bc.exe deleted C:\Users\Gebruiker\Downloads\SoftonicDownloader_voor_bluestacks-app-player.exe deleted C:\Users\Gebruiker\Downloads\SoftonicDownloader_voor_total-video-converter.exe deleted C:\Users\Gebruiker\Downloads\SoftonicDownloader_voor_utorrent.exe deleted C:\windows\SysNative\tasks\RegClean Prosch deleted C:\Windows\tasks\RegClean Prosch.job deleted C:\components deleted C:\Windows\SysWow64\AI_RecycleBin deleted C:\Windows\SysWow64\searchplugins deleted C:\Windows\SysWow64\Extensions deleted C:\Users\Gebruiker\Documents\Mobogenie deleted ==== Chrome Look ====================== ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://search.conb_original_ctid&searchsource=55&cui=&um=2&up=spdd8833cd-10d8-4e94-a3a7-c21b55a73575&sspv=/" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" "Use Search Asst"="yes" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "Default"="http://www.google.com" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="http://www.google.com" @="http://www.google.com/search?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://www.google.com/ie" "SearchAssistant"="http://www.google.com/ie" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{9BB47C17-9C68-4BB3-B188-DD9AF0FD2459}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2459}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://search.conb_original_ctid&searchsource=55&cui=&um=2&up=spdd8833cd-10d8-4e94-a3a7-c21b55a73575&sspv=/" "Use Search Asst"="no" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {344C5669-1BA1-42FA-8C92-8CDCA3B2F97B} Google Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F80C6155-27AE-20E4-6109-738959969CED} deleted successfully HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google\Chrome\ExtensionInstallForcelist deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=620 folders=144 137893619 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Gebruiker\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on zo 08-06-2014 at 9:02:45,50 ====================== ikzelf snap er niks meer van:hmmmm:
  7. wim aarnink
    Zoek.exe v5.0.0.0 Updated 02-June-2014 Tool run by Gebruiker on za 07-06-2014 at 18:38:27,85. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Gebruiker\Downloads\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2014-01-13-174658.log 15993 bytes ==== Empty Folders Check ====================== C:\PROGRA~3\CanonEPP deleted successfully C:\PROGRA~3\CanonIJEPPEX2 deleted successfully C:\PROGRA~3\Oracle deleted successfully ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Browser Infrastructure Helper] ==== Deleting Files \ Folders ====================== C:\Users\Gebruiker\AppData\Roaming\Systweak deleted C:\Program Files (x86)\RegClean Pro deleted C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 deleted "C:\windows\SysNative\roboot64.exe" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\GEBRUI~1\AppData\Local\Temp ==== 2014-06-07 12:49:39 5634C601025C31032A0AF1590B4C0CA6 43008 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp59kr8z.dll 2014-06-06 05:13:12 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{E83E98C3-306F-4772-908E-375F9497A9E8}\GoogleCrashHandler.exe ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== ====== C:\Windows\Tasks ====== 2014-06-07 12:51:48 D8113471914AF22112C7EF7C7837A406 3108 ----a-w- C:\Windows\Sysnative\Tasks\RegClean Pro ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== ======= C: ===== ====== C:\Users\Gebruiker\AppData\Roaming ====== 2014-06-06 10:44:54 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Adobe 2014-06-05 19:36:59 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\DriverCure 2014-05-31 10:39:06 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Apple Computer 2014-05-31 10:39:05 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Apple Computer 2014-05-31 10:35:46 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Apple ====== C:\Users\Gebruiker ====== 2014-06-07 13:11:21 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64 (4).exe 2014-06-07 13:05:02 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64 (3).exe 2014-06-07 12:51:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro 2014-06-07 12:50:40 67D60603161E3C98896819D375AC31AF 4417560 ----a-w- C:\Users\Gebruiker\Downloads\regcleanpro_trial (1).exe 2014-06-07 12:50:05 67D60603161E3C98896819D375AC31AF 4417560 ----a-w- C:\Users\Gebruiker\Downloads\regcleanpro_trial.exe 2014-05-31 10:37:00 -------- d-----w- C:\ProgramData\Apple Computer 2014-05-31 10:34:01 -------- d-----w- C:\ProgramData\Apple ====== C: exe-files == 2014-06-07 16:36:54 EF375FDE69D75A0F0A8052ABD7D65295 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$I1UWCO0.exe 2014-06-07 16:35:09 352E8561E633B17ED22012366721FFDC 1285120 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$R1UWCO0.exe 2014-06-07 16:34:34 5270588C3A2AB3130C3C34BD25F86725 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$I3V8GT8.exe 2014-06-07 16:33:10 352E8561E633B17ED22012366721FFDC 1285120 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$R3V8GT8.exe 2014-06-07 16:32:21 875A8CAD05B71084E05A8BE57A56A9A3 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$I1OE2XU.exe 2014-06-07 16:32:07 E08BA2ED39A713CA344625346980EC3F 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$IIAOHLX.exe 2014-06-07 16:29:39 352E8561E633B17ED22012366721FFDC 1285120 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$RIAOHLX.exe 2014-06-07 13:11:21 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64 (4).exe 2014-06-07 13:05:02 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64 (3).exe 2014-06-07 12:50:40 67D60603161E3C98896819D375AC31AF 4417560 ----a-w- C:\Users\Gebruiker\Downloads\regcleanpro_trial (1).exe 2014-06-07 12:50:05 67D60603161E3C98896819D375AC31AF 4417560 ----a-w- C:\Users\Gebruiker\Downloads\regcleanpro_trial.exe 2014-06-06 05:13:12 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{E83E98C3-306F-4772-908E-375F9497A9E8}\GoogleCrashHandler.exe === C: other files == 2014-06-07 16:36:49 0B0129090139E42535392E975448028E 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$I91BMJC.zip 2014-06-07 16:36:02 63A9E8A7CB614C7008E295E6AD1906DB 4095664 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$R91BMJC.zip 2014-06-07 16:34:41 F2BDA19E942FDAC0CE66906C25650243 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$ITZS8WD.zip 2014-06-07 16:33:35 63A9E8A7CB614C7008E295E6AD1906DB 4095664 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$RTZS8WD.zip 2014-06-07 16:32:26 12CB44FD050B63FFFE34EC91E72A0C87 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$IK885NU.zip 2014-06-07 16:32:15 53490A5C7725C16DE34462A7F8952788 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$IH3KV2S.zip 2014-06-07 16:30:50 63A9E8A7CB614C7008E295E6AD1906DB 4095664 ----a-w- C:\$Recycle.Bin\S-1-5-21-1055028090-3034766534-2611135348-1000\$RH3KV2S.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1055028090-3034766534-2611135348-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"="C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe /c" "KiesPreload"="C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload" "KiesPDLR.exe"="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CanonSolutionMenuEx"="C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"="C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe /c" "KiesPreload"="C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload" "KiesPDLR.exe"="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "CanonMyPrinter"="C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKCU" "command"="C:\\Program Files (x86)\\Samsung\\Kies\\External\\FirmwareUpdate\\KiesPDLR.exe Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BitTorrent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BitTorrent" "hkey"="HKCU" "command"="\"C:\\Users\\Gebruiker\\AppData\\Roaming\\BitTorrent\\BitTorrent.exe\" /MINIMIZED" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Facebook Update] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Facebook Update" "hkey"="HKCU" "command"="\"C:\\Users\\Gebruiker\\AppData\\Local\\Facebook\\Update\\FacebookUpdate.exe\" /c /nocrashserver" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesPreload] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="KiesPreload" "hkey"="HKCU" "command"="C:\\Program Files (x86)\\Samsung\\Kies\\Kies.exe /preload" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesTrayAgent] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="KiesTrayAgent" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Samsung\\Kies\\KiesTrayAgent.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Samsung Link] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Samsung Link" "hkey"="HKLM" "command"="\"C:\\Program Files\\Samsung\\Samsung Link\\Samsung Link Tray Agent.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="uTorrent" "hkey"="HKCU" "command"="\"C:\\Users\\Gebruiker\\AppData\\Roaming\\uTorrent\\uTorrent.exe\" /MINIMIZED" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Gebruiker^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk] "path"="C:\\Users\\Gebruiker\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Dropbox.lnk" "backup"="C:\\Windows\\pss\\Dropbox.lnk.Startup" "backupExtension"=".Startup" "command"="C:\\Users\\GEBRUI~1\\AppData\\Roaming\\Dropbox\\bin\\Dropbox.exe /systemstartup" "item"="Dropbox" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\bthserv] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gusvc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Update SecretSauce] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Util SecretSauce] ==== Startup Folders ====================== 2014-04-25 09:22:53 1015 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2013-03-06 14:14:09 1300 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [13-04-2014 08:23] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core.job --a------ C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe [24-01-2013 11:30] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA.job --a------ C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe [24-01-2013 11:30] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:6C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [04-03-2013 23:14] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core.job --a------ C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [04-03-2013 23:20] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA.job --a------ C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [04-03-2013 23:20] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core" [C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA" [C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core" [C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA" [C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\Windows\SysNative\tasks\Open URL by RoboForm" [C:\Windows\system32\rundll32.exe url.dll,FileProtocolHandler "http://www.roboform.com/uninstall.html?aaa=KICMPMOMJMGMGMNJNJJJCNHMOJOMKMCNLMLMLJHMCNHMPMJJNMCNGMNJIMOMNJHMMJNMOMOJKJNMJNJICMIMCNGMCNPMFMGMCNOMPMCNGMNMPMPMFMJMCNOMCNIMJMPMOMCNNMJNPICMPMFMFMPMJNHICMEKMICNJJCKJNBJCMILKJNJNIKIGJEJKJNIJNKJCMJNNICMJNDJCMBJDJ"] "C:\Windows\SysNative\tasks\RegClean Pro" [C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe] "C:\Windows\SysNative\tasks\Run RoboForm TaskBar Icon" [C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe] "C:\Windows\SysNative\tasks\Torntv V6.0-chromeinstaller" [C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-chromeinstaller.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{95D3121F-2448-4974-958E-5F8B4C8276CE}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== C:\zoek_backup content ====================== C:\zoek_backup (files=93 folders=17 28697324 bytes) ==== EOF on za 07-06-2014 at 18:42:22,54 ======================
  8. wim aarnink
    ogfile of random's system information tool 1.10 (written by random/random) Run by Gebruiker at 2014-06-07 15:11:44 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 153 GB (50%) free of 305 GB Total RAM: 2908 MB (44% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:11:46, on 7-6-2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17041) Boot mode: Normal Running processes: C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\Samsung\Kies\Kies.exe C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files\trend micro\Gebruiker.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conb_original_ctid&searchsource=55&cui=&um=2&up=spdd8833cd-10d8-4e94-a3a7-c21b55a73575&sspv=/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Google Update] "C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload O4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {9C65AB3E-C9A8-4789-AE24-B365A1C4A6F9} (SNRet Control) - http://acer.custhelp.com/euf/assets/activex/snret.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AllShare Framework DMS - Samsung - C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Samsung Link Service - Copyright 2013 SAMSUNG - C:\Program Files\Samsung\Samsung Link\Samsung Link.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 8974 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS "c:\Program Files\Microsoft Security Client\MsMpEng.exe" C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WLANExt.exe 925248 \??\C:\Windows\system32\conhost.exe "11279203801107410469-1365481679-2695235932096199639324206885-1876978153-608030055 C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE taskeng.exe {696698EF-6D8C-447D-AF48-C62B4F8F49F9} "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c "C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler.exe" "C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler64.exe" "C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe" "C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe" "C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe" \??\C:\Windows\system32\conhost.exe "-14944601431778872005-31023763576852704302051443-660372371554808805849483632 "C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE" "C:\Program Files\Samsung\Samsung Link\Samsung Link.exe" "C:\Program Files\Samsung\Samsung Link\Samsung Link.exe" "Samsung Link Service" __i4j_restart C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe" "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" WLIDSvcM.exe 1344 "c:\Program Files\Microsoft Security Client\NisSrv.exe" C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey "C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon "C:\Windows\System32\igfxtray.exe" "C:\Windows\System32\hkcmd.exe" "C:\Windows\System32\igfxpers.exe" "C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe" /c "C:\Program Files (x86)\Samsung\Kies\Kies.exe" /preload "C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" C:\Windows\splwow64.exe 8192 "C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE" /tsr C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\Synaptics\SynTP\SynTPHelper.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\Dropbox.exe" /TAGS:@FULL-{4966CC59-F7D0-4064-8B1F-4FE13254D239} /firstrunupdate 0 C:\Windows\servicing\TrustedInstaller.exe C:\Windows\system32\svchost.exe -k SDRSVC "C:\Program Files (x86)\Windows Live\Mail\wlmail.exe" "C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe" -Embedding "C:\Windows\system32\wuauclt.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "http://www.pc-helpforum.be/f387/horizon-70648-new/" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4304.0.1952725446\2052184712" --disable-image-transport-surface --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,27 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.3347 --ignored=" --type=renderer " /prefetch:822062411 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-1-Percent/group_43/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4304.1.675769545\303075887" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4304.3.1012161832\724812287" --ppapi-flash-args=enable_hw_video_decode=1 --lang=nl --ignored=" --type=renderer " /prefetch:-632637702 "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520 taskhost.exe $(Arg0) "C:\Users\Gebruiker\Downloads\RSITx64 (4).exe" C:\Windows\system32\wbem\wmiprvse.exe ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core.job - C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA.job - C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core.job - C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA.job - C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Microsoft-account - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-07-29 2280232] "MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072] "CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-03-25 2726728] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-01-29 171992] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-01-29 399832] "Persistence"=C:\Windows\system32\igfxpers.exe [2014-01-29 442328] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"=C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-04 116648] "KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2014-02-14 1564992] "KiesPDLR.exe"=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2014-02-14 845120] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent] C:\Users\Gebruiker\AppData\Roaming\BitTorrent\BitTorrent.exe [2013-12-01 895328] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Browser Infrastructure Helper] C:\Users\Gebruiker\AppData\Local\Smartbar\Application\Linkury.exe startup [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update] C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-24 138096] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe [2014-02-14 1564992] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-02-14 311616] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Samsung Link] C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [2014-03-13 600928] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent] C:\Users\Gebruiker\AppData\Roaming\uTorrent\uTorrent.exe [2013-11-27 1142864] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Gebruiker^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk] C:\Users\GEBRUI~1\AppData\Roaming\Dropbox\bin\Dropbox.exe [2014-05-20 33322312] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Dropbox.lnk - C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\Dropbox.exe OneNote 2010 Schermopname en Snel starten.lnk - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2014-01-29 442880] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "MSVideo8"=VfWWDM32.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-06-07 14:51:32 ----A---- C:\Windows\system32\roboot64.exe 2014-06-06 11:55:58 ----D---- C:\Users\Gebruiker\AppData\Roaming\Systweak 2014-06-06 11:55:48 ----D---- C:\Program Files (x86)\RegClean Pro 2014-06-05 22:12:55 ----HD---- C:\Windows\msdownld.tmp 2014-06-05 21:36:59 ----D---- C:\Users\Gebruiker\AppData\Roaming\ParetoLogic 2014-06-05 21:36:59 ----D---- C:\Users\Gebruiker\AppData\Roaming\DriverCure 2014-06-05 21:36:41 ----D---- C:\ProgramData\ParetoLogic 2014-05-31 12:39:05 ----D---- C:\Users\Gebruiker\AppData\Roaming\Apple Computer 2014-05-31 12:37:00 ----D---- C:\ProgramData\Apple Computer 2014-05-31 12:37:00 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-05-31 12:34:01 ----D---- C:\ProgramData\Apple ======List of files/folders modified in the last 1 month====== 2014-06-07 15:11:46 ----D---- C:\Program Files\trend micro 2014-06-07 15:11:24 ----D---- C:\Windows\Temp 2014-06-07 15:02:00 ----SHD---- C:\System Volume Information 2014-06-07 15:00:54 ----D---- C:\Windows\system32\catroot 2014-06-07 15:00:52 ----D---- C:\Windows\winsxs 2014-06-07 15:00:40 ----D---- C:\Windows\system32\catroot2 2014-06-07 14:55:21 ----D---- C:\Windows\system32\Tasks 2014-06-07 14:51:32 ----D---- C:\Windows\System32 2014-06-07 14:50:25 ----D---- C:\Windows\system32\config 2014-06-07 14:50:05 ----D---- C:\Users\Gebruiker\AppData\Roaming\Dropbox 2014-06-07 14:49:56 ----D---- C:\Users\Gebruiker\AppData\Roaming\DropboxMaster 2014-06-07 14:45:32 ----D---- C:\Windows\Tasks 2014-06-07 14:45:32 ----D---- C:\Windows\SysWOW64 2014-06-07 14:45:32 ----D---- C:\Windows\system32\wfp 2014-06-07 14:45:32 ----D---- C:\Windows\system32\nl-NL 2014-06-07 14:45:31 ----D---- C:\Windows\inf 2014-06-07 14:45:27 ----D---- C:\Windows\system32\wbem 2014-06-07 14:45:27 ----D---- C:\Windows 2014-06-07 14:44:30 ----D---- C:\Windows\system32\DriverStore 2014-06-07 14:44:30 ----D---- C:\Windows\system32\drivers 2014-06-07 14:44:27 ----D---- C:\Windows\SYSWOW64\wbem 2014-06-07 14:44:21 ----D---- C:\Windows\SYSWOW64\Macromed 2014-06-07 14:44:20 ----D---- C:\Windows\system32\NDF 2014-06-07 14:44:20 ----D---- C:\Windows\system32\Macromed 2014-06-07 14:44:20 ----D---- C:\Windows\system32\drivers\UMDF 2014-06-07 14:44:20 ----D---- C:\Windows\system32\CodeIntegrity 2014-06-07 14:44:19 ----SHD---- C:\Windows\Installer 2014-06-07 14:44:19 ----D---- C:\Windows\pss 2014-06-07 14:44:13 ----D---- C:\Users\Gebruiker\AppData\Roaming\vlc 2014-06-07 14:44:12 ----D---- C:\Users\Gebruiker\AppData\Roaming\IDM 2014-06-07 14:44:12 ----D---- C:\Users\Gebruiker\AppData\Roaming\dvdcss 2014-06-07 14:43:59 ----HD---- C:\ProgramData\CanonIJEGV 2014-06-07 14:43:59 ----HD---- C:\ProgramData 2014-06-07 14:43:59 ----D---- C:\ProgramData\Microsoft Help 2014-06-07 14:43:59 ----D---- C:\ProgramData\IDM 2014-06-07 14:43:59 ----D---- C:\ProgramData\CanonIJ 2014-06-07 14:43:58 ----D---- C:\Program Files\Internet Explorer 2014-06-07 14:43:58 ----D---- C:\Program Files (x86)\Internet Explorer 2014-06-07 14:43:58 ----D---- C:\Program Files (x86)\Common Files 2014-06-07 14:43:14 ----D---- C:\Windows\registration 2014-06-07 14:42:27 ----D---- C:\Windows\Microsoft.NET 2014-06-07 14:42:21 ----RSD---- C:\Windows\assembly 2014-06-07 14:41:26 ----RD---- C:\Program Files (x86) 2014-06-07 14:41:26 ----RD---- C:\Program Files 2014-06-07 14:41:26 ----D---- C:\Program Files\Common Files 2014-06-07 14:41:23 ----RHD---- C:\MSOCache 2014-06-06 13:21:55 ----D---- C:\Windows\SoftwareDistribution 2014-06-05 14:36:18 ----D---- C:\ProgramData\CanonIJPLM 2014-05-31 12:46:29 ----DC---- C:\Windows\system32\DRVSTORE 2014-05-22 07:36:47 ----D---- C:\Windows\Logs 2014-05-22 07:36:46 ----D---- C:\Windows\debug 2014-05-15 07:46:16 ----D---- C:\Windows\system32\MRT ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928] R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-08-23 3724288] R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2012-08-13 72280] R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2012-08-13 21080] R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2012-06-18 55384] R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2012-08-14 70744] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-29 5363200] R3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-01-17 412712] R3 MEIx64;Intel® Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-07-29 1383472] R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-23 108800] S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\SysWOW64\FsUsbExDisk.SYS [2013-02-05 37344] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-23 206080] S3 tap0901;Spotflux Network Device Driver; C:\Windows\system32\DRIVERS\tap0901.sys [2013-01-10 38624] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496] S3 WinUSB;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-21 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AllShare Framework DMS;AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [2013-12-21 404360] R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-12-28 101376] R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2010-04-05 116104] R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808] R2 Samsung Link Service;Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [2014-03-13 609632] R2 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-10-23 2848168] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480] R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872] S2 976137e5;WebPlat; C:\Windows\syswow64\rundll32.exe [2009-07-14 44544] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] S3 cphs;Intel® Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-29 279000] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-13 1255736] S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432] S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-13 257712] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S4 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-04 136176] S4 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-04 136176] S4 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF----------------- - - - Updated - - - zit hier wat bij soms?
  9. wim aarnink
    het probleem is niet opgelost na een systeemherstel
  10. wim aarnink

    horizon

    wim aarnink plaatste een topic in Archief Windows 7

    sinds kort kan ik miet meer inloggen op mijn horizon tv ,op de ipad en de telefoon krijg ik wel beeld maar op de laptop niet.bij de UPC zeggen ze dat ze wel kunnen inloggen met mijn gegevens en daar zeggen ze dat ik windows opnieuw moet installeren weten jullie zo wat voor bestand ik mis,en hoe kom ik daaraan:adore:help:bawling:
  11. wim aarnink
    ik heb een prestatie index uitgevoerd kunnen jullie mij vertellen wat de gegevens precies inhouden??of moer er het een of ander aan mijn laptop gebeuren? die 4,9 is dat een goede waarde?
  12. wim aarnink
    Wat zullen ze er bij DELL wel niet van vinden
  13. wim aarnink
    Ik heb bericht terug gehad over de laptop in de winkel vonden ze het ook allemaal heel raar accuwas goed ,adapter functioneerde goed maar de laptop werkte niet meer het was 1 DELL PRECISION M90 LAPTOP DUS IK ADVISEER SCHAF GEEN DELL LAPTOP AAN WANT HEB JE ER PROBLEMEN MEE TIS NIET OPLOSBAAR,!!!
  14. wim aarnink
  15. wim aarnink
    ik heb de laptop weggebr8
  16. wim aarnink
    Nul komma nul
  17. wim aarnink
    Het gaat over een dell precision m90 laptop als ik de startknop indruk valt hij zo weer uit van alles geprobeerd f8,f10,tab,en de fn toets maar er gebeurd niks
  18. wim aarnink
    De lampjes branden 2sec. En dan schakeld de laptop automatisch weer uit
  19. wim aarnink
    mijn DELL laptop met windows 7 erop wil niet meer opstarten waar kan dat aan liggen?
  20. wim aarnink
    ik heb een engels talige film gedowload nu wik ik hem voorzien van ondertiteling,de film is dances with wolves waar haal ik de ondertiteling vandaan?? en hoe transporteer ik het dan in de film??
  21. wim aarnink
    Zoek.exe v5.0.0.0 Updated 12-Januari-2014 Tool run by Gebruiker on ma 13-01-2014 at 18:41:49,87. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Gebruiker\Downloads\zoek (1).exe [scan all users] [script inserted] ==== System Restore Info ====================== 13-1-2014 18:42:36 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AVS4YOU deleted successfully C:\PROGRA~2\BearShare Applications deleted successfully C:\PROGRA~2\Mp3 To Wave Converter deleted successfully C:\PROGRA~2\RanndomPPricce deleted successfully C:\PROGRA~2\YoWindow deleted successfully C:\Program Files\Google deleted successfully C:\ProgramData\CanonEPP deleted successfully C:\ProgramData\CanonIJEPPEX2 deleted successfully C:\ProgramData\eMule deleted successfully C:\ProgramData\Oracle deleted successfully C:\ProgramData\RanndomPPricce deleted successfully C:\Users\Gebruiker\AppData\Roaming\Nico Mak Computing deleted successfully C:\Users\Gebruiker\AppData\Local\Fuze Zip deleted successfully C:\Users\Gebruiker\AppData\Local\FuzeZip deleted successfully ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2404C97D-BEA9-B7B3-9BC3-5031D329F39D}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2404C97D-BEA9-B7B3-9BC3-5031D329F39D}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\RanndomPPricce not found C:\ProgramData\RanndomPPricce not found C:\ProgramData\CheaPMe deleted C:\ProgramData\adbpbbbkcdghcpalelpliddmdeelcofm deleted C:\ProgramData\f1bb140aeae9bcc1 deleted C:\Users\Gebruiker\AppData\Roaming\newnext.me deleted "C:\ProgramData\WebPlat\WebPlat_x64.dll" deleted "C:\ProgramData\WebPlat" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\GEBRUI~1\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-01-06 19:23:36 1A5F9109705CF798D2ED9B5D7D596A72 4558848 ----a-w- C:\Windows\SysWOW64\GPhotos.scr ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-01-11 14:17:59 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== ======= C: ===== ====== C:\Users\Gebruiker\AppData\Roaming ====== 2014-01-07 09:58:42 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup 2014-01-02 17:21:03 -------- d-----w- C:\Users\Gebruiker\AppData\Locallow\{934F1A0F-37F1-3A71-8B6B-82187C74CD28} 2014-01-02 17:21:02 -------- d-----w- C:\Users\Gebruiker\AppData\Locallow\{2404C97D-BEA9-B7B3-9BC3-5031D329F39D} 2014-01-01 07:32:54 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Locallow\{934F1A0F-37F1-3A71-8B6B-82187C74CD28} 2014-01-01 07:32:42 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Locallow\{2404C97D-BEA9-B7B3-9BC3-5031D329F39D} 2014-01-01 07:32:42 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages 2013-12-30 10:30:13 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\LavasoftStatistics ====== C:\Users\Gebruiker ====== 2014-01-13 06:53:01 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Gebruiker\Desktop\RSITx64.exe 2014-01-13 06:51:33 708B4EDAC89885F6BC24A2DD486AC64D 1272 ----a-w- C:\Users\Gebruiker\Desktop\adware.exe 2014-01-12 07:57:26 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64 (2).exe 2014-01-11 14:17:22 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64 (1).exe 2014-01-11 14:12:39 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64.exe 2014-01-11 09:59:49 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Gebruiker\Downloads\adwcleaner (4).exe 2014-01-11 09:54:10 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Gebruiker\Downloads\AdwCleaner (3).exe 2014-01-11 09:52:51 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Gebruiker\Downloads\AdwCleaner (2).exe 2014-01-11 09:43:02 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Gebruiker\Downloads\adwcleaner (1).exe 2014-01-08 17:47:40 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Gebruiker\Downloads\adwcleaner.exe 2014-01-04 07:34:45 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\Gebruiker\Downloads\mbam-setup-1.75.0.1300 (3).exe 2013-12-30 10:11:35 -------- d-----w- C:\ProgramData\Lavasoft 2013-12-17 06:30:53 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth ====== C: exe-files == 2014-01-13 06:53:01 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Gebruiker\Desktop\RSITx64.exe 2014-01-13 06:51:33 708B4EDAC89885F6BC24A2DD486AC64D 1272 ----a-w- C:\Users\Gebruiker\Desktop\adware.exe 2014-01-12 07:57:26 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64 (2).exe 2014-01-11 14:18:00 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Gebruiker.exe 2014-01-11 14:17:22 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64 (1).exe 2014-01-11 14:12:39 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64.exe 2014-01-11 09:59:49 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Gebruiker\Downloads\adwcleaner (4).exe 2014-01-11 09:54:10 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Gebruiker\Downloads\AdwCleaner (3).exe 2014-01-11 09:52:51 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Gebruiker\Downloads\AdwCleaner (2).exe 2014-01-11 09:43:02 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Gebruiker\Downloads\adwcleaner (1).exe 2014-01-08 17:47:40 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Gebruiker\Downloads\adwcleaner.exe 2014-01-07 09:58:42 395FDFF5365F878DDFD7B435E7CB2AFD 71894 ----a-r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Installer\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}\GPUploader.exe 2014-01-06 20:53:26 CA6C073CAB5ADFAA2898771C262D0FC3 1071384 ----a-w- C:\Program Files (x86)\Google\Picasa3\PicasaUpdater.exe 2014-01-06 20:53:24 DE6E7A6AFDD684FB3EF48101B8A9C364 4811032 ----a-w- C:\Program Files (x86)\Google\Picasa3\PicasaPhotoViewer.exe 2014-01-06 20:53:02 8254CD23B40B25A6486CAB5B05CC7555 9992472 ----a-w- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe 2014-01-06 20:52:58 9437738476CDCDC0012EF66E3BC40207 715032 ----a-w- C:\Program Files (x86)\Google\Picasa3\moviethumb.exe 2014-01-06 20:52:54 70F553984736DEDD46FFBE184A3CF828 1104152 ----a-w- C:\Program Files (x86)\Google\Picasa3\cdautorun\PicasaRestore.exe 2014-01-06 20:52:52 723C6F3446082E94424357B6020DA7BC 1902872 ----a-w- C:\Program Files (x86)\Google\Picasa3\cdautorun\PicasaCD.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1055028090-3034766534-2611135348-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Google Update"="C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe /c" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CanonSolutionMenuEx"="C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Google Update"="C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe /c" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\progra~3\\webplat\\webplat.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "CanonMyPrinter"="C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKCU" "command"="C:\\Program Files (x86)\\Samsung\\Kies\\External\\FirmwareUpdate\\KiesPDLR.exe Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BitTorrent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BitTorrent" "hkey"="HKCU" "command"="\"C:\\Users\\Gebruiker\\AppData\\Roaming\\BitTorrent\\BitTorrent.exe\" /MINIMIZED" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Browser Infrastructure Helper] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Browser Infrastructure Helper" "hkey"="HKCU" "command"="C:\\Users\\Gebruiker\\AppData\\Local\\Smartbar\\Application\\Linkury.exe startup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesPreload] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="KiesPreload" "hkey"="HKCU" "command"="C:\\Program Files (x86)\\Samsung\\Kies\\Kies.exe /preload" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesTrayAgent] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="KiesTrayAgent" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Samsung\\Kies\\KiesTrayAgent.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="uTorrent" "hkey"="HKCU" "command"="\"C:\\Users\\Gebruiker\\AppData\\Roaming\\uTorrent\\uTorrent.exe\" /MINIMIZED" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Update SecretSauce] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Util SecretSauce] ==== Startup Folders ====================== 2013-03-06 14:14:09 1300 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11-12-2013 18:29] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core.job --a------ C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe [24-01-2013 10:30] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA.job --a------ C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe [24-01-2013 10:30] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [04-03-2013 22:14] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [04-03-2013 22:14] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core.job --a------ C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [04-03-2013 22:20] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA.job --a------ C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [04-03-2013 22:20] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core" [C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA" [C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core" [C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA" [C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\Windows\SysNative\tasks\Open URL by RoboForm" [C:\Windows\system32\rundll32.exe url.dll,FileProtocolHandler "http://www.roboform.com/uninstall.html?aaa=KICMPMOMJMGMGMNJNJJJCNHMOJOMKMCNLMLMLJHMCNHMPMJJNMCNGMNJIMOMNJHMMJNMOMOJKJNMJNJICMIMCNGMCNPMFMGMCNOMPMCNGMNMPMPMFMJMCNOMCNIMJMPMOMCNNMJNPICMPMFMFMPMJNHICMEKMICNJJCKJNBJCMILKJNJNIKIGJEJKJNIJNKJCMJNNICMJNDJCMBJDJ"] "C:\Windows\SysNative\tasks\Run RoboForm TaskBar Icon" [C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe] "C:\Windows\SysNative\tasks\Torntv V6.0-chromeinstaller" [C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-chromeinstaller.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{95D3121F-2448-4974-958E-5F8B4C8276CE}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== C:\zoek_backup content ====================== C:\zoek_backup (files=19 folders=6 10303496 bytes) ==== EOF on ma 13-01-2014 at 18:46:58,06 ======================
  22. wim aarnink
    Logfile of random's system information tool 1.09 (written by random/random) Run by Gebruiker at 2014-01-12 08:58:51 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 183 GB (60%) free of 305 GB Total RAM: 2908 MB (65% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 8:58:52, on 12-1-2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.16428) Boot mode: Normal Running processes: C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Program Files (x86)\Internet Explorer\IELowutil.exe C:\Windows\SysWOW64\DllHost.exe C:\Program Files\trend micro\Gebruiker.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conb_original_ctid&searchsource=55&cui=&um=2&up=spdd8833cd-10d8-4e94-a3a7-c21b55a73575&sspv=/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: CheaPMe - {2404C97D-BEA9-B7B3-9BC3-5031D329F39D} - C:\ProgramData\CheaPMe\Uf.dll O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [Google Update] "C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {9C65AB3E-C9A8-4789-AE24-B365A1C4A6F9} (SNRet Control) - http://acer.custhelp.com/euf/assets/activex/snret.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: c:\progra~3\webplat\webplat.dll O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 7897 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe winlogon.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS "c:\Program Files\Microsoft Security Client\MsMpEng.exe" C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WLANExt.exe 3871872 \??\C:\Windows\system32\conhost.exe "760358472229935219-1866276865-5140616775537892941665991937-1072644998281194518 C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "taskhost.exe" "C:\Windows\system32\rundll32.exe" "c:\progra~3\webplat\WebPlatSvc.dll",service "C:\Windows\system32\rundll32.exe" "c:\progra~3\webplat\WebPlatSvc.dll",service "C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe" "C:\Windows\System32\igfxtray.exe" "C:\Windows\System32\hkcmd.exe" "C:\Windows\System32\igfxpers.exe" "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey "C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon "C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon "C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE" /tsr "C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe" "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" WLIDSvcM.exe 2500 C:\Windows\system32\SearchIndexer.exe /Embedding C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\splwow64.exe 8192 C:\Windows\system32\wbem\wmiprvse.exe "C:\Program Files\Synaptics\SynTP\SynTPHelper.exe" "c:\Program Files\Microsoft Security Client\NisSrv.exe" "C:\Program Files (x86)\Windows Live\Mail\wlmail.exe" "C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe" -Embedding C:\Windows\servicing\TrustedInstaller.exe "C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding C:\Windows\system32\svchost.exe -k SDRSVC C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation taskeng.exe {6E90B39B-5B4B-4047-BE39-BA1EFA5C9728} "C:\Windows\system32\NOTEPAD.EXE" C:\rsit\log.txt C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} "C:\Users\Gebruiker\Downloads\RSITx64 (2).exe" C:\Windows\SysWOW64\DllHost.exe /Processid:{AD3EDBCA-0901-415B-82E9-C16D3B65E38C} ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055028090-3034766534-2611135348-1000UA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2404C97D-BEA9-B7B3-9BC3-5031D329F39D}] CheaPMe - C:\ProgramData\CheaPMe\Uf.x64.dll [2014-01-01 475136] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2404C97D-BEA9-B7B3-9BC3-5031D329F39D}] CheaPMe - C:\ProgramData\CheaPMe\Uf.dll [2014-01-01 425472] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-10-10 171040] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-10-10 399392] "Persistence"=C:\Windows\system32\igfxpers.exe [2012-10-10 441888] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-07-29 2280232] "MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 1266912] "CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-03-25 2726728] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"=C:\Users\Gebruiker\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-24 138096] "Google Update"=C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-04 116648] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent] C:\Users\Gebruiker\AppData\Roaming\BitTorrent\BitTorrent.exe [2013-12-01 895328] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Browser Infrastructure Helper] C:\Users\Gebruiker\AppData\Local\Smartbar\Application\Linkury.exe startup [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe [2013-11-06 1564528] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2013-11-06 311152] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent] C:\Users\Gebruiker\AppData\Roaming\uTorrent\uTorrent.exe [2013-11-27 1142864] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112] C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup OneNote 2010 Schermopname en Snel starten.lnk - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" C:\PROGRA~3\WebPlat\WEBPLA~1.DLL" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2012-10-10 441856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "MSVideo8"=VfWWDM32.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-01-11 15:17:59 ----D---- C:\rsit 2014-01-11 15:17:59 ----D---- C:\Program Files\trend micro 2014-01-08 18:48:05 ----D---- C:\AdwCleaner 2014-01-06 20:23:36 ----A---- C:\Windows\SYSWOW64\GPhotos.scr 2014-01-04 19:50:04 ----D---- C:\Program Files (x86)\RanndomPPricce 2014-01-01 08:32:53 ----D---- C:\ProgramData\RanndomPPricce 2014-01-01 08:32:51 ----D---- C:\ProgramData\adbpbbbkcdghcpalelpliddmdeelcofm 2014-01-01 08:32:41 ----D---- C:\ProgramData\f1bb140aeae9bcc1 2014-01-01 08:32:39 ----D---- C:\ProgramData\CheaPMe 2013-12-31 18:19:54 ----D---- C:\ProgramData\WebPlat 2013-12-30 11:30:13 ----D---- C:\Users\Gebruiker\AppData\Roaming\LavasoftStatistics 2013-12-30 11:11:35 ----D---- C:\ProgramData\Lavasoft 2013-12-30 11:01:06 ----D---- C:\Users\Gebruiker\AppData\Roaming\newnext.me ======List of files/folders modified in the last 1 month====== 2014-01-12 08:57:45 ----D---- C:\Windows\Temp 2014-01-12 08:47:22 ----D---- C:\Windows\system32\config 2014-01-11 15:17:59 ----RD---- C:\Program Files 2014-01-10 15:43:20 ----SHD---- C:\System Volume Information 2014-01-10 15:31:49 ----D---- C:\Windows\inf 2014-01-09 07:19:16 ----D---- C:\Windows 2014-01-08 18:50:19 ----HD---- C:\ProgramData 2014-01-08 18:49:54 ----D---- C:\Windows\system32\Tasks 2014-01-08 18:49:54 ----D---- C:\Windows\System32 2014-01-08 18:49:41 ----RD---- C:\Program Files (x86) 2014-01-07 10:58:43 ----SHD---- C:\Windows\Installer 2014-01-07 10:58:43 ----SHD---- C:\Config.Msi 2014-01-07 09:07:04 ----D---- C:\Windows\system32\catroot2 2014-01-04 19:41:12 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-01-04 19:39:42 ----D---- C:\Windows\system32\drivers 2014-01-04 15:18:36 ----D---- C:\ProgramData\CanonIJPLM 2014-01-04 10:56:21 ----D---- C:\Users\Gebruiker\AppData\Roaming\uTorrent 2014-01-04 10:56:21 ----D---- C:\Users\Gebruiker\AppData\Roaming\BitTorrent 2013-12-30 18:46:06 ----D---- C:\Windows\Tasks 2013-12-30 18:46:06 ----D---- C:\Windows\SysWOW64 2013-12-30 18:46:06 ----D---- C:\Windows\system32\wfp 2013-12-30 18:46:06 ----D---- C:\Windows\system32\wbem 2013-12-30 18:46:06 ----D---- C:\Windows\servicing 2013-12-30 18:45:09 ----D---- C:\Windows\system32\DriverStore 2013-12-30 18:45:09 ----D---- C:\Windows\ehome 2013-12-30 18:45:08 ----D---- C:\Windows\AppPatch 2013-12-30 18:45:08 ----D---- C:\Program Files\Windows Sidebar 2013-12-30 18:45:08 ----D---- C:\Program Files\Windows Media Player 2013-12-30 18:45:08 ----D---- C:\Program Files\Windows Mail 2013-12-30 18:45:08 ----D---- C:\Program Files\Windows Defender 2013-12-30 18:45:08 ----D---- C:\Program Files\Internet Explorer 2013-12-30 18:45:08 ----D---- C:\Program Files\DVD Maker 2013-12-30 18:45:08 ----D---- C:\Program Files (x86)\Windows Media Player 2013-12-30 18:45:08 ----D---- C:\Program Files (x86)\Windows Mail 2013-12-30 18:45:08 ----D---- C:\Program Files (x86)\Internet Explorer 2013-12-30 18:45:06 ----D---- C:\Windows\system32\Wat 2013-12-30 18:45:03 ----D---- C:\Windows\system32\drivers\UMDF 2013-12-30 18:45:01 ----D---- C:\Windows\Downloaded Program Files 2013-12-30 18:44:52 ----D---- C:\Program Files\WinRAR 2013-12-30 18:44:51 ----D---- C:\Program Files\Microsoft Security Client 2013-12-30 18:44:51 ----D---- C:\Program Files\CCleaner 2013-12-30 18:44:48 ----D---- C:\Program Files (x86)\FuzeZip 2013-12-30 18:44:48 ----D---- C:\Program Files (x86)\Easy Cover Print 2013-12-30 18:44:30 ----D---- C:\Windows\registration 2013-12-30 18:43:39 ----D---- C:\Program Files\Common Files 2013-12-27 14:03:01 ----D---- C:\Users\Gebruiker\AppData\Roaming\vlc 2013-12-26 13:42:50 ----D---- C:\Windows\Microsoft.NET 2013-12-26 13:40:34 ----RSD---- C:\Windows\assembly 2013-12-24 10:30:33 ----D---- C:\ProgramData\Microsoft Help 2013-12-24 10:23:30 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI 2013-12-17 07:30:50 ----D---- C:\Program Files (x86)\Google 2013-12-16 18:48:50 ----D---- C:\Windows\debug 2013-12-14 09:47:57 ----D---- C:\Windows\system32\MRT 2013-12-14 09:45:44 ----A---- C:\Windows\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 248240] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 134944] R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-08-23 3724288] R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2012-08-13 72280] R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2012-08-13 21080] R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2012-06-18 55384] R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2012-08-14 70744] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-10-10 5343584] R3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-01-17 412712] R3 MEIx64;Intel® Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-07-29 1383472] R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-08-21 103576] S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\SysWOW64\FsUsbExDisk.SYS [2013-02-05 37344] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-08-21 204568] S3 tap0901;Spotflux Network Device Driver; C:\Windows\system32\DRIVERS\tap0901.sys [2013-01-10 38624] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496] S3 WinUSB;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-21 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 976137e5;WebPlat; C:\Windows\syswow64\rundll32.exe [2009-07-14 44544] R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-12-28 101376] R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2010-04-05 116104] R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808] R2 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-10-23 2848168] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096] R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-04 136176] S3 cphs;Intel® Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-10-10 277024] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-04 136176] S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-09 136120] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-13 1255736] S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640] S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF----------------- - - - Updated - - - is dit het soms?
  23. wim aarnink
    snap niet goed hoe het werkt ik heb 1een 64 bit
  24. wim aarnink
    hoe kom ik van al die reclame af die ik niet wens op de laptop:rofl:
  25. wim aarnink
    is windows vista een goede vervanger voor windows xp?
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.