ruskic
-
Items
70 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door ruskic
-
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Is het gedaan , mega bedankt voor hulp. -
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Hoi, sorry voor late reactie ik was druk bezig en niet tijd gehad om laptop te aan zetten. Ik heb opdracht uitgevoerd en loopt vel beter. Ik denk dat is het opgelost. Bedankt voor deskundige hulp. -
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Beste Kweezie, is het mogelijk dat mijn internet exploreer niet meer optimaal werkt? -
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Lijkt me het stuk, stuk beter maar is het niet zo als voorheen. -
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Hier volgt log bestand AdwCleaner[s*].txt , maar AdwCleaner[C*].txt is het niet te vinden. Waarschijnlijk omdat waren niet kwaadaardige bestanden gevonden. AdwCleaner[S4].txt -
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
hehe, eindelijk, hoop ik Fixlog.txt -
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Uh, het is niks voor mijn. Is nou Goed? Addition.txt FRST.txt -
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Beste, Lukt het niet. Ik krijgt deze melding!
-
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Ik hoop nou goed gegaan. -
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Addition.txt FRST.txt -
Al weer Laptop zeer traag
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Bedankt voor antwoord, bij deze log van uitgevoerde scan. Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 11-09-2017 02 Gestart door ruski_000 (12-09-2017 06:52:38) Gestart vanaf C:\Users\ruski_000\Desktop\ANTI Windows 10 Home Versie 1703 (X64) (2017-07-23 09:43:38) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-677268874-3307230616-387958917-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-677268874-3307230616-387958917-503 - Limited - Disabled) Gast (S-1-5-21-677268874-3307230616-387958917-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-677268874-3307230616-387958917-1003 - Limited - Enabled) ruski_000 (S-1-5-21-677268874-3307230616-387958917-1001 - Administrator - Enabled) => C:\Users\ruski_000 ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: McAfee Virusscan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: McAfee Virusscan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501} FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Ashampoo AppLauncher (Medion) v.1.0.0 (HKLM-x32\...\Ashampoo AppLauncher (Medion)_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG) CyberLink PowerRecover (HKLM\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.3019 - CyberLink Corp.) Hidden CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.3019 - CyberLink Corp.) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DiscAPI (HKLM-x32\...\{A77F3C2D-50CC-4A29-A1FB-1E018BE4DCA2}) (Version: 2.00.0000 - Pinnacle Systems) Hidden Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.3.1 - Dolby Laboratories Inc) ELAN Touchpad 15.19.7.1_X64_WHQL (HKLM\...\Elantech) (Version: 15.19.7.1 - ELAN Microelectronic Corp.) Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalerija (HKLM-x32\...\{5D5B5672-1A0F-4412-B6A0-3A16706DE82D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotoğraf Galerisi (HKLM-x32\...\{B743ABDD-E681-4B32-A33E-6E7F3F845AEA}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galería de fotos (HKLM-x32\...\{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd) Intel Security True Key (HKLM\...\TrueKey) (Version: 4.19.108.1 - Intel Security) Intel(R) Chipset Device Software (HKLM-x32\...\{4a87bd28-a855-4a8d-b133-60ca8ccffd30}) (Version: 10.0.17 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.25.1048 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.2.0.1016 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.226.0 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation) Intel(R) Wireless Bluetooth(R)(patch version 17.1.1431.1) (HKLM\...\{302600C1-6BDF-4FD1-1407-148929CC1385}) (Version: 17.1.1407.0480 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{85b9d34f-7397-4e39-8600-07942ef6ca04}) (Version: 17.0.5 - Intel Corporation) IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit) IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC) Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation) Malwarebytes Anti-Malware versie 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Malwarebytes versie 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes) McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0.1 - McAfee, Inc.) McAfee SafeKey(alleen installatie verwijderen) (HKLM-x32\...\SafeKey) (Version: 2.2.3 - McAfee, Inc.) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.161 - McAfee, Inc.) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-677268874-3307230616-387958917-1001\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{312F7EE7-37D0-484D-B974-0CE1B8560C79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{5B3D4718-9146-45CB-8989-C4E87B239B3A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{9C82436F-F19C-42A4-B476-F87A28A95BF9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{A27180D0-17BB-498B-89FF-A72656B85978}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{B653D7B1-41B5-4982-9A25-E91FF46D131A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{EB3DF0F0-0525-4C5A-A2F8-DEC868A3075D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mp3tag v2.70 (HKLM-x32\...\Mp3tag) (Version: v2.70 - Florian Heidenreich) MyBackupPC from Rerware, LLC (HKLM-x32\...\MyBackupPC) (Version: - ) MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8397 - MyHeritage.com) Nero 2016 (HKLM-x32\...\{31390581-090F-43BE-9607-5E6418C11DC8}) (Version: 17.0.01600 - Nero AG) Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2000 - Nero AG) Nettv+ Player 4 (HKU\S-1-5-21-677268874-3307230616-387958917-1001\...\Nettv+ Player 4) (Version: 00.04.06.01 - nettvplus) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden PDF Converter Elite 5.0 (HKLM\...\{EF5416DB-8813-4211-95A4-16724AB10198}_is1) (Version: 5.0 - PDFConverter.com) PDFTK Builder 3.5.3 (HKLM-x32\...\PDFTK Builder_is1) (Version: - ) Pinnacle Hollywood FX for Studio (HKLM-x32\...\Hollywood FX for Studio) (Version: - ) Pinnacle Instant DVD Recorder (HKLM-x32\...\{EF781A5C-58F5-4BFD-87F9-E4F14D382F25}) (Version: 1.60.066 - ) Prerequisite installer (HKLM-x32\...\{5F284483-EE8D-447E-BEBE-2BF13B08C4BF}) (Version: 17.0.0002 - Nero AG) Hidden proDAD Heroglyph 2.0 (HKLM-x32\...\proDAD-Heroglyph-2.0) (Version: - ) Raccolta foto (HKLM-x32\...\{86A1CEAD-EF47-47BB-AE79-DA8C09E15382}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden RAPID (HKLM-x32\...\{EEECE229-49F6-4851-A73A-99B058221F8C}) (Version: 1.00.0000 - Pinnacle Systems) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39054 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.19.726.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.) SmartSound Quicktracks Plugin (HKLM-x32\...\{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}) (Version: 3.0.2.7 - SmartSound Software Inc) Hidden SmartSound Quicktracks Plugin (HKLM-x32\...\InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}) (Version: 3.0.2.7 - SmartSound Software Inc) Spotify (HKU\S-1-5-21-677268874-3307230616-387958917-1001\...\Spotify) (Version: 1.0.15.133.gf21970bd - Spotify AB) Stashimi Stub Installer (HKLM-x32\...\{910B539D-F257-46C8-9CB8-6C95EFF9CF22}) (Version: 18.001.1 - Nero AG) Hidden Studio 10 Bonus DVD (HKLM-x32\...\{6A012D9C-2E2E-405A-B87C-E909F5297C3F}) (Version: 10.0.000 - ) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) Winamp (HKLM-x32\...\Winamp) (Version: 5.56 - Nullsoft, Inc) Winamp Applicatie Detect (HKU\S-1-5-21-677268874-3307230616-387958917-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\MSC\McCtxMenuFrmWrk.dll [2017-05-31] (McAfee, Inc.) ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2015-07-15] (IObit) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes) ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2015-07-15] (IObit) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-02] (Intel Corporation) ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-11-02] (Intel Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes) ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\MSC\McCtxMenuFrmWrk.dll [2017-05-31] (McAfee, Inc.) ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2015-07-15] (IObit) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {01079176-42B1-4FC6-947F-08FEF40D2B61} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {05761686-4A82-40BA-8B81-4844FE5F7ADE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {065963CC-106F-4179-9EBE-3D693790C052} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {109B0FD2-F064-4EAA-AB68-6DEC54BC51A0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {17DB2139-4AC4-418B-90F3-429FB04842DE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {19D24F55-6533-4A9D-B686-22041A0A520A} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation) Task: {1DA34ADA-F29A-437A-8525-6B1D9ACA06A7} - System32\Tasks\Lenovo\sysrun-18722 => C:\Users\ADMINI~1\AppData\Local\Temp\sysrun-18722.cmd Task: {216118A5-4167-4914-9703-509FE1F0D103} - System32\Tasks\McAfee\McAfee Idle Detection Task Task: {32705749-0E15-4EDE-9CC7-8F099003DE07} - System32\Tasks\Lenovo\sysrun-19062 => C:\Users\ADMINI~1\AppData\Local\Temp\sysrun-19062.cmd Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {37C0E253-9DD8-47CA-9EC3-861EDE88C982} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation) Task: {3A1DC0A1-022F-4515-B265-1F08BBA72EF5} - System32\Tasks\Microsoft Office 15 Sync Maintenance for RUSKICSUBASA-ruski_000 RuskicSubasa => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation) Task: {3F682F83-1204-40F1-B846-2251D38EB683} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [2017-08-27] (McAfee, Inc.) Task: {448A7BAC-DB52-4C6F-86F6-06350AD55BDE} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [2017-05-31] (McAfee, Inc.) Task: {4B93AB7A-257F-4E96-A83D-87F38B6AD5B8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {5623FAB5-1809-49EB-9124-243C27DF1413} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe Task: {643CA2C1-6A49-45E0-97B8-9799EF1C4BC1} - System32\Tasks\Lenovo\sysrun-27095 => C:\Users\ADMINI~1\AppData\Local\Temp\sysrun-27095.cmd Task: {68985DE8-22AF-4E2A-9BEC-DC4EF6E57D69} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation) Task: {6909D491-83E9-4007-8639-18493E2CB4D9} - \WPD\SqmUpload_S-1-5-21-677268874-3307230616-387958917-1001 -> Geen bestand <==== AANDACHT Task: {6BDA1999-9909-455F-850D-1091964BA75C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {7C671400-0D10-4CCF-8BE7-C9B577CB12D6} - System32\Tasks\{C89C1679-4B1C-45DA-918D-1D743398CA05} => "c:\program files\internet explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/7.8.64.102/nl/abandoninstall?page=tsMain Task: {7E5AA45D-F305-4303-B37C-2D45D7B1F201} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-08-08] (Microsoft Corporation) Task: {8066CABD-0AA1-4F5F-9131-2BB8F1BD5166} - System32\Tasks\Lenovo\sysrun-19336 => C:\Users\ADMINI~1\AppData\Local\Temp\sysrun-19336.cmd Task: {86014398-6FEB-45B7-8AD8-5E8B505E8E68} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {8D74ABF7-130E-4D0D-A26B-48094F0058E9} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent Task: {ADD497B0-6B8D-42AE-89F0-8080DE02B1B5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {B5B33C04-A6A6-428C-B635-6A076BFD7F04} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {CC9CD300-1B62-44F1-9CCD-A7E587A95B19} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {CEA88860-F75B-4BAD-8C29-94137BC64EA0} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [2017-08-27] (McAfee, Inc.) Task: {EBF0EB01-290F-4E01-88A5-9932FB5C30AD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {F03408AE-F0E6-494E-BBF8-D8D4566C80D6} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe Task: {FB702005-31C5-4D31-BC26-1FFA0C5E6F4C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {FFB545E5-8727-4C5F-BBF2-ABA58A9A55F5} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe [2014-04-07] (Dolby Laboratories Inc.) Task: {FFE0CA74-0044-4EC4-BD62-594D8ECC7F7D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Welcome.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.aldi.com ==================== Geladen Modules (gefilterd) ============== 2016-05-21 10:08 - 2016-02-16 11:04 - 000192304 _____ () C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe 2013-10-17 15:27 - 2013-10-17 15:27 - 000166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe 2017-08-27 17:00 - 2017-06-11 13:00 - 000583160 _____ () C:\Program Files\McAfee\MfeAV\RealProtectAMScanIf.dll 2017-08-27 17:00 - 2017-06-11 12:59 - 000574352 _____ () C:\Program Files\McAfee\MfeAV\AMEngineScan.dll 2017-08-27 17:00 - 2017-06-11 13:00 - 000571240 _____ () C:\Program Files\McAfee\MfeAV\RepairModule.dll 2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2012-10-01 20:36 - 2012-10-01 20:36 - 006522480 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll 2016-11-02 00:05 - 2016-11-02 00:05 - 000401896 _____ () C:\WINDOWS\system32\igfxTray.exe 2017-03-18 22:59 - 2017-03-20 05:56 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2009-07-01 18:37 - 2009-07-01 18:37 - 000037888 _____ () C:\Program Files (x86)\Winamp\winampa.exe 2017-08-27 17:39 - 2017-06-27 11:15 - 066355808 _____ () C:\Program Files\Intel Security\True Key\Application\libcef.dll 2017-08-23 20:35 - 2017-08-23 20:35 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-08-23 20:35 - 2017-08-23 20:35 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2014-06-24 18:08 - 2014-06-24 18:08 - 001241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2017-03-04 11:00 - 2015-05-21 16:15 - 000883872 _____ () C:\Program Files\PDFConverter.com\PDF Converter Elite 5.0\platforms\qwindows.dll 2017-03-04 11:00 - 2015-05-21 16:15 - 000022688 _____ () C:\Program Files\PDFConverter.com\PDF Converter Elite 5.0\imageformats\qsvg.dll 2009-07-01 18:21 - 2009-07-01 18:21 - 000046592 _____ () C:\Program Files (x86)\Winamp\zlib.dll 2017-09-10 14:14 - 2017-09-10 14:14 - 000013824 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\dsp_sps.lng 2017-09-10 14:14 - 2017-09-10 14:14 - 000009728 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\enc_aacplus.lng 2017-09-10 14:14 - 2017-09-10 14:14 - 000004096 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\enc_flac.lng 2017-09-10 14:14 - 2017-09-10 14:14 - 000005632 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\enc_lame.lng 2017-09-10 14:14 - 2017-09-10 14:14 - 000004096 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\enc_vorbis.lng 2017-09-10 14:14 - 2017-09-10 14:14 - 000004096 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\enc_wav.lng 2017-09-10 14:14 - 2017-09-10 14:14 - 000006144 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\enc_wma.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000007168 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\gen_crasher.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000020992 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\gen_ff.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000010752 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\gen_hotkeys.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000019456 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\gen_ml.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000007680 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\gen_tray.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000012288 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_cdda.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000006144 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_dshow.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000005632 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_flac.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000003584 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_flv.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000003584 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_linein.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000019456 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_midi.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000017920 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_mod.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000021504 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_mp3.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000004096 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_mp4.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000010752 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_nsv.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000003584 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_swf.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000011264 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_vorbis.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000004096 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_wave.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000014848 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\in_wm.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000006656 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_autotag.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000005120 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_bookmarks.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000004608 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_dash.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000043008 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_disc.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000007168 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_history.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000004608 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_impex.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000049664 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_local.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000004096 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_nowplaying.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000005120 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_online.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000004096 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_orb.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000012288 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_playlists.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000007680 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_plg.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000037888 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_pmp.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000006144 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_rg.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000007680 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_transcode.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000013312 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\ml_wire.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000006144 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\out_disk.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000015872 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\out_ds.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000007168 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\out_wave.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000003584 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\playlist.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000004096 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\pmp_activesync.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000006144 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\pmp_ipod.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000003584 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\pmp_njb.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000004096 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\pmp_p4s.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000008704 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\pmp_usb.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000006144 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\tagz.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000007168 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\vis_nsfs.lng 2017-09-10 14:15 - 2017-09-10 14:15 - 000147968 _____ () C:\Users\ruski_000\AppData\Local\Temp\WLZ2D8B.tmp\winamp.lng 2009-07-01 18:27 - 2009-07-01 18:27 - 000018432 _____ () C:\Program Files (x86)\Winamp\System\auth.w5s 2009-07-01 18:25 - 2009-07-01 18:25 - 000007168 _____ () C:\Program Files (x86)\Winamp\System\bmp.w5s 2009-07-01 18:24 - 2009-07-01 18:24 - 000024576 _____ () C:\Program Files (x86)\Winamp\System\dlmgr.w5s 2009-07-01 18:27 - 2009-07-01 18:27 - 000011264 _____ () C:\Program Files (x86)\Winamp\System\filereader.w5s 2009-07-01 18:25 - 2009-07-01 18:25 - 000015872 _____ () C:\Program Files (x86)\Winamp\System\gif.w5s 2009-07-01 18:24 - 2009-07-01 18:24 - 000013824 _____ () C:\Program Files (x86)\Winamp\System\gracenote.w5s 2009-07-01 18:32 - 2009-07-01 18:32 - 000616960 _____ () C:\Program Files (x86)\Winamp\System\jnetlib.w5s 2009-07-01 18:26 - 2009-07-01 18:26 - 000104448 _____ () C:\Program Files (x86)\Winamp\System\jpeg.w5s 2009-07-01 18:27 - 2009-07-01 18:27 - 000075776 _____ () C:\Program Files (x86)\Winamp\System\playlist.w5s 2009-07-01 18:29 - 2009-07-01 18:29 - 000078336 _____ () C:\Program Files (x86)\Winamp\System\png.w5s 2009-07-01 18:23 - 2009-07-01 18:23 - 000009728 _____ () C:\Program Files (x86)\Winamp\System\primo.w5s 2009-07-01 18:31 - 2009-07-01 18:31 - 000018944 _____ () C:\Program Files (x86)\Winamp\System\tagz.w5s 2009-07-01 18:25 - 2009-07-01 18:25 - 000026624 _____ () C:\Program Files (x86)\Winamp\System\timer.w5s 2009-07-01 18:29 - 2009-07-01 18:29 - 000087552 _____ () C:\Program Files (x86)\Winamp\System\xml.w5s 2009-07-01 18:34 - 2009-07-01 18:34 - 000107520 _____ () C:\Program Files (x86)\Winamp\Plugins\in_cdda.dll 2009-07-01 18:32 - 2009-07-01 18:32 - 000071680 _____ () C:\Program Files (x86)\Winamp\Plugins\in_dshow.dll 2009-07-01 18:25 - 2009-07-01 18:25 - 000038400 _____ () C:\Program Files (x86)\Winamp\Plugins\in_flac.dll 2009-07-01 18:24 - 2009-07-01 18:24 - 000034816 _____ () C:\Program Files (x86)\Winamp\Plugins\in_flv.dll 2009-07-01 18:34 - 2009-07-01 18:34 - 000006656 _____ () C:\Program Files (x86)\Winamp\Plugins\in_linein.dll 2009-07-01 18:34 - 2009-07-01 18:34 - 000098304 _____ () C:\Program Files (x86)\Winamp\Plugins\in_midi.dll 2009-07-01 18:34 - 2009-07-01 18:34 - 000160768 _____ () C:\Program Files (x86)\Winamp\Plugins\in_mod.dll 2009-07-01 18:33 - 2009-07-01 18:33 - 000267776 _____ () C:\Program Files (x86)\Winamp\Plugins\in_mp3.dll 2009-07-01 18:33 - 2009-07-01 18:33 - 000038400 _____ () C:\Program Files (x86)\Winamp\Plugins\in_mp4.dll 2009-07-01 18:33 - 2009-07-01 18:33 - 000069120 _____ () C:\Program Files (x86)\Winamp\Plugins\in_nsv.dll 2009-07-01 18:23 - 2009-07-01 18:23 - 000036864 _____ () C:\Program Files (x86)\Winamp\Plugins\in_swf.dll 2009-07-01 18:33 - 2009-07-01 18:33 - 000231424 _____ () C:\Program Files (x86)\Winamp\Plugins\in_vorbis.dll 2009-07-01 18:31 - 2009-07-01 18:31 - 000014848 _____ () C:\Program Files (x86)\Winamp\Plugins\in_wave.dll 2009-07-01 18:20 - 2009-07-01 18:20 - 000238080 _____ () C:\Program Files (x86)\Winamp\libsndfile.dll 2009-07-01 18:32 - 2009-07-01 18:32 - 000297472 _____ () C:\Program Files (x86)\Winamp\Plugins\in_wm.dll 2009-07-01 18:31 - 2009-07-01 18:31 - 000019456 _____ () C:\Program Files (x86)\Winamp\Plugins\out_disk.dll 2009-07-01 18:32 - 2009-07-01 18:32 - 000047104 _____ () C:\Program Files (x86)\Winamp\Plugins\out_ds.dll 2009-07-01 18:32 - 2009-07-01 18:32 - 000018432 _____ () C:\Program Files (x86)\Winamp\Plugins\out_wave.dll 2009-07-01 18:23 - 2009-07-01 18:23 - 000869376 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_dropbox.dll 2009-07-01 18:36 - 2009-07-01 18:36 - 001506304 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_ff.dll 2009-07-01 18:21 - 2009-07-01 18:21 - 000064000 _____ () C:\Program Files (x86)\Winamp\tataki.dll 2009-07-01 18:31 - 2009-07-01 18:31 - 000330752 _____ () C:\Program Files (x86)\Winamp\Plugins\freeform\wacs\freetype\freetype.wac 2009-07-01 18:35 - 2009-07-01 18:35 - 000025600 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_hotkeys.dll 2009-04-28 22:20 - 2009-04-28 22:20 - 000210432 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_jumpex.dll 2009-07-01 18:35 - 2009-07-01 18:35 - 000294912 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_ml.dll 2009-07-01 18:28 - 2009-07-01 18:28 - 000275968 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_local.dll 2009-07-01 18:20 - 2009-07-01 18:20 - 000087040 _____ () C:\Program Files (x86)\Winamp\nde.dll 2009-07-01 18:28 - 2009-07-01 18:28 - 000076288 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_playlists.dll 2009-07-01 18:30 - 2009-07-01 18:30 - 000256000 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_online.dll 2009-07-01 18:29 - 2009-07-01 18:29 - 000194048 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_disc.dll 2009-07-01 18:31 - 2009-07-01 18:31 - 000201728 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_pmp.dll 2009-07-01 18:30 - 2009-07-01 18:30 - 000104960 _____ () C:\Program Files (x86)\Winamp\Plugins\pmp_ipod.dll 2009-07-01 18:30 - 2009-07-01 18:30 - 000017920 _____ () C:\Program Files (x86)\Winamp\Plugins\pmp_njb.dll 2009-07-01 18:30 - 2009-07-01 18:30 - 000114176 _____ () C:\Program Files (x86)\Winamp\Plugins\pmp_p4s.dll 2009-07-01 18:26 - 2009-07-01 18:26 - 000042496 _____ () C:\Program Files (x86)\Winamp\Plugins\pmp_usb.dll 2009-07-01 18:29 - 2009-07-01 18:29 - 000020480 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_bookmarks.dll 2009-07-01 18:29 - 2009-07-01 18:29 - 000042496 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_history.dll 2009-07-01 18:24 - 2009-07-01 18:24 - 000026624 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_autotag.dll 2009-07-01 18:26 - 2009-07-01 18:26 - 000045568 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_impex.dll 2009-07-01 18:24 - 2009-07-01 18:24 - 000057856 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_plg.dll 2009-07-01 18:26 - 2009-07-01 18:26 - 000024064 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_rg.dll 2009-07-01 18:26 - 2009-07-01 18:26 - 000028160 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_transcode.dll 2009-07-01 18:27 - 2009-07-01 18:27 - 000045568 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_orgler.dll 2009-07-01 18:34 - 2009-07-01 18:34 - 000025088 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_tray.dll 2009-07-01 18:32 - 2009-07-01 18:32 - 000365056 _____ () C:\Program Files (x86)\Winamp\System\aacPlusDecoder.w5s ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-677268874-3307230616-387958917-1001\...\amazon.com -> hxxps://amazon.com ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2013-08-22 15:25 - 2013-08-22 15:25 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-677268874-3307230616-387958917-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ruski_000\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\tekening anna-mria..jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == HKLM\...\StartupApproved\Run: => "IAStorIcon" HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run32: => "CLVirtualDrive" HKU\S-1-5-21-677268874-3307230616-387958917-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-677268874-3307230616-387958917-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-677268874-3307230616-387958917-1001\...\StartupApproved\Run: => "Spotify Web Helper" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{EEC0A5C9-0CBA-43F9-A01F-487C97AA14C0}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\nero.exe FirewallRules: [{D3228DE5-B0D0-4B2C-AEB9-4A652BF32D9A}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe FirewallRules: [{DBDE7954-3841-46C5-96D4-ED9543AFC813}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe FirewallRules: [{FC9B1E93-05E6-43BA-B3E9-9DFCDDD46454}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 10\programs\umi.exe FirewallRules: [{3BFAD4F1-CF57-4A0A-A49E-96E6CB473467}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 10\programs\umi.exe FirewallRules: [{ED4A719A-D343-4C69-9EE6-AA1D0F871FDE}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 10\programs\PMSRegisterFile.exe FirewallRules: [{BB12332C-AA4D-4CC7-B416-FCDD990A76B2}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 10\programs\PMSRegisterFile.exe FirewallRules: [{382F6F18-8E9F-41C2-AD5D-3A69A3984012}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 10\programs\Studio.exe FirewallRules: [{3043C9AF-CE1F-4F25-85C3-4432956176D0}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 10\programs\Studio.exe FirewallRules: [{F01D6660-E33A-433B-BD96-8EAEA0D4ADB0}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 10\programs\RM.exe FirewallRules: [{E640EE39-9338-4522-8A44-ECEEFCF3261B}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 10\programs\RM.exe FirewallRules: [UDP Query User{F9418B1B-9CF8-481D-968A-E0CE351B28C7}C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe] => (Block) C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe FirewallRules: [TCP Query User{43FFCF77-0666-47D4-B570-61F9D8015243}C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe] => (Block) C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe FirewallRules: [UDP Query User{E4DA4850-F174-4990-B897-32209E886E32}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{4CB01B0A-9EB7-45C6-9BCD-FE2A494398BF}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{C16E69EC-C92C-483E-A6BA-E324307F742E}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{90A12F70-6D86-4B14-BE11-6BB825390FAD}] => (Allow) LPort=2869 FirewallRules: [{BD1AF121-63B8-4ABD-8837-DD725E7DD287}] => (Allow) LPort=1900 FirewallRules: [{3E1D5798-59BF-4825-9C11-328AFA89281C}] => (Allow) C:\Program Files\CyberLink\PowerDirector11\PDR10.EXE FirewallRules: [{45359734-3E53-430D-9CA0-3E8CDDE9A332}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{29681950-8902-4C1C-B49D-797F8A65F9E1}] => (Allow) C:\Users\ruski_000\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{7825056F-21B6-4594-9FB8-14DB6A2B14AC}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{8B55677F-BCA2-43EC-A8C9-AAFE64653EF0}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{D657DDC3-4D87-48C2-8CC3-1516318317EF}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{3E64EC5E-431A-4984-8642-6FF69C8E3EE0}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [TCP Query User{9066E00B-CE4B-422D-AA22-E507A273BE0A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{8B0839FD-12F9-4B1B-B22F-8902F48CEBA2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{7EFA3057-9FCF-4663-BDF4-0EC5DCBD52C2}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ==================== Herstelpunten ========================= 26-08-2017 10:03:50 Gepland controlepunt 03-09-2017 15:20:10 Gepland controlepunt ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (09/12/2017 06:25:34 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/10/2017 03:28:08 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma iexplore.exe, versie 11.0.15063.0 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm. Proces-id: 2b08 Starttijd: 01d32a38639da33c Eindtijd: 39 Toepassingspad: C:\Program Files (x86)\Internet Explorer\iexplore.exe Rapport-id: 4ca38456-0f6c-48fd-928d-0be1794fc2d5 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (09/10/2017 03:26:20 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma iexplore.exe, versie 11.0.15063.0 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm. Proces-id: 2a60 Starttijd: 01d32a3554779551 Eindtijd: 46 Toepassingspad: C:\Program Files (x86)\Internet Explorer\iexplore.exe Rapport-id: 71c9787d-bf91-4f35-b296-e84b160dc0aa Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (09/10/2017 03:03:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: IEXPLORE.EXE, versie: 11.0.15063.0, tijdstempel: 0x5019fe1a Naam van module met fout: KERNELBASE.dll, versie: 10.0.15063.502, tijdstempel: 0xc3955624 Uitzonderingscode: 0xe06d7363 Foutmarge: 0x000eb802 Id van proces met fout: 0x270c Starttijd van toepassing met fout: 0x01d32a0b977b5497 Pad naar toepassing met fout: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: d28cb15e-f4b8-4b1b-8463-e848c8de8e5d Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (09/10/2017 02:23:26 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma iexplore.exe, versie 11.0.15063.0 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm. Proces-id: 1fd4 Starttijd: 01d32a0bab963626 Eindtijd: 47 Toepassingspad: C:\Program Files (x86)\Internet Explorer\iexplore.exe Rapport-id: 938e0c84-de28-4e0f-84a5-8ea4c0eb6945 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (09/10/2017 10:05:45 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: IEXPLORE.EXE, versie: 11.0.15063.0, tijdstempel: 0x5019fe1a Naam van module met fout: KERNELBASE.dll, versie: 10.0.15063.502, tijdstempel: 0xc3955624 Uitzonderingscode: 0xe06d7363 Foutmarge: 0x000eb802 Id van proces met fout: 0x2950 Starttijd van toepassing met fout: 0x01d32a044cc4b9ea Pad naar toepassing met fout: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: 573f808e-b416-4f2f-8583-931faf32fb8a Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (09/10/2017 08:46:38 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: De openprocedure voor de BITS-service in DLL-bestand C:\Windows\System32\bitsperf.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode. Error: (09/10/2017 08:41:13 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: RUSKICSUBASA) Description: Het activeren van de app Microsoft.Windows.Photos_8wekyb3d8bbwe!App is mislukt door de fout -2144927141. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie. Error: (09/06/2017 09:27:40 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: De openprocedure voor de BITS-service in DLL-bestand C:\Windows\System32\bitsperf.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode. Error: (09/06/2017 09:13:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: IEXPLORE.EXE, versie: 11.0.15063.0, tijdstempel: 0x5019fe1a Naam van module met fout: KERNELBASE.dll, versie: 10.0.15063.502, tijdstempel: 0xc3955624 Uitzonderingscode: 0xe06d7363 Foutmarge: 0x000eb802 Id van proces met fout: 0x32e8 Starttijd van toepassing met fout: 0x01d3273a6f3af232 Pad naar toepassing met fout: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: 55b09b18-2450-4632-8182-c5d2f4503f6d Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Systeemfouten: ============= Error: (09/12/2017 06:48:43 AM) (Source: DCOM) (EventID: 10010) (User: RUSKICSUBASA) Description: De server {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (09/12/2017 06:27:05 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De Interactive Services Detection-service is gestopt met de volgende foutcode: Onjuiste functie. . Error: (09/12/2017 06:26:43 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {784E29F4-5EBE-4279-9948-1E8FE941646D} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (09/12/2017 06:23:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (09/10/2017 04:45:19 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {784E29F4-5EBE-4279-9948-1E8FE941646D} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (09/10/2017 04:19:06 PM) (Source: DCOM) (EventID: 10010) (User: RUSKICSUBASA) Description: De server {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (09/10/2017 02:45:00 PM) (Source: DCOM) (EventID: 10010) (User: RUSKICSUBASA) Description: De server {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (09/10/2017 02:33:53 PM) (Source: DCOM) (EventID: 10010) (User: RUSKICSUBASA) Description: De server {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (09/10/2017 02:33:23 PM) (Source: DCOM) (EventID: 10010) (User: RUSKICSUBASA) Description: De server {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (09/10/2017 02:32:13 PM) (Source: DCOM) (EventID: 10010) (User: RUSKICSUBASA) Description: De server {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. CodeIntegrity: =================================== Date: 2017-07-28 17:08:14.259 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i3-5010U CPU @ 2.10GHz Percentage geheugen in gebruik: 73% Totaal fysiek RAM-geheugen: 4014.9 MB Beschikbaar fysiek RAM-geheugen: 1064.99 MB Totaal Virtueel geheugen: 8110.9 MB Beschikbaar Virtual geheugen: 4312.81 MB ==================== Schijven ================================ Drive c: (Boot) (Fixed) (Total:403.28 GB) (Free:66.67 GB) NTFS Drive d: (Recover) (Fixed) (Total:60 GB) (Free:43.12 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 6CB82667) Partition: GPT. ==================== Eind van Addition.txt ============================ http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ -
Mijn laptop is weer zeer traag. Kan mijn iemand helpen bij deze probleem? Alvast bedankt.
-
Desktop ini, virus of iets anders
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Dankzijn jullie, het is alles opgelost. Mij dank is groot. Gr Ruskic -
Desktop ini, virus of iets anders
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Ik heb nog een kleine vraagje. Kort geleden heb ik Mp3 gedownload en vervolgens weggegooid, maar die bestand is niet helemaal weg en die kan niet verwijderen. Krijg ik terug melding: zie foto. Weet je hoe kan ik die bestand weg doen? Bedankt.
-
Desktop ini, virus of iets anders
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Het is gelukt, ik zie die pictogram niet meer. Wat ik wil zegen, mega bedankt voor de hulp. -
Desktop ini, virus of iets anders
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Ik heb windows 10, Inderdaad heb ik geprobeerd instructie volgen op die link, maar ik kom niet uit. Ik kom niet op die configuratiescherm komen, dan houd het op. -
Desktop ini, virus of iets anders
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Heel erg bedankt voor het moeite, maar ik krijgt niet voorelkaar. -
Desktop ini, virus of iets anders
ruskic reageerde op ruskic's topic in Archief Bestrijding malware & virussen
Bedankt voor snele antwoord, maar wat ik kan nou doen? Kunt u mij helpen ermee of niet? Gr Ruskic -
Desktop ini, virus of iets anders
ruskic plaatste een topic in Archief Bestrijding malware & virussen
Twee wk geleden zag ik op bureau blad een icoontje Desktop ini. Ik zochten op internet en ene zegen dat het gat om een virus andere niet. Ik heb tocht verwijdert, maar voor dat ik Ja klikt komt melding: :"Als u dit bestand verwijdert, werkt Windows of andere programa mogelijk niet meer goed". Na verwijderen werkt gewoon alles normaal. Toch iedereen keer die bestandje komt terug en zit overal. Is er wat te doen? Alvast bedankt. -
Zo te zien wel, bedankt voor deskundige hulp.
-
Gedaan. Zoek.exe Version 4.0.0.4 Updated 07-October-2013 Tool run by drago on di 08-10-2013 at 20:38:55,37. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\drago\AppData\Local\Temp\wze369\zoek.exe [script inserted] ==== Older Logs ====================== C:\zoek-results2013-10-07-080534.log 31307 bytes ==== Empty Folders Check ====================== C:\Program Files\MSXML 4.0 C:\Program Files\Uninstall Information C:\ProgramData\Application Data C:\ProgramData\Bureaublad C:\ProgramData\Desktop C:\ProgramData\Documenten C:\ProgramData\Documents C:\ProgramData\Favorieten C:\ProgramData\Favorites C:\ProgramData\Menu Start C:\ProgramData\MyHeritage C:\ProgramData\Sjablonen C:\ProgramData\Start Menu C:\ProgramData\TEMP C:\ProgramData\Templates C:\ProgramData\WinZipEC C:\Users\Default\AppData\Roaming\Media Center Programs C:\Users\Default User\AppData\Roaming\Media Center Programs C:\Users\drago\AppData\Roaming\Media Center Programs C:\Users\drago\AppData\Roaming\Mozilla C:\Users\drago\AppData\Roaming\MyHeritage C:\Users\Default\AppData\Local\Application Data C:\Users\Default\AppData\Local\Geschiedenis C:\Users\Default\AppData\Local\History C:\Users\Default\AppData\Local\Temp C:\Users\Default\AppData\Local\Temporary Internet Files C:\Users\Default User\AppData\Local\Application Data C:\Users\Default User\AppData\Local\Geschiedenis C:\Users\Default User\AppData\Local\History C:\Users\Default User\AppData\Local\Temp C:\Users\Default User\AppData\Local\Temporary Internet Files C:\Users\drago\AppData\Local\Application Data C:\Users\drago\AppData\Local\Deployment C:\Users\drago\AppData\Local\Geschiedenis C:\Users\drago\AppData\Local\Temporary Internet Files C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update diamondata deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update diamondata deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\Update diamondata deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Update diamondata deleted successfully ==== Deleting Files \ Folders ====================== "C:\Program Files\diamondata\updatediamondata.exe" deleted "C:\Program Files\diamondata\updatediamondata.exe" deleted "C:\Program Files\diamondata" not deleted "C:\Program Files\diamondata" not deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx[02-10-2013 14:05] hendmekoldfacfhlojkjcnbjegkahclb - C:\Program Files\diamondata\hendmekoldfacfhlojkjcnbjegkahclb.crx[] SiteAdvisor - drago - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho diamondata - drago - Default\Extensions\hendmekoldfacfhlojkjcnbjegkahclb Chrome In-App Payments service - drago - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Chrome Fix ====================== C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Extensions\hendmekoldfacfhlojkjcnbjegkahclb deleted successfully C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_hendmekoldfacfhlojkjcnbjegkahclb_0.localstorage deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} EazelBar Search Url="http://en.eazel.com/results.php?oid=3&cat=web&co=&lg=en&q={searchTerms}&id=033D24F0E810498A8F1D799DF29ED1F1" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Reset Google Chrome ====================== C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1987154144-2504670919-2467418806-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{055AF109-DE93-4160-BCFC-7DA70ECAA020} deleted successfully HKEY_USERS\S-1-5-21-1987154144-2504670919-2467418806-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{055AF109-DE93-4160-BCFC-7DA70ECAA020} deleted successfully HKEY_CLASSES_ROOT\CLSID\{055AF109-DE93-4160-BCFC-7DA70ECAA020} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055AF109-DE93-4160-BCFC-7DA70ECAA020} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\hendmekoldfacfhlojkjcnbjegkahclb deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\drago\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Program Files\diamondata" not found "C:\Program Files\diamondata" not found ==== EOF on di 08-10-2013 at 20:57:15,45 ======================
-
Nou ik heb niet allen daar gezocht maar overal en vond ik niets. Wat is mijn ook opgevallen met openen van internet verschenen (voor deze opruim actie) in browser volgens mijn QWO6 of zo iets, maar nu is weg. Hebben ze die bonanza en QWO6 iets mee te maken?
-
Hoi, Ik heb gedaan (hoop ik) alles wat je gevraagd hebt. # AdwCleaner v3.006 - Report created 07/10/2013 at 09:18:47 # Updated 01/10/2013 by Xplode # Operating System : Windows 7 Ultimate Service Pack 1 (32 bits) # Username : drago - QOSMIO # Running from : C:\Users\drago\Desktop\adwcleaner.exe # Option : Clean ***** [ Services ] ***** [#] Service Deleted : bonanzadealslive [#] Service Deleted : bonanzadealslivem ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\Babylon Folder Deleted : C:\ProgramData\BonanzaDealsLive Folder Deleted : C:\ProgramData\Systweak Folder Deleted : C:\Users\drago\AppData\Local\BonanzaDealsLive Folder Deleted : C:\Users\drago\AppData\Local\Temp\eIntaller Folder Deleted : C:\Users\drago\AppData\Roaming\searchgol Folder Deleted : C:\Users\drago\AppData\Roaming\Systweak Folder Deleted : C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl Folder Deleted : C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk ***** [ Shortcuts ] ***** Shortcut Disinfected : C:\Users\drago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk Shortcut Disinfected : C:\Users\drago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk Shortcut Disinfected : C:\Users\drago\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk Shortcut Disinfected : C:\Users\drago\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1 Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SOFTWARE\Classes\S Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS Key Deleted : HKLM\SOFTWARE\5b6dadfb16ee542 Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00078E95-3A4A-4137-8DE7-2824908D1C17} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8F547BDD-FCD4-48F8-A06F-573D6F404A3C} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE063412-BEA4-4D76-8ED3-183BE6220D17} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8F547BDD-FCD4-48F8-A06F-573D6F404A3C} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063412-BEA4-4D76-8ED3-183BE6220D17} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00078E95-3A4A-4137-8DE7-2824908D1C17} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8F547BDD-FCD4-48F8-A06F-573D6F404A3C} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063412-BEA4-4D76-8ED3-183BE6220D17} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8F547BDD-FCD4-48F8-A06F-573D6F404A3C} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063412-BEA4-4D76-8ED3-183BE6220D17} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{00078E95-3A4A-4137-8DE7-2824908D1C17}] Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command Key Deleted : HKCU\Software\BabSolution Key Deleted : HKCU\Software\DataMngr [#] Key Deleted : HKCU\Software\DataMngr_Toolbar Key Deleted : HKCU\Software\InstallCore Key Deleted : HKCU\Software\Searchgol Key Deleted : HKLM\Software\DataMngr Key Deleted : HKLM\Software\qvo6Software Key Deleted : HKLM\Software\Searchgol Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16686 Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] -\\ Google Chrome v [ File : C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [6073 octets] - [07/10/2013 09:17:46] AdwCleaner[s0].txt - [5278 octets] - [07/10/2013 09:18:47] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [5338 octets] ########## Zoek.exe Version 4.0.0.4 Updated 27-September-2013 Tool run by drago on ma 07-10-2013 at 9:43:02,87. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\drago\AppData\Local\Temp\wz7ed3\zoek.exe [script inserted] ==== System Restore Info ====================== 7-10-2013 9:45:45 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1987154144-2504670919-2467418806-1000\Software\Microsoft\Internet Explorer\SearchScopes\{80D19908-E38F-4259-A9A0-A8033230EC78} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== "C:\Windows\system32\tasks\UpdaterEX" deleted "C:\Windows\tasks\UpdaterEX.job" deleted "C:\Windows\system32\tasks\BonanzaDealsLiveUpdateTaskMachineCore" deleted "C:\Windows\system32\tasks\BonanzaDealsLiveUpdateTaskMachineUA" deleted "C:\Windows\system32\tasks\BonanzaDealsUpdate" deleted "C:\Users\drago\AppData\Roaming\UpdaterEX" deleted "C:\Users\drago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals" deleted "C:\Windows\System32\searchplugins" deleted "C:\Windows\System32\Extensions" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\drago\AppData\Local\Temp ==== 2013-10-06 13:05:36 25E5512A65B55D216C58769E29C016BA 341360 ----a-w- C:\Users\drago\AppData\Local\Temp\uninst1.exe 2013-10-06 12:58:04 A21DE5067618D4F2DF261416315ED120 6144 ----a-w- C:\Users\drago\AppData\Local\Temp\10B9E30C-BAB0-7891-A03B-EA9750689A30\Latest\IEHelper.dll 2013-10-06 12:58:04 0F66E8E2340569FB17E774DAC2010E31 520234 ----a-w- C:\Users\drago\AppData\Local\Temp\10B9E30C-BAB0-7891-A03B-EA9750689A30\Latest\sqlite3.dll 2013-10-06 12:58:02 B212865E7E478A28A97268F960079A8D 132096 ----a-w- C:\Users\drago\AppData\Local\Temp\10B9E30C-BAB0-7891-A03B-EA9750689A30\Latest\BExternal.dll 2013-09-29 16:29:18 4B5B56BBC4D472D52C03C7DC6C33026D 734576 ------w- C:\Users\drago\AppData\Local\Temp\is1275519350\2430534_stp\SearchGol.exe 2013-09-25 14:11:10 655D2F50763B7F9370EBBF9DDAD80555 202832 ------w- C:\Users\drago\AppData\Local\Temp\is1275519350\2430646_stp\whilokii_is.exe 2013-09-24 14:18:34 F8F24C37A1E930ECADB7736C69F3E7F4 488016 ------w- C:\Users\drago\AppData\Local\Temp\is1275519350\2430604_stp\cor_ar_201392319852_qvo6.exe 2013-09-24 05:38:19 E1D607BD288B979FECE0770324EE6F11 245672 ----a-w- C:\Users\drago\AppData\Local\Temp\10B9E30C-BAB0-7891-A03B-EA9750689A30\Latest\ccp.exe ====== C:\Windows\system32 ===== 2013-10-06 17:05:52 E32230F4135D507E79509C998F4D8C92 34304 ----a-w- C:\Windows\System32\atmlib.dll 2013-10-06 17:05:52 5DAF8A6B7F127C4E70A5C1F707347859 295424 ----a-w- C:\Windows\System32\atmfd.dll 2013-10-06 16:07:10 F0D4AE074D9BC0741DC6E91C741F2F8C 23040 ----a-w- C:\Windows\System32\licmgr10.dll 2013-10-06 16:07:10 E5D91D6B81A293AB6854CAD112240A4B 1141248 ----a-w- C:\Windows\System32\urlmon.dll 2013-10-06 16:07:10 E14A07B768EC49D382CABCE2F078D576 232960 ----a-w- C:\Windows\System32\url.dll 2013-10-06 16:07:10 DEFB55D4FF094673DF31FA89A8A8A2F0 226816 ----a-w- C:\Windows\System32\dxtrans.dll 2013-10-06 16:07:10 C68FBBF01E86CB6CF0B797748FBD6C1A 357888 ----a-w- C:\Windows\System32\dxtmsft.dll 2013-10-06 16:07:10 C28A634CF127DA67D566B5E14D0A0170 719360 ----a-w- C:\Windows\System32\mshtmlmedia.dll 2013-10-06 16:07:10 C225E5307D8D4982A1687F2702C37C78 158720 ----a-w- C:\Windows\System32\msls31.dll 2013-10-06 16:07:10 BCA4913CDE903B4BDEEDAD1D6DBF5E2A 391168 ----a-w- C:\Windows\System32\ieui.dll 2013-10-06 16:07:10 B96C13B5C85AC4240FE95DE115945D59 38400 ----a-w- C:\Windows\System32\imgutil.dll 2013-10-06 16:07:10 AF0332E09DDBE0172237D1958A7DADB8 79872 ----a-w- C:\Windows\System32\mshtmled.dll 2013-10-06 16:07:10 A7E8E3A9F92D9B0D495F636A1D282883 48640 ----a-w- C:\Windows\System32\mshtmler.dll 2013-10-06 16:07:10 9DF7A7C74D8632CB5EBD37E3A374825E 204800 ----a-w- C:\Windows\System32\webcheck.dll 2013-10-06 16:07:10 9D9AC6CE9A9D951AC40DE91CD6F0A620 1441280 ----a-w- C:\Windows\System32\inetcpl.cpl 2013-10-06 16:07:10 96E0F0BED5D9EBABB899D8CA83C36A7E 523264 ----a-w- C:\Windows\System32\vbscript.dll 2013-10-06 16:07:10 932571EFF79B93F94E84ADF4989A277F 69120 ----a-w- C:\Windows\System32\icardie.dll 2013-10-06 16:07:10 8C3D32A4A46326031309A43C52539D7F 1400416 ----a-w- C:\Windows\System32\ieapfltr.dat 2013-10-06 16:07:10 8A45166CD9874463AB76B552C9C2D3AD 110592 ----a-w- C:\Windows\System32\IEAdvpack.dll 2013-10-06 16:07:10 87E71F2A83681F41B796CA685818EF2D 163840 ----a-w- C:\Windows\System32\msrating.dll 2013-10-06 16:07:10 828B4A41BE891A7AEC07E693422B4A3A 117248 ----a-w- C:\Windows\System32\iepeers.dll 2013-10-06 16:07:10 81C4D657D37C3A5418B54BFECE821B84 57344 ----a-w- C:\Windows\System32\pngfilt.dll 2013-10-06 16:07:10 80B47F0F45C3EBF41C30E0BA367D25D3 125440 ----a-w- C:\Windows\System32\occache.dll 2013-10-06 16:07:10 7FE153D71E85332B870A6C9A3BA04F03 137216 ----a-w- C:\Windows\System32\ieUnatt.exe 2013-10-06 16:07:10 7E540E07B97DCBCF8F76FA743B486BF2 61440 ----a-w- C:\Windows\System32\iesetup.dll 2013-10-06 16:07:10 7C63629508BB87227C3C861355A155B4 39424 ----a-w- C:\Windows\System32\jsproxy.dll 2013-10-06 16:07:10 79DC575FE905D5DD5C5A4C5993A7C7F9 2876928 ----a-w- C:\Windows\System32\jscript9.dll 2013-10-06 16:07:10 6DF2C6438CFF6EFCBBB88AEE01795501 73728 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe 2013-10-06 16:07:10 5D2D7E7850CE963C2F401D4DEE7BB32A 14332928 ----a-w- C:\Windows\System32\mshtml.dll 2013-10-06 16:07:10 56E51C26745FF7413514EA4DDF33BC6C 11776 ----a-w- C:\Windows\System32\msfeedssync.exe 2013-10-06 16:07:10 54C06D9684F3D0AD7E87502E57CC4655 42496 ----a-w- C:\Windows\System32\ie4uinit.exe 2013-10-06 16:07:10 535F6263035F2530A62D5D64EF6E73D3 1767936 ----a-w- C:\Windows\System32\wininet.dll 2013-10-06 16:07:10 52A7D73D5570F757D865DDECD087FB41 138752 ----a-w- C:\Windows\System32\wextract.exe 2013-10-06 16:07:10 4FCC53B82D91607FB9AE24E617108BB2 13761024 ----a-w- C:\Windows\System32\ieframe.dll 2013-10-06 16:07:10 4A47CAEA8D3B82DE439A79771ECED4B1 361984 ----a-w- C:\Windows\System32\html.iec 2013-10-06 16:07:10 4417377CEDABD9BD161FA7EDEDA175D4 745472 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2013-10-06 16:07:10 43852485D0B78C021A47E9548A4CFFE0 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-10-06 16:07:10 414A3D9AAE072CDEFE0B64C2EBEE18D2 61952 ----a-w- C:\Windows\System32\tdc.ocx 2013-10-06 16:07:10 404FAD93ABFBD86D1AAAB47D5DFA6505 242200 ----a-w- C:\Windows\System32\iedkcs32.dll 2013-10-06 16:07:10 3B74EADF1B70251D3CDB87BC338DC34D 109056 ----a-w- C:\Windows\System32\iesysprep.dll 2013-10-06 16:07:10 3AB2A38F7EA9E62D176A78FB58761E24 12800 ----a-w- C:\Windows\System32\mshta.exe 2013-10-06 16:07:10 338520304B99471BD0ED121954FE7863 82432 ----a-w- C:\Windows\System32\inseng.dll 2013-10-06 16:07:10 2EC47CF6A36F6A83BB8B98C1425B4D41 493056 ----a-w- C:\Windows\System32\msfeeds.dll 2013-10-06 16:07:10 2D7A29C35D0894481A69FA3AC45F18F0 41984 ----a-w- C:\Windows\System32\msfeedsbs.dll 2013-10-06 16:07:10 281A720B0A984E325599EE1F0342E8FB 2048000 ----a-w- C:\Windows\System32\iertutil.dll 2013-10-06 16:07:10 1FF56AC32B38A94C3C88497BD6E00C96 25185 ----a-w- C:\Windows\System32\ieuinit.inf 2013-10-06 16:07:10 0F44172A5B34E8F208CD0F209EDD4A73 629248 ----a-w- C:\Windows\System32\ieapfltr.dll 2013-10-06 16:07:10 06EEAD5864F357ADC618F65A2F2C5156 2706432 ----a-w- C:\Windows\System32\mshtml.tlb 2013-10-06 16:07:10 0402BFC25AB49E02256BC24E32829773 185344 ----a-w- C:\Windows\System32\elshyph.dll 2013-10-06 16:07:10 038F76279EC64878A072D988DE13C7B2 150528 ----a-w- C:\Windows\System32\iexpress.exe 2013-10-06 16:07:10 00531B52C9468929F2C651B3BCADCBC9 690688 ----a-w- C:\Windows\System32\jscript.dll 2013-10-06 16:07:10 000B55B43992179E69C2E83CCB8F1126 33280 ----a-w- C:\Windows\System32\iernonce.dll 2013-10-06 16:06:26 72E953215CADE1A726C04AAFDF6B463D 49152 ----a-w- C:\Windows\System32\taskhost.exe 2013-10-06 16:05:53 FB3F036EF6A467F7AF46C821FF5D198D 220160 ----a-w- C:\Windows\System32\d3d10core.dll 2013-10-06 16:05:53 E12C4928B32ACE04610259647F072635 906240 ----a-w- C:\Windows\System32\FntCache.dll 2013-10-06 16:05:53 D4F264FE23F8953D840904418220C15E 293376 ----a-w- C:\Windows\System32\dxgi.dll 2013-10-06 16:05:53 D4212AB475A3B25EC4DF574536C3EDC5 249856 ----a-w- C:\Windows\System32\d3d10_1core.dll 2013-10-06 16:05:53 C7A730AFB80B11F93EFC81B1D6F920D7 364544 ----a-w- C:\Windows\System32\XpsGdiConverter.dll 2013-10-06 16:05:53 B3170CCC779B682C3341873EA60CF084 1988096 ----a-w- C:\Windows\System32\d3d10warp.dll 2013-10-06 16:05:53 9FF8F684BACF326082E5562F7C104A79 3419136 ----a-w- C:\Windows\System32\d2d1.dll 2013-10-06 16:05:53 8B285BDAB7735FDFB18E6F7122923B77 187392 ----a-w- C:\Windows\System32\UIAnimation.dll 2013-10-06 16:05:53 8504944851DF6175CC489A8F3328459E 1080832 ----a-w- C:\Windows\System32\d3d10.dll 2013-10-06 16:05:53 6A7B5A3EFCCDB53DA41CF6838056990F 1158144 ----a-w- C:\Windows\System32\XpsPrint.dll 2013-10-06 16:05:53 6A13B4F3B3F575F1E24B877B9359AABA 10752 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll 2013-10-06 16:05:53 6951562DC4625EEFC6EACD52AD165866 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2013-10-06 16:05:53 62A6EB5771580CAE445804389F3F7432 207872 ----a-w- C:\Windows\System32\WindowsCodecsExt.dll 2013-10-06 16:05:53 60F4AEFA103D421EA4A40E31409B4756 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll 2013-10-06 16:05:53 600A65F922CCDCBB2D11467914241556 2284544 ----a-w- C:\Windows\System32\msmpeg2vdec.dll 2013-10-06 16:05:53 589CBC4989F750E1DA35625AB481CF43 4096 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll 2013-10-06 16:05:53 545F1BAAADD0BF1F4FE4586293FCA07D 417792 ----a-w- C:\Windows\System32\WMPhoto.dll 2013-10-06 16:05:53 4FF3EC04CD47DD62181894B71B004E40 604160 ----a-w- C:\Windows\System32\d3d10level9.dll 2013-10-06 16:05:53 49ACA548B2423F1C67898E6AC719A9A6 3584 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll 2013-10-06 16:05:53 4277F5164DE9B7C665BB928B9145BEE0 1247744 ----a-w- C:\Windows\System32\DWrite.dll 2013-10-06 16:05:53 3C1936A12C62254F914A01BBC6A8DC69 161792 ----a-w- C:\Windows\System32\d3d10_1.dll 2013-10-06 16:05:53 3BE0D923AA45A4DBE091C2D84F0B4FE7 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll 2013-10-06 16:05:53 3BCECD87AB4E6743BFB45B352AD1A529 1230336 ----a-w- C:\Windows\System32\WindowsCodecs.dll 2013-10-06 16:05:53 2E33DFD10F28F86C3FC40EE123CC3904 2560 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll 2013-10-06 16:05:53 1C60E09CA1C3A045BC4D367F67C915B7 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll 2013-10-06 16:05:53 007863E45F25AA47A4C30D0930BBFD85 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2013-10-06 16:03:36 6DE66FE7C526637E74CD066461C7C871 1505280 ----a-w- C:\Windows\System32\d3d11.dll 2013-10-06 12:22:24 C6A44FC3CF2F5801561804272217B14D 1892184 ----a-w- C:\Windows\System32\D3DX9_42.dll 2013-10-06 12:22:22 797E24743937D67D69F28F2CF5052EE8 2414360 ----a-w- C:\Windows\System32\d3dx9_31.dll 2013-10-06 12:07:14 E9B05DF6E6E8F01AB8EC3036F7770396 692616 ----a-w- C:\Windows\System32\FlashPlayerApp.exe 2013-10-06 12:07:14 733AB625B4398BA223A9664EE6473051 71048 ----a-w- C:\Windows\System32\FlashPlayerCPLApp.cpl 2013-10-06 11:59:10 B7230010D97787AF3D25E4C82F2B06B9 626688 ----a-w- C:\Windows\System32\usp10.dll 2013-10-06 11:59:09 5A043BDA3BFADD5B4C16F3BDE5EC4312 652800 ----a-w- C:\Windows\System32\rpcrt4.dll 2013-10-06 11:59:07 AE8EB083B050E17A7D6EB5E28AECDDD6 1166848 ----a-w- C:\Windows\System32\crypt32.dll 2013-10-06 11:59:07 68EAAEDF0365168B804E8728368FA946 175104 ----a-w- C:\Windows\System32\wintrust.dll 2013-10-06 11:59:06 7CA1BECEA5DE2643ADDAD32670E7A4C9 140288 ----a-w- C:\Windows\System32\cryptsvc.dll 2013-10-06 11:59:06 7B851A8018B1EA00A69707A390004884 103936 ----a-w- C:\Windows\System32\cryptnet.dll 2013-10-06 11:58:29 310F6F492A3B4B1020ED9BF9CCBBE6B6 376832 ----a-w- C:\Windows\System32\dpnet.dll 2013-10-06 11:58:11 DA8AAF7E56F698608A89542131F74818 40960 ----a-w- C:\Windows\System32\wwanprotdim.dll 2013-10-06 11:58:11 3C5E51C05BE9B56EAFF4E388C3AB25E4 186368 ----a-w- C:\Windows\System32\wwansvc.dll 2013-10-06 11:57:59 9FA7BF625122CCAC90FCD307174D8CF3 3913664 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-10-06 11:57:58 DE91DCC7BC55E940979097E98F743205 69632 ----a-w- C:\Windows\System32\smss.exe 2013-10-06 11:57:58 DD5F17D44E9966E7EA447AE8C4D12D6C 3968960 ----a-w- C:\Windows\System32\ntkrnlpa.exe 2013-10-06 11:57:58 23AB7E36551C6BA5370EF7F05142F0EB 38912 ----a-w- C:\Windows\System32\csrsrv.dll 2013-10-06 11:57:58 113B224CA1F55673C410A91D986D2276 1289096 ----a-w- C:\Windows\System32\ntdll.dll 2013-10-06 11:57:53 45FBAFFA68CBC29AC2563985CEE72B9C 24576 ----a-w- C:\Windows\System32\cryptdlg.dll 2013-10-06 11:57:38 FC415B303B1ECF80B5F130A1F7203D02 492544 ----a-w- C:\Windows\System32\win32spl.dll 2013-10-06 11:57:37 EAADD6E47ED2A7003ACE1793B98CF63F 1389568 ----a-w- C:\Windows\System32\msxml6.dll 2013-10-06 11:57:26 1153AC6E133AA849853DFD407B086B80 420064 ----a-w- C:\Windows\System32\locale.nls 2013-10-06 11:57:15 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\System32\certutil.exe 2013-10-06 11:57:14 CC917AC4D3F8756FF13174980B474791 43008 ----a-w- C:\Windows\System32\certenc.dll 2013-10-06 11:57:07 674EB817CF6E43B7DF3EC26E06E98D98 509440 ----a-w- C:\Windows\System32\qedit.dll 2013-10-06 11:57:03 0805487A6036A9F9C4E7AF7FEF835529 1620992 ----a-w- C:\Windows\System32\WMVDECOD.DLL 2013-10-06 11:56:56 ED59143843560B5EDB543C2A48CB9E4B 45568 ----a-w- C:\Windows\System32\oflc-nz.rs 2013-10-06 11:56:56 A704E750245D5D4EE4A23E99A00F27D5 46592 ----a-w- C:\Windows\System32\fpb.rs 2013-10-06 11:56:56 A067A19A91C2AA0198F9BD01A5CEF5C6 21504 ----a-w- C:\Windows\System32\grb.rs 2013-10-06 11:56:56 9EDCFA23CC081E38C86CA309D0F7E3DC 30720 ----a-w- C:\Windows\System32\usk.rs 2013-10-06 11:56:56 9B7D7F4D1F79E8B7D727BE94B1630D59 44544 ----a-w- C:\Windows\System32\pegibbfc.rs 2013-10-06 11:56:56 6EC618588447B82EA8D88719EE46F725 43520 ----a-w- C:\Windows\System32\csrr.rs 2013-10-06 11:56:56 41CE7975CAD7BCF92538D2C452239523 40960 ----a-w- C:\Windows\System32\cob-au.rs 2013-10-06 11:56:56 27828AAA24AA46F11036954ADE355C1C 15360 ----a-w- C:\Windows\System32\djctq.rs 2013-10-06 11:56:55 64E211E0FDFCE4D186DF58BB7D0503BC 2576384 ----a-w- C:\Windows\System32\gameux.dll 2013-10-06 11:56:55 5109C45498BC709C8A7E016D5FFCCAC2 20480 ----a-w- C:\Windows\System32\pegi.rs 2013-10-06 11:56:55 4F5C56DBF076D5BBB1D22B37BF281396 20480 ----a-w- C:\Windows\System32\pegi-pt.rs 2013-10-06 11:56:55 43C9CF6825CEA58F1815B7C3DBBB385C 308736 ----a-w- C:\Windows\System32\Wpc.dll 2013-10-06 11:56:53 DDD1C4AB9A9DAE6D4092C4C95E714650 51712 ----a-w- C:\Windows\System32\esrb.rs 2013-10-06 11:56:53 CBC69A055EF410CBD65593E4808B6DB4 23552 ----a-w- C:\Windows\System32\oflc.rs 2013-10-06 11:56:53 7752619457598CF057C4CC02A0867029 55296 ----a-w- C:\Windows\System32\cero.rs 2013-10-06 11:56:53 72035C97983745E742D71E9A8EF70BBB 20480 ----a-w- C:\Windows\System32\pegi-fi.rs 2013-10-06 11:56:24 BF6D6ED5FADCEEE885BD0144ECF1BA27 220160 ----a-w- C:\Windows\System32\ncrypt.dll 2013-10-06 11:56:18 E02781D4871844DCD30DF1D69A650F78 12872704 ----a-w- C:\Windows\System32\shell32.dll 2013-10-06 11:56:17 2C4A87CA8C00E98EFDCFA2E8EC9A3503 180224 ----a-w- C:\Windows\System32\shdocvw.dll 2013-10-06 11:56:13 ED880065BBB2C5F57B74F30812A65F4F 2348544 ----a-w- C:\Windows\System32\win32k.sys 2013-10-06 11:56:04 D5E18BA95F9E7D787D25EF07AC68603E 2048 ----a-w- C:\Windows\System32\tzres.dll 2013-10-06 11:55:54 6933E2AFF444A7A95D5C67E98449163E 868352 ----a-w- C:\Windows\System32\kernel32.dll 2013-10-06 11:55:54 51BB04243DF6196C06E125898127E397 169984 ----a-w- C:\Windows\System32\winsrv.dll 2013-10-06 11:55:54 2DE16A63F71D10B42ACE01E759078600 271360 ----a-w- C:\Windows\System32\conhost.exe 2013-10-06 11:55:54 1E65CF7B26D02750544EFDD73C8118FA 293376 ----a-w- C:\Windows\System32\KernelBase.dll 2013-10-06 11:50:45 E904178851A6A44BFA97E064EF779E9D 1796096 ----a-w- C:\Windows\System32\authui.dll 2013-10-06 11:50:45 B0BC447C758FF055D53FC6831FDB0344 101720 ----a-w- C:\Windows\System32\consent.exe 2013-10-06 11:50:44 EACFDF31921F51C097629F1F3C9129B4 47104 ----a-w- C:\Windows\System32\appinfo.dll ====== C:\Windows\system32\drivers ===== 2013-10-06 14:29:28 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-10-06 12:46:38 8F72C4916A288485812745DC5AF873FC 147472 ----a-w- C:\Windows\System32\drivers\HipShieldK.sys 2013-10-06 11:59:11 5E43D2B0EE64123D4880DFA6626DEFDE 1211752 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2013-10-06 11:58:38 FE8A57C8E04EDD3AA8ADD8F3C8F65297 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2013-10-06 11:58:12 E306A24D9694C724FA2491278BF50FDB 196328 ----a-w- C:\Windows\System32\drivers\fvevol.sys 2013-10-06 11:57:09 AAB149EE616952BB84308C28E75ED20D 187752 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2013-10-06 11:57:09 4E8B9BE71B807B3BAEDB7F4243F85E3C 1293760 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-10-06 11:56:22 DDCE686D76C2B4DB435A3AF5BD0E691D 133056 ----a-w- C:\Windows\System32\drivers\ataport.sys 2013-10-06 11:56:14 E405328A0E38BF823E2361C413283F6D 218984 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2013-10-06 11:56:14 16498EBC04AE9DD07049A8884B205C05 728424 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2013-10-06 11:55:53 B37B08F2E5EEB1A37E448E09BACE1101 31232 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys ====== C:\Windows\Tasks ====== 2013-10-06 12:07:18 4CFE131EA586C9AA47C297234BB33F40 3878 ----a-w- C:\Windows\system32\Tasks\Adobe Flash Player Updater 2013-10-06 12:07:17 DDFE0B6D559AAD5747075D63AD13ECD5 940 ----a-w- C:\Windows\Tasks\Adobe Flash Player Updater.job ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-10-07 07:37:07 -------- d-----w- C:\Program Files\WinZip 2013-10-06 14:10:10 -------- d-----w- C:\Program Files\trend micro 2013-10-06 12:21:21 -------- d-----w- C:\Program Files\Winamp Detect 2013-10-06 12:09:23 -------- d-----w- C:\Program Files\Common Files\PX Storage Engine 2013-09-23 15:05:07 -------- d-----w- C:\Program Files\KPN ======= C: ===== 2013-10-06 13:00:32 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\MSDOS.SYS 2013-10-06 13:00:32 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\IO.SYS ====== C:\Users\drago\AppData\Roaming ====== 2013-10-07 07:38:06 -------- d-----w- C:\Users\drago\AppData\Local\WinZip 2013-10-06 13:05:06 -------- d-----w- C:\Users\drago\AppData\Local\avgchrome 2013-10-06 12:21:21 -------- d-----w- C:\Users\drago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Applicatie Detect 2013-10-05 15:25:57 -------- d-----w- C:\Users\drago\AppData\Roaming\Chilirec 2013-10-05 15:17:02 -------- d-----w- C:\Users\drago\AppData\Roaming\ProgSense 2013-10-05 15:13:28 -------- d-----w- C:\Users\drago\AppData\Roaming\Orbit 2013-10-04 08:46:24 -------- d-----w- C:\Users\drago\AppData\Roaming\NCH Software 2013-09-23 15:06:05 -------- d-----w- C:\Users\drago\AppData\Local\mquadr.at ====== C:\Users\drago ====== 2013-10-07 07:37:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip 2013-10-07 07:35:38 6ED6AF019F8B96EB268A174241358A90 424336 ----a-w- C:\Users\drago\Downloads\WinZip175.exe 2013-10-07 07:15:10 5611140E8CC5927D371C27EA1F9E71A6 1045226 ----a-w- C:\Users\drago\Desktop\adwcleaner.exe 2013-10-06 14:08:32 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\drago\Downloads\RSIT.exe 2013-10-06 12:57:07 B06712BF5643BB55600A040F210DC218 20586496 ----a-w- C:\Users\drago\Downloads\SkypeSetup [1].exe 2013-10-06 12:38:13 40F6C2BD9EB61CA366331054B93EC6EA 1003056 ----a-w- C:\Users\drago\Downloads\wpsetup.exe 2013-10-06 12:37:32 3ABB013DC48172F2E3F0C02E3421C7C4 841808 ----a-w- C:\Users\drago\Downloads\stsetup.exe 2013-10-06 12:09:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2013-10-05 15:16:28 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orbit 2013-09-23 15:05:42 -------- d-----w- C:\ProgramData\mquadr.at 2013-09-23 15:05:23 -------- dc----w- C:\ProgramData\{956A2848-3D1D-4838-BC7C-02757D5398E2} ====== C: exe-files == 2013-10-07 07:35:38 6ED6AF019F8B96EB268A174241358A90 424336 ----a-w- C:\Users\drago\Downloads\WinZip175.exe 2013-10-07 07:15:10 5611140E8CC5927D371C27EA1F9E71A6 1045226 ----a-w- C:\Users\drago\Desktop\adwcleaner.exe 2013-10-07 07:11:51 2AAF0EFF497DD0885346BE3D6A25C0C8 833616 ----a-w- C:\Windows\Temp\0016611381129911mcinst.exe 2013-10-06 16:07:10 F627F4D4223F3F7D104294575E9E6F9D 327680 ----a-w- C:\Program Files\Internet Explorer\iediagcmd.exe 2013-10-06 16:07:10 7FE153D71E85332B870A6C9A3BA04F03 137216 ----a-w- C:\Windows\System32\ieUnatt.exe 2013-10-06 16:07:10 6DF2C6438CFF6EFCBBB88AEE01795501 73728 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe 2013-10-06 16:07:10 56E51C26745FF7413514EA4DDF33BC6C 11776 ----a-w- C:\Windows\System32\msfeedssync.exe 2013-10-06 16:07:10 54C06D9684F3D0AD7E87502E57CC4655 42496 ----a-w- C:\Windows\System32\ie4uinit.exe 2013-10-06 16:07:10 5397E32E882C0148CEC13D9EACFB7157 222208 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2013-10-06 16:07:10 52A7D73D5570F757D865DDECD087FB41 138752 ----a-w- C:\Windows\System32\wextract.exe 2013-10-06 16:07:10 4417377CEDABD9BD161FA7EDEDA175D4 745472 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2013-10-06 16:07:10 43852485D0B78C021A47E9548A4CFFE0 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-10-06 16:07:10 3AB2A38F7EA9E62D176A78FB58761E24 12800 ----a-w- C:\Windows\System32\mshta.exe 2013-10-06 16:07:10 37287D98A1BF5D56AA729CEB9B27C6B1 770648 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2013-10-06 16:07:10 3090B888E263E56744F8BFEF3A36D67D 467456 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2013-10-06 16:07:10 15CCEAC53648FF7C17AE98923BCD3D75 24576 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe 2013-10-06 16:07:10 038F76279EC64878A072D988DE13C7B2 150528 ----a-w- C:\Windows\System32\iexpress.exe 2013-10-06 16:06:26 72E953215CADE1A726C04AAFDF6B463D 49152 ----a-w- C:\Windows\System32\taskhost.exe 2013-10-06 14:10:11 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\drago.exe 2013-10-06 14:08:32 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\drago\Downloads\RSIT.exe 2013-10-06 13:05:36 25E5512A65B55D216C58769E29C016BA 341360 ----a-w- C:\Users\drago\AppData\Local\Temp\uninst1.exe 2013-10-06 12:59:22 BA3CE22896E7C045FBFC8893682D703D 851560 ----a-w- C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RQMM0SEW\Setup[1].exe 2013-10-06 12:57:07 B06712BF5643BB55600A040F210DC218 20586496 ----a-w- C:\Users\drago\Downloads\SkypeSetup [1].exe 2013-10-06 12:55:48 5F6F02B799F2D8921217FA75D4CB2675 679728 ----a-w- C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RQMM0SEW\SkypeSetup.exe 2013-10-06 12:38:13 40F6C2BD9EB61CA366331054B93EC6EA 1003056 ----a-w- C:\Users\drago\Downloads\wpsetup.exe 2013-10-06 12:37:32 3ABB013DC48172F2E3F0C02E3421C7C4 841808 ----a-w- C:\Users\drago\Downloads\stsetup.exe 2013-10-06 12:09:41 1BDB4B4CBD383EE852C6B95DCC6CF0E6 140844 ----a-w- C:\Program Files\Winamp\UninstWA.exe 2013-10-06 12:09:23 B36F01A58631341310C6D4116F2EDF5F 66032 ------w- C:\Program Files\Common Files\PX Storage Engine\pxinsa64.exe 2013-10-06 12:09:23 51598A4CD5BFC25C8D4FB1A740A43583 72176 ------w- C:\Program Files\Common Files\PX Storage Engine\pxhpinst.exe 2013-10-06 12:09:23 09132A1DA77EF78D06421C871B3B92C5 66544 ------w- C:\Program Files\Common Files\PX Storage Engine\pxcpya64.exe 2013-10-06 12:07:14 E9B05DF6E6E8F01AB8EC3036F7770396 692616 ----a-w- C:\Windows\System32\FlashPlayerApp.exe 2013-10-06 11:57:59 9FA7BF625122CCAC90FCD307174D8CF3 3913664 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-10-06 11:57:58 DE91DCC7BC55E940979097E98F743205 69632 ----a-w- C:\Windows\System32\smss.exe 2013-10-06 11:57:58 DD5F17D44E9966E7EA447AE8C4D12D6C 3968960 ----a-w- C:\Windows\System32\ntkrnlpa.exe 2013-10-06 11:57:15 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\System32\certutil.exe 2013-10-06 11:55:54 2DE16A63F71D10B42ACE01E759078600 271360 ----a-w- C:\Windows\System32\conhost.exe 2013-10-06 11:50:45 B0BC447C758FF055D53FC6831FDB0344 101720 ----a-w- C:\Windows\System32\consent.exe 2013-10-05 14:39:09 FA09E920E9CDBC5E8AA4F839B5DEFE71 834664 ----a-w- C:\Windows\Temp\0165301380983949mcinst.exe 2013-10-05 14:10:50 BC7A53287874167DA30DB2E0F02EB0DA 834664 ----a-w- C:\Windows\Temp\0109821380982250mcinst.exe === C: other files == 2013-10-06 14:41:34 680B3ECCEAEA0916DC9C5E79C21814C1 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1987154144-2504670919-2467418806-1000\$IRRF8T1.zip 2013-10-06 14:39:59 A64614C3B77E0DA92EB2E52EC6993C64 1894913 ----a-w- C:\$Recycle.Bin\S-1-5-21-1987154144-2504670919-2467418806-1000\$RRRF8T1.zip 2013-10-06 13:00:32 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\MSDOS.SYS 2013-10-06 13:00:32 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\IO.SYS 2013-10-06 12:46:38 8F72C4916A288485812745DC5AF873FC 147472 ----a-w- C:\Windows\System32\drivers\HipShieldK.sys 2013-10-06 11:59:11 5E43D2B0EE64123D4880DFA6626DEFDE 1211752 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2013-10-06 11:58:38 FE8A57C8E04EDD3AA8ADD8F3C8F65297 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2013-10-06 11:58:38 BE444D443F424E3146534BA98978D68A 15872 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_1c5becb2deac08f0\usb80236.sys 2013-10-06 11:58:38 AF77716205C97E902E6C5B78DECE2CCA 15872 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_1c5becb2deac08f0\usb8023x.sys 2013-10-06 11:58:12 E306A24D9694C724FA2491278BF50FDB 196328 ----a-w- C:\Windows\System32\drivers\fvevol.sys 2013-10-06 11:57:09 AAB149EE616952BB84308C28E75ED20D 187752 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2013-10-06 11:57:09 4E8B9BE71B807B3BAEDB7F4243F85E3C 1293760 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-10-06 11:56:22 DDCE686D76C2B4DB435A3AF5BD0E691D 133056 ----a-w- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\ataport.sys 2013-10-06 11:56:22 DDCE686D76C2B4DB435A3AF5BD0E691D 133056 ----a-w- C:\Windows\System32\drivers\ataport.sys 2013-10-06 11:56:14 E405328A0E38BF823E2361C413283F6D 218984 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2013-10-06 11:56:14 16498EBC04AE9DD07049A8884B205C05 728424 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2013-10-06 11:56:13 ED880065BBB2C5F57B74F30812A65F4F 2348544 ----a-w- C:\Windows\System32\win32k.sys 2013-10-06 11:55:53 B37B08F2E5EEB1A37E448E09BACE1101 31232 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys 2013-10-05 15:17:05 5E5F90B22F6C7F88DF26F050B3FBC80A 354 ----a-w- C:\Users\drago\AppData\Roaming\Orbit\AdConfig\TipsAd.zip 2013-10-05 15:17:04 BA443643BF377CCAA7645E8C863B8FFA 355 ----a-w- C:\Users\drago\AppData\Roaming\Orbit\AdConfig\LeftAd.zip ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx[22-05-2013 10:24] Google Search - drago - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf SiteAdvisor - drago - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho BonanzaDeals - drago - Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj Chrome In-App Payments service - drago - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - drago - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj deleted successfully C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ieadcoanfjloocmfafkebdnfefmohngj_0.localstorage deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" "Default_Page_URL"="Google" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" "Start Page"="Google" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Reset Google Chrome ====================== C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\drago\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\drago\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\drago\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 07-10-2013 at 10:05:34,20 ======================
-
Hoi,bedankt voor snele reactie op mijn gestelde vraag hier gescande log. Logfile of random's system information tool 1.09 (written by random/random) Run by drago at 2013-10-06 16:10:09 Microsoft Windows 7 Ultimate Service Pack 1 System drive C: has 21 GB (28%) free of 73 GB Total RAM: 2047 MB (43% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:11:15, on 6-10-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16455) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskhost.exe C:\Windows\Explorer.EXE C:\Windows\System32\rundll32.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtProc.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Winamp\winamp.exe C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe C:\Windows\system32\schtasks.exe C:\Windows\system32\conhost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_11_8_800_175_ActiveX.exe c:\PROGRA~1\mcafee\SITEAD~1\saui.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Users\drago\Downloads\RSIT.exe C:\Program Files\trend micro\drago.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = QVO6 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = QVO6 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = QVO6 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O2 - BHO: searchgol Helper Object - {8F547BDD-FCD4-48F8-A06F-573D6F404A3C} - C:\Program Files\searchgol\searchgol\1.8.16.19\bh\searchgol.dll (file missing) O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O2 - BHO: BonanzaDeals - {fe063412-bea4-4d76-8ed3-183be6220d17} - C:\Program Files\BonanzaDeals\BonanzaDealsIE.dll (file missing) O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O3 - Toolbar: searchgol Toolbar - {00078E95-3A4A-4137-8DE7-2824908D1C17} - C:\Program Files\searchgol\searchgol\1.8.16.19\searchgolTlbr.dll (file missing) O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [000StTHK] 000StTHK.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [iTSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe O4 - HKLM\..\Run: [TFncKy] TFncKy.exe O4 - HKLM\..\Run: [00THotkey] C:\Windows\system32\00THotkey.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\RunOnce: [Del2585250] cmd.exe /Q /D /c del "C:\Users\drago\AppData\Local\Temp\0.del" O4 - HKCU\..\RunOnce: [Del2585250] cmd.exe /Q /D /c del "C:\Users\drago\AppData\Local\Temp\0.del" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: Bluetooth Manager.lnk = ? O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~1\mcafee\msc\mcsniepl.dll O23 - Service: McAfee Application Installer Cleanup (0113021381062623) (0113021381062623mcinstcleanup) - McAfee, Inc. - C:\Windows\TEMP\011302~1.EXE O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: BonanzaDealsLive-service (bonanzadealslive) (bonanzadealslive) - Unknown owner - C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe (file missing) O23 - Service: BonanzaDealsLive-service (bonanzadealslivem) (bonanzadealslivem) - Unknown owner - C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe (file missing) O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe O23 - Service: McAfee Personal Firewall (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Windows\system32\mfevtps.exe O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- End of file - 8043 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\UpdaterEX.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8F547BDD-FCD4-48F8-A06F-573D6F404A3C}] searchgol Helper Object - C:\Program Files\searchgol\searchgol\1.8.16.19\bh\searchgol.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}] McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2012-06-21 261568] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fe063412-bea4-4d76-8ed3-183be6220d17}] BonanzaDeals - C:\Program Files\BonanzaDeals\BonanzaDealsIE.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2012-06-21 261568] {00078E95-3A4A-4137-8DE7-2824908D1C17} - searchgol Toolbar - C:\Program Files\searchgol\searchgol\1.8.16.19\searchgolTlbr.dll [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-03-06 13605408] "NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2009-03-06 92704] "000StTHK"=C:\Windows\system32\000StTHK.exe [2001-06-23 24576] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] "mcpltui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2012-10-07 514936] "ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2008-12-19 83336] "PadTouch"=C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [2005-08-30 1077327] "TFncKy"=TFncKy.exe [] "00THotkey"=C:\Windows\system32\00THotkey.exe [2005-05-11 253952] "WinampAgent"=C:\Program Files\Winamp\winampa.exe [2010-01-14 37888] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Del2585250"=cmd.exe /Q /D /c del C:\Users\drago\AppData\Local\Temp\0.del [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Del2585250"=cmd.exe /Q /D /c del C:\Users\drago\AppData\Local\Temp\0.del [] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "DisableTaskMgr"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-10-06 16:10:10 ----D---- C:\Program Files\trend micro 2013-10-06 16:10:09 ----D---- C:\rsit 2013-10-06 15:00:32 ----RASH---- C:\MSDOS.SYS 2013-10-06 15:00:32 ----RASH---- C:\IO.SYS 2013-10-06 15:00:24 ----D---- C:\Windows\system32\Extensions 2013-10-06 15:00:17 ----D---- C:\Windows\system32\searchplugins 2013-10-06 14:59:17 ----D---- C:\Users\drago\AppData\Roaming\searchgol 2013-10-06 14:59:15 ----D---- C:\ProgramData\BitGuard 2013-10-06 14:59:13 ----D---- C:\Users\drago\AppData\Roaming\UpdaterEX 2013-10-06 14:59:03 ----D---- C:\ProgramData\BonanzaDealsLive 2013-10-06 14:57:32 ----D---- C:\ProgramData\Babylon 2013-10-06 14:46:38 ----A---- C:\Windows\system32\drivers\HipShieldK.sys 2013-10-06 14:22:24 ----A---- C:\Windows\system32\D3DX9_42.dll 2013-10-06 14:22:22 ----A---- C:\Windows\system32\d3dx9_31.dll 2013-10-06 14:21:21 ----D---- C:\Program Files\Winamp Detect 2013-10-06 14:09:23 ----D---- C:\Program Files\Common Files\PX Storage Engine 2013-10-06 14:07:14 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2013-10-06 14:07:13 ----D---- C:\Windows\system32\Macromed 2013-10-05 17:25:57 ----D---- C:\Users\drago\AppData\Roaming\Chilirec 2013-10-05 17:17:02 ----D---- C:\Users\drago\AppData\Roaming\ProgSense 2013-10-05 17:17:02 ----D---- C:\Downloads 2013-10-05 17:13:28 ----D---- C:\Users\drago\AppData\Roaming\Orbit 2013-10-05 16:07:54 ----D---- C:\ProgramData\Systweak 2013-10-04 10:46:24 ----D---- C:\Users\drago\AppData\Roaming\NCH Software 2013-10-04 08:31:54 ----D---- C:\Users\drago\AppData\Roaming\Systweak 2013-09-23 17:05:42 ----D---- C:\ProgramData\mquadr.at 2013-09-23 17:05:23 ----DC---- C:\ProgramData\{956A2848-3D1D-4838-BC7C-02757D5398E2} 2013-09-23 17:05:07 ----D---- C:\Program Files\KPN ======List of files/folders modified in the last 1 month====== 2013-10-06 16:10:10 ----RD---- C:\Program Files 2013-10-06 15:12:07 ----D---- C:\Windows\inf 2013-10-06 15:10:58 ----D---- C:\Windows\system32\config 2013-10-06 15:10:38 ----D---- C:\Windows\Tasks 2013-10-06 15:05:38 ----D---- C:\Windows\system32\Tasks 2013-10-06 15:02:45 ----D---- C:\Windows\system32\drivers 2013-10-06 15:02:44 ----D---- C:\Windows\system32\DriverStore 2013-10-06 15:01:10 ----SHD---- C:\Windows\Installer 2013-10-06 15:00:24 ----D---- C:\Windows\System32 2013-10-06 14:59:15 ----HD---- C:\ProgramData 2013-10-06 14:56:57 ----SHD---- C:\System Volume Information 2013-10-06 14:47:15 ----D---- C:\Windows\Temp 2013-10-06 14:46:38 ----D---- C:\Windows\system32\catroot 2013-10-06 14:40:28 ----D---- C:\Program Files\Common Files\McAfee 2013-10-06 14:37:54 ----D---- C:\Windows\system32\NDF 2013-10-06 14:30:12 ----D---- C:\Program Files\McAfee 2013-10-06 14:25:56 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-10-06 14:25:30 ----D---- C:\Users\drago\AppData\Roaming\Winamp 2013-10-06 14:23:46 ----D---- C:\Program Files\Winamp 2013-10-06 14:09:23 ----D---- C:\Program Files\Common Files 2013-10-06 14:08:55 ----D---- C:\Windows 2013-10-06 14:07:30 ----D---- C:\Windows\Downloaded Program Files 2013-10-06 14:03:21 ----RSD---- C:\Windows\Media 2013-10-06 14:03:21 ----D---- C:\Windows\system32\wbem 2013-10-06 14:03:21 ----D---- C:\Windows\system32\nl-NL 2013-10-06 14:03:21 ----D---- C:\Windows\ShellNew 2013-10-06 14:03:20 ----D---- C:\Windows\system32\wfp 2013-10-06 14:03:20 ----D---- C:\Program Files\Windows Journal 2013-10-06 14:03:20 ----D---- C:\Program Files\Internet Explorer 2013-10-06 14:03:13 ----D---- C:\Program Files\HTC 2013-10-06 14:03:12 ----D---- C:\Program Files\PC Connectivity Solution 2013-10-06 13:54:56 ----D---- C:\Windows\system32\catroot2 2013-10-06 13:54:54 ----D---- C:\Windows\winsxs 2013-10-06 13:01:32 ----D---- C:\Windows\system32\migration 2013-10-06 13:01:32 ----D---- C:\Windows\system32\en-US 2013-10-06 13:01:32 ----D---- C:\Windows\PolicyDefinitions 2013-10-06 13:01:32 ----D---- C:\Windows\L2Schemas 2013-10-06 13:01:32 ----D---- C:\Windows\AppPatch 2013-10-06 13:01:32 ----D---- C:\Program Files\Windows Defender 2013-10-06 13:01:22 ----D---- C:\Windows\system32\CodeIntegrity 2013-10-06 13:01:22 ----D---- C:\Windows\rescache 2013-10-06 13:01:22 ----D---- C:\Windows\Offline Web Pages 2013-10-06 13:01:12 ----D---- C:\Windows\AppCompat 2013-10-06 13:01:09 ----D---- C:\ProgramData\Microsoft Help 2013-10-06 13:01:09 ----D---- C:\Program Files\WinZip 2013-10-06 13:01:09 ----D---- C:\Program Files\Microsoft Silverlight 2013-10-06 13:01:06 ----D---- C:\Program Files\Common Files\microsoft shared 2013-10-06 13:00:19 ----D---- C:\Program Files\Common Files\Autodesk Shared 2013-10-06 13:00:11 ----D---- C:\Program Files\McAfee Security Scan 2013-10-06 13:00:11 ----D---- C:\Program Files\Lame For Audacity 2013-10-06 13:00:08 ----D---- C:\Program Files\Nokia 2013-10-06 12:59:58 ----D---- C:\ProgramData\FLEXnet 2013-10-06 12:59:01 ----D---- C:\Users\drago\AppData\Roaming\Audacity 2013-10-06 12:57:05 ----D---- C:\Windows\registration 2013-10-06 12:56:46 ----D---- C:\Windows\system32\wdi 2013-10-06 12:55:26 ----D---- C:\Windows\Microsoft.NET 2013-10-06 12:54:57 ----RSD---- C:\Windows\assembly 2013-10-06 12:54:27 ----SD---- C:\Users\drago\AppData\Roaming\Microsoft 2013-10-06 12:54:14 ----SD---- C:\ProgramData\Microsoft 2013-10-06 12:54:14 ----D---- C:\ProgramData\McAfee 2013-10-05 17:35:22 ----D---- C:\Windows\system32\appmgmt 2013-10-05 16:22:22 ----D---- C:\ProgramData\WinZip 2013-10-05 16:05:46 ----D---- C:\ProgramData\NCH Software 2013-09-12 18:40:11 ----D---- C:\Program Files\Google 2013-09-12 09:50:34 ----D---- C:\Windows\Prefetch 2013-09-11 11:16:13 ----D---- C:\Windows\system32\MRT ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 KR10N;KR10N; C:\Windows\system32\DRIVERS\KR10N.sys [2006-02-14 208256] R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2013-08-07 568632] R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2013-08-07 213232] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096] R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2009-02-19 63872] R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-14 1035776] R3 E100B;Intel® PRO Network Connection Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2007-03-14 165760] R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2013-08-07 133992] R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2013-08-07 235520] R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2013-08-07 365224] R3 mfencbdc;McAfee Inc. mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [2013-07-09 288056] R3 NETw2v32;Stuurprogramma voor Intel® PRO/Wireless 2200BG-netwerkverbinding onder Windows Vista; C:\Windows\system32\DRIVERS\NETw2v32.sys [2007-03-07 2595840] R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992] R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\sthda.sys [2005-06-09 967424] R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2005-06-03 162176] R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2008-03-25 41472] R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2008-10-06 137984] R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2009-03-03 36864] R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2006-10-23 9216] R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2009-03-05 74368] R3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2009-03-12 16128] R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2009-03-19 43264] R3 ttv500x;TOSHIBA PCI TV Tuner(x86); C:\Windows\system32\drivers\ttv500x.sys [2007-03-28 322816] S0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ.SYS [2004-09-08 9216] S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704] S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888] S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816] S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416] S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2013-08-07 60920] S3 HipShieldK;McAfee Inc. HipShieldK; C:\Windows\system32\drivers\HipShieldK.sys [2012-05-28 147472] S3 mfeavfk01;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk01.sys [] S3 mfeavfk02;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk02.sys [] S3 mfebopk;McAfee Inc. mfebopk; C:\Windows\system32\drivers\mfebopk.sys [2013-08-07 65928] S3 mfehidk01;McAfee Inc.; C:\Windows\system32\drivers\mfehidk01.sys [] S3 mfencbdc01;McAfee Inc.; C:\Windows\system32\drivers\mfencbdc01.sys [] S3 mfencbdc02;McAfee Inc.; C:\Windows\system32\drivers\mfencbdc02.sys [] S3 mfencrk;McAfee Inc. mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [2013-07-09 80656] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368] S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848] S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032] S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [] S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2009-03-23 54272] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 49664] S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [] S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736] S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-05 65640] R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe [2012-06-15 95232] R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872] R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2013-08-05 638976] R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2013-08-07 169320] R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2013-08-07 172416] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-03-06 203296] R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2009-03-17 144752] R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992] S2 0113021381062623mcinstcleanup;McAfee Application Installer Cleanup (0113021381062623); C:\Windows\TEMP\011302~1.EXE [2013-07-30 834664] S2 bonanzadealslive;BonanzaDealsLive-service (bonanzadealslive); C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe /svc [] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288] S2 McMPFSvc;McAfee Personal Firewall; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288] S2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288] S2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288] S2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288] S2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-06 257416] S3 bonanzadealslivem;BonanzaDealsLive-service (bonanzadealslivem); C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe /medsvc [] S3 McODS;McAfee Scanner; C:\Program Files\McAfee\VirusScan\mcods.exe [2013-08-02 471592] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-23 1343400] -----------------EOF-----------------
-
Beste PC-help forum Ik heb laptop die heel erg is traag geworden, waarschijnlijk door alle troep dat je binnen krijgt. ik ben niet enige dat hem gebruikt vandaar misschien zo vel troep in system beland. kan mijn iemand er helpen? alvast bedankt
