Lutty2520

Lid

Bekijk profiel Bekijk hun activiteit

Items
12
Registratiedatum
15 december 2012
Laatst bezocht
29 augustus 2013

Inhoudstype

Alle activiteit

Profielen

Forums

Store

Product Reviews

Alles dat geplaatst werd door Lutty2520

Laptop Medion Vista van 2010

Lutty2520 reageerde op Lutty2520's topic in Archief Windows Algemeen

Beste, ik heb het al het vorige gedaan en nu ook uw programma voorstel uitgevoerd. Is alles nu oke denk je? moet ik nog iets anders doen of nu effe gewoon afwachten? Bedankt voor de hulp en alvast een prettige zondag gewenst Lutty
- 18 augustus 2013
- 15 antwoorden
Laptop Medion Vista van 2010

Lutty2520 reageerde op Lutty2520's topic in Archief Windows Algemeen

info.txt logfile of random's system information tool 1.09 2013-08-16 10:03:36 ======Uninstall list====== Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe -maintain activex Adobe Flash Player 11 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_7_700_224_Plugin.exe -maintain plugin Adobe Reader 9.5.5 - Nederlands-->MsiExec.exe /I{AC76BA86-7AD7-1043-7B44-A95000000001} Adobe Shockwave Player 11-->C:\Windows\system32\adobe\SHOCKW~1\UNWISE.EXE C:\Windows\system32\Adobe\SHOCKW~1\Install.log Apple Application Support-->MsiExec.exe /I{5D09C772-ECB3-442B-9CC6-B4341C78FDC2} Apple Mobile Device Support-->MsiExec.exe /I{E14ADE0E-75F3-4A46-87E5-26692DD626EC} Apple Software Update-->MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} Azurewave Wireless LAN-->C:\Program Files\InstallShield Installation Information\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}\setup.exe -runfromtemp -l0x0009 -removeonly Bonjour-->MsiExec.exe /X{79155F2B-9895-49D7-8612-D92580E0DE5B} CCleaner-->"C:\Program Files\CCleaner\uninst.exe" Compatibiliteitspakket voor het 2007 Microsoft Office system-->MsiExec.exe /X{90120000-0020-0413-0000-0000000FF1CE} CorelDRAW Essential Edition 3-->"C:\Program Files\Corel\CorelDRAW Essential Edition 3\Programs\MSILauncher" {ADDBE07D-95B8-4789-9C76-187FFF9624B4} "C:\Users\ADMINI~1\AppData\Local\Temp\CGSX3.log" CorelDRAW Essential Edition 3-->MsiExec.exe /I{ADDBE07D-95B8-4789-9C76-187FFF9624B4} D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF} Google Chrome-->"C:\Program Files\Google\Chrome\Application\28.0.1500.95\Installer\setup.exe" --uninstall --multi-install --chrome --system-level Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_80ACC8E3971CD605.exe" /uninstall Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C} Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} HiJackThis-->MsiExec.exe /X{45A66726-69BC-466B-A7A4-12FCBA4883D7} Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" Intel PROSet Wireless-->Intel PROSet Wireless Intel® PROSet/Wireless WiFi Software-->MsiExec.exe /I{0E95DA08-2514-4399-AD87-349C350FA9DE} Internet Explorer (Enable DEP)-->%windir%\system32\sdbinst.exe -u "C:\Windows\AppPatch\Custom\{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb" Java 7 Update 25-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217025FF} Java 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070} Junk Mail filter update-->MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} Light Image Resizer 4.4.2.0-->"C:\Program Files\ObviousIdea\Image Resizer 4\unins000.exe" MakeDisc-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B145EC69-66F5-11D8-9D75-000129760D75}\Setup.exe" -uninstall Mesh Runtime-->MsiExec.exe /I{8C6D6116-B724-4810-8F2D-D047E6B7D68E} Messenger Companion-->MsiExec.exe /I{8142D25E-028A-4563-86ED-5755783C8029} Microsoft .NET Framework 3.5 Language Pack SP1 - nld-->MsiExec.exe /I{101738D7-D805-37A9-BB91-1F2C351782BF} Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft .NET Framework 4 Client Profile NLD Language Pack-->MsiExec.exe /X{2617FA1F-0C04-3ABB-AF64-7D5B6620C341} Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6} Microsoft Antimalware Service NL-NL Language Pack-->MsiExec.exe /X{F8EDC0F8-15BC-4411-8762-77105C8AAEEC} Microsoft Fix it Center-->MsiExec.exe /X{B7588D45-AFDC-4C93-9E2E-A100F3554B64} Microsoft Office Basic Editie 2003-->MsiExec.exe /I{91130413-6000-11D3-8CFE-0150048383C9} Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE} Microsoft Office Outlook Connector-->MsiExec.exe /X{95140000-007F-0413-0000-0000000FF1CE} Microsoft Office PowerPoint Viewer 2007 (Dutch)-->MsiExec.exe /X{95120000-00AF-0413-0000-0000000FF1CE} Microsoft Security Client NL-NL Language Pack-->MsiExec.exe /I{50779A29-834E-4E36-BBEB-B7CABC67A825} Microsoft Security Client-->MsiExec.exe /X{3DADB23F-94E6-4E4D-AFE8-15DE4395E8F3} Microsoft Security Essentials-->"C:\Program Files\Microsoft Security Client\Setup.exe" /x Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411-->MsiExec.exe /X{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F} Microsoft Works-->MsiExec.exe /I{5158F1F5-FA1B-4D49-B546-55A5004B89BD} MobileWiFi-->C:\Program Files\MobileWiFi\uninst.exe Mozilla Firefox 16.0.2 (x86 nl)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe" MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} NL-->MsiExec.exe /I{D6436C60-3C20-4C5E-9267-349B09ACED0D} Norton Bootable Recovery Tool Wizard-->C:\Program Files\NortonInstaller\{16DD5937-8A6A-4e65-A874-E19C3B0708A5}\NBRTWizard\LicenseType\5.1.0.26\InstStub.exe /X /ARP NVIDIA Drivers-->C:\Windows\system32\NVUNINST.EXE UninstallGUI NVIDIA HD Audio-stuurprogramma 1.3.18.0-->"C:\Windows\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.{2B0135EF-0143-4305-8F84-674E23629892}\NVI2.DLL",UninstallPackage HDAudio.Driver Picasa 3-->"C:\Program Files\Google\Picasa3\Uninstall.exe" PowerDVD-->"C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall Realtek 8169 8168 8101E 8102E Ethernet Driver-->C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x0013 -removeonly Realtek High Definition Audio Driver-->RtlUpd.exe -r -m -nrg2709 Realtek USB 2.0 Card Reader-->C:\Program Files\InstallShield Installation Information\{DC24971E-1946-445D-8A82-CE685433FA7D}\setup.exe -runfromtemp -l0x0013 -removeonly Registry Mechanic-->"C:\Program Files\Registry Mechanic\unins000.exe" Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {94EFE014-E577-310B-B2D5-6973A21D8A90} /qb+ REBOOTPROMPT="" Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {F6F5AC31-9833-3E77-AC8E-8E910CAB39AE} /qb+ REBOOTPROMPT="" Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {939AF4BC-EC42-38D1-AE82-91D4A7ED8911} /qb+ REBOOTPROMPT="" Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8433C01-319F-3370-850E-87C35496299A} /qb+ REBOOTPROMPT="" Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {3E0806DB-3085-378A-840A-F0D3AE3609D1} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8DDEFC7E-0C61-3D11-AFC6-5414F2DAFD01} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {9EC88EA8-4ABE-393C-87BD-90EABB1C4C9B} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {86BB5A25-8CC3-33CE-A393-CF28901682B2} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {16EEC04A-B924-37E0-97CF-422DCEFC1B63} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {C4D978AA-2668-3404-96DE-96E2AFC62FD7} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {ECBEE23D-AB7E-3DAA-B66B-CD52003198F1} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {788818B1-B191-3217-A210-7ACFDE19CE4A} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {B7C20E16-9A3A-3F05-A6B5-E15AA09200E0} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CF581973-77E0-3093-A1AC-A03130DE990F} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {80774950-A707-386B-9C9B-D052D20BD54B} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {576C07F8-777C-3981-B8BF-063A6B57254E} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {90EA7C4E-7F03-31FD-BE27-B1A9B4AE56BD} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {1E88AFAE-CEF7-3540-8FF6-6D00877B2767} /parameterfolder Client Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder ClientLP Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder ClientLP Segoe UI-->MsiExec.exe /I{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA} Simplo Webcam-->C:\Program Files\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x0013 -removeonly Speccy-->"C:\Program Files\Speccy\uninst.exe" Spyware Doctor 3.2-->"C:\Program Files\Spyware Doctor\unins000.exe" Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall System Requirements Lab for Intel-->MsiExec.exe /I{CD41B576-4787-4D5C-95EE-24A4ABD89CD3} Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\setup.exe Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1043 /parameterfolder ClientLP Update for Microsoft .NET Framework 3.5 SP1 (KB2836940)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {F0718E41-9C73-3700-98D1-2F397B57A765} /qb+ REBOOTPROMPT="" Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT="" Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client Update for Microsoft .NET Framework 4 Client Profile (KB2836939)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {0160BA31-409C-3FD0-9C87-C7D95BF46986} /parameterfolder Client Update Manager-->MsiExec.exe /I{F428D0FB-765D-40EB-BDD8-A1E7F5C597FA} VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027} Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066} Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe Windows Live Essentials-->MsiExec.exe /I{2A07C35B-8384-4DA4-9A95-442B6C89A073} Windows Live Family Safety-->MsiExec.exe /I{DF33FDAF-22DE-4E3E-AFF7-A8648B473596} Windows Live Family Safety-->MsiExec.exe /X{2D6E3D97-1FDF-4993-AC75-72F59EC445C5} Windows Live ID Sign-in Assistant-->MsiExec.exe /I{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F} Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917} Windows Live Mail-->MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30} Windows Live Mail-->MsiExec.exe /I{D588365A-AE39-4F27-BDAE-B4E72C8E900C} Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen-->MsiExec.exe /I{C32CE55C-12BA-4951-8797-0967FDEF556F} Windows Live Mesh-->MsiExec.exe /I{3F4143A1-9C21-4011-8679-3BC1014C6886} Windows Live Mesh-->MsiExec.exe /I{DECDCB7C-58CC-4865-91AF-627F9798FE48} Windows Live Messenger Companion Core-->MsiExec.exe /I{78A96B4C-A643-4D0F-98C2-A8E16A6669F9} Windows Live Messenger-->MsiExec.exe /X{48294D95-EE9A-4377-8213-44FC4265FB27} Windows Live Messenger-->MsiExec.exe /X{E5B21F11-6933-4E0B-A25C-7963E3C07D11} Windows Live MIME IFilter-->MsiExec.exe /I{AF844339-2F8A-4593-81B3-9F4C54038C4E} Windows Live Movie Maker-->MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38} Windows Live Movie Maker-->MsiExec.exe /X{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92} Windows Live Photo Common-->MsiExec.exe /X{9BD262D0-B788-4546-A0A5-F4F56EC3834B} Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3} Windows Live Photo Gallery-->MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1} Windows Live Photo Gallery-->MsiExec.exe /X{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA} Windows Live PIMT Platform-->MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F} Windows Live Remote Client Resources-->MsiExec.exe /I{F0CCBE54-9132-44E9-82DF-CD364AD5C22D} Windows Live Remote Client-->MsiExec.exe /I{19A4A990-5343-4FF7-B3B5-6F046C091EDF} Windows Live Remote Service Resources-->MsiExec.exe /I{845E0BCB-8C8D-4FAB-8588-AD5FFD156C95} Windows Live Remote Service-->MsiExec.exe /I{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0} Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F} Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4} Windows Live UX Platform Language Pack-->MsiExec.exe /I{D6F25CF9-4E87-43EB-B324-C12BE9CDD668} Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} Windows Live Writer Resources-->MsiExec.exe /X{14B441B7-774D-4170-98EA-A13667AE6218} Windows Live Writer-->MsiExec.exe /X{7E017923-16F8-4E32-94EF-0A150BD196FE} Windows Live Writer-->MsiExec.exe /X{A726AE06-AAA3-43D1-87E3-70F510314F04} Windows Live Writer-->MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF} Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} ======Security center information====== AS: Windows Defender ======System event log====== Computer Name: LUTTY Event Code: 10029 Message: DCOM heeft de service BITS met argumenten "" gestart om de server te kunnen uitvoeren: {4991D34B-80A1-4291-83B6-3328366B9097} Record Number: 393050 Source Name: Microsoft-Windows-DistributedCOM Time Written: 20130624112011.000000-000 Event Type: Informatie User: Computer Name: LUTTY Event Code: 1103 Message: De computer heeft een adres toegewezen gekregen van het netwerk en kan nu verbinding met andere computers maken. Record Number: 393049 Source Name: Microsoft-Windows-Dhcp-Client Time Written: 20130624111959.000000-000 Event Type: Informatie User: Computer Name: LUTTY Event Code: 7036 Message: De Remote Access Connection Manager-service heeft nu de status wordt uitgevoerd. Record Number: 393048 Source Name: Service Control Manager Time Written: 20130624111958.000000-000 Event Type: Informatie User: Computer Name: LUTTY Event Code: 20003 Message: Het toevoegen van service tunnel voor apparaat-id ROOT\*ISATAP\0070 is voltooid door Stuurprogrammabeheer met de volgende status: 0. Record Number: 393047 Source Name: Microsoft-Windows-User-PnP Time Written: 20130624111948.337542-000 Event Type: Informatie User: NT AUTHORITY\SYSTEEM Computer Name: LUTTY Event Code: 7036 Message: De Telephony-service heeft nu de status wordt uitgevoerd. Record Number: 393046 Source Name: Service Control Manager Time Written: 20130624111950.000000-000 Event Type: Informatie User: =====Application event log===== Computer Name: LUTTY Event Code: 0 Message: Record Number: 90930 Source Name: RichVideo Time Written: 20121103182642.000000-000 Event Type: Informatie User: Computer Name: LUTTY Event Code: 0 Message: Record Number: 90929 Source Name: RegSrvc Time Written: 20121103182642.000000-000 Event Type: Informatie User: Computer Name: LUTTY Event Code: 902 Message: De Software Licensing-service is gestart. Record Number: 90928 Source Name: Microsoft-Windows-Security-Licensing-SLC Time Written: 20121103182636.000000-000 Event Type: Informatie User: Computer Name: LUTTY Event Code: 1005 Message: Het resultaat van het verbruik van Windows-recht is: hr=0x0 Record Number: 90927 Source Name: Microsoft-Windows-Security-Licensing-SLC Time Written: 20121103182635.000000-000 Event Type: Informatie User: Computer Name: LUTTY Event Code: 1003 Message: De statuscontrole van de licentie door de Software Licensing-service is voltooid. Id van toepassing=55c92734-d682-4d71-983e-d6ec3f16059f Licentiestatus= {1,[11db994f-af86-4eb9-af35-fb4e3b0256f5, 8, 0xC004F014,0x0]} {1,[3a1d44e2-bede-46fb-8a02-0cd485a1db8b, 8, 0xC004F014,0x0]} {1,[6b16d38b-7dac-4614-9948-b4a92ddba889, 8, 0xC004F014,0x0]} {1,[9e042223-03bf-49ae-808f-ff37f128d40d, 8, 0xC004F014,0x0]} {1,[a3481201-436e-4fc9-88b4-34ccf7f81789, 8, 0xC004F014,0x0]} {1,[a4eec485-e375-48b4-8f51-80d13a4086b6, 8, 0xC004F014,0x0]} {1,[a7a4a974-ad47-420e-8e1a-83d28572058a, 8, 0xC004F014,0x0]} {1,[b6795467-dc45-4acf-af87-e948ee3f15f4, 8, 0xC004F014,0x0]} {1,[bffdc375-bbd5-499d-8ef1-4f37b61c895f, 0, 0x0,0x0],[0x0,0x0,0x0,0,0,0x0],[0x0,0xFFFFFFFF,0x0,0,0,0x0],[0x0,0xFFFFFFFF,0x0,0,0,0x0],[0,0,0x0]} {1,[c3505bd0-004a-49b9-84db-a1a4869eddf1, 8, 0xC004F014,0x0]} {1,[c5d8ec70-e2ae-42d8-aaa9-eec3772438ee, 8, 0xC004F014,0x0]} {1,[cdb090c3-053c-4cd1-9cb2-e35b1738747a, 8, 0xC004F014,0x0]} {1,[da0483a8-c443-45fd-9b52-2bba9b2ee8ab, 8, 0xC004F014,0x0]} {1,[e05164a4-fb9a-471f-8c3a-6959b4cf1b72, 8, 0xC004F014,0x0]} {1,[f3acdd3c-119a-4932-a3d7-0b6f33a1dca9, 8, 0xC004F014,0x0]} {1,[afd5f68f-b70f-4000-a21d-28dbc8be8b07, 8, 0xC004F014,0x0]} Record Number: 90926 Source Name: Microsoft-Windows-Security-Licensing-SLC Time Written: 20121103182635.000000-000 Event Type: Informatie User: =====Security event log===== Computer Name: LUTTY Event Code: 4634 Message: Er is een account afgemeld. Onderwerp: Beveiligings-id: S-1-5-21-4200065788-2244337797-1109055521-1000 Accountnaam: Lutty Accountdomein: LUTTY Aanmeldings-id: 0x914c7 Aanmeldingstype: 7 Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt vernietigd. De gebeurtenis kan met behulp van de aanmeldings-id positief worden afgestemd met een aanmeldingsgebeurtenis. Aanmeldings-id's zijn alleen uniek wanneer de computer opnieuw is opgestart. Record Number: 94657 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20130112084833.413000-000 Event Type: Controle geslaagd User: Computer Name: LUTTY Event Code: 4672 Message: Speciale bevoegdheden toegewezen aan nieuwe aanmelding. Onderwerp: Beveiligings-id: S-1-5-21-4200065788-2244337797-1109055521-1000 Accountnaam: Lutty Accountdomein: LUTTY Aanmeldings-id: 0x914af Bevoegdheden: SeSecurityPrivilege SeTakeOwnershipPrivilege SeLoadDriverPrivilege SeBackupPrivilege SeRestorePrivilege SeDebugPrivilege SeSystemEnvironmentPrivilege SeImpersonatePrivilege Record Number: 94656 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20130112084832.007000-000 Event Type: Controle geslaagd User: Computer Name: LUTTY Event Code: 4624 Message: Er is een account aangemeld. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: LUTTY$ Accountdomein: MSHOME Aanmeldings-id: 0x3e7 Aanmeldingstype: 7 Nieuwe aanmelding: Beveiligings-id: S-1-5-21-4200065788-2244337797-1109055521-1000 Accountnaam: Lutty Accountdomein: LUTTY Aanmeldings-id: 0x914c7 Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Procesgegevens: Proces-id: 0x3d4 Naam proces: C:\Windows\System32\winlogon.exe Netwerkgegevens: Naam van werkstation: LUTTY Netwerkadres van bron: 127.0.0.1 Poort van bron: 0 Gedetailleerde verificatiegegevens: Aanmeldingsproces: User32 Verificatiepakket: Negotiate Doorgezette services: - Pakketnaam (alleen NTLM): - Sleutellengte: 0 Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen. De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe. In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk). Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld. In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn. De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag. - Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis. - In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt. - Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt. - Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd. Record Number: 94655 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20130112084832.007000-000 Event Type: Controle geslaagd User: Computer Name: LUTTY Event Code: 4624 Message: Er is een account aangemeld. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: LUTTY$ Accountdomein: MSHOME Aanmeldings-id: 0x3e7 Aanmeldingstype: 7 Nieuwe aanmelding: Beveiligings-id: S-1-5-21-4200065788-2244337797-1109055521-1000 Accountnaam: Lutty Accountdomein: LUTTY Aanmeldings-id: 0x914af Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Procesgegevens: Proces-id: 0x3d4 Naam proces: C:\Windows\System32\winlogon.exe Netwerkgegevens: Naam van werkstation: LUTTY Netwerkadres van bron: 127.0.0.1 Poort van bron: 0 Gedetailleerde verificatiegegevens: Aanmeldingsproces: User32 Verificatiepakket: Negotiate Doorgezette services: - Pakketnaam (alleen NTLM): - Sleutellengte: 0 Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen. De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe. In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk). Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld. In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn. De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag. - Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis. - In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt. - Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt. - Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd. Record Number: 94654 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20130112084832.007000-000 Event Type: Controle geslaagd User: Computer Name: LUTTY Event Code: 4648 Message: Poging tot aanmelden met expliciete referenties. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: LUTTY$ Accountdomein: MSHOME Aanmeldings-id: 0x3e7 Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Account waarvan de referenties zijn gebruikt: Accountnaam: Lutty Accountdomein: LUTTY Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Doelserver: Naam van doelserver: localhost Aanvullende gegevens: localhost Procesgegevens: Proces-id: 0x3d4 Procesnaam: C:\Windows\System32\winlogon.exe Netwerkgegevens: Netwerkadres: 127.0.0.1 Poort: 0 Deze gebeurtenis wordt gegenereerd wanneer een proces probeert zich op een account aan te melden door expliciet de referenties van die account op te geven. Meestal gebeurt dit in batchconfiguraties zoals geplande taken, of bij gebruik van de opdracht Uitvoeren als. Record Number: 94653 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20130112084832.007000-000 Event Type: Controle geslaagd User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "Path"=C:\Program Files\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\EgisTec\MyWinLocker 3\x86;C:\Program Files\EgisTec\MyWinLocker 3\x64;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\Windows Live\Shared "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC "PROCESSOR_ARCHITECTURE"=x86 "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "USERNAME"=SYSTEM "windir"=%SystemRoot% "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel "PROCESSOR_REVISION"=0f0d "NUMBER_OF_PROCESSORS"=2 "TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat "DFSTRACINGON"=FALSE "PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\ "asl.log"=Destination=file -----------------EOF----------------- Hopelijk is het zo goed Prettige dag nog Lutty
- 16 augustus 2013
- 15 antwoorden
Laptop Medion Vista van 2010

Lutty2520 reageerde op Lutty2520's topic in Archief Windows Algemeen

# AdwCleaner v2.306 - Verslag gemaakt op 15/08/2013 om 17:17:43 # Geactualiseerd op 19/07/2013 door Xplode # Besturingssysteem : Windows Vista Home Premium Service Pack 2 (32 bits) # Gebruiker : Lutty - LUTTY # Opstarten Modus : Normale modus # Gelanceerd vanaf : C:\Users\Lutty\Downloads\AdwCleaner.exe # Optie [Verwijderen] ***** [Diensten] ***** ***** [Files / Mappen] ***** File Verwijderd : C:\Program Files\Mozilla Firefox\searchplugins\adawaretb.xml Map Verwijderd : C:\Program Files\registry mechanic Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\registry mechanic ***** [Register] ***** Sleutel Verwijderd : HKCU\Software\585388d0b23ee913 Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\adawaretb Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\PriceGong Sleutel Verwijderd : HKCU\Software\BabSolution Sleutel Verwijderd : HKCU\Software\DataMngr_Toolbar Sleutel Verwijderd : HKCU\Software\ilivid Sleutel Verwijderd : HKCU\Software\IM Sleutel Verwijderd : HKCU\Software\ImInstaller Sleutel Verwijderd : HKCU\Software\InstallCore Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E} Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchCore for Browsers Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B} Sleutel Verwijderd : HKCU\Software\SearchCore for Browsers Sleutel Verwijderd : HKCU\Software\Softonic Sleutel Verwijderd : HKLM\SOFTWARE\585388d0b23ee913 Sleutel Verwijderd : HKLM\Software\Babylon Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr Sleutel Verwijderd : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Conduit.Engine Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Prod.cap Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Toolbar.CT2724386 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Toolbar.CT2727678 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947} Sleutel Verwijderd : HKLM\Software\Conduit Sleutel Verwijderd : HKLM\Software\DataMngr Sleutel Verwijderd : HKLM\Software\iLividSRTB Sleutel Verwijderd : HKLM\Software\ImInstaller Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4E42-A125-57C0A11DBCDE} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9} Sleutel Verwijderd : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1d575a3306271ecdf72a2148d0b60f15 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1e51f85eba74646fe9f5e88b4f1b595b Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\5f79cbba6cbd36b86b391709c45f3a36 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\920be7335951e221f433bc7c18826895 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\d8f31a842ec4b76cc970f1646dac551f Sleutel Verwijderd : HKLM\Software\systweak Sleutel Verwijderd : HKLM\Software\Tarma Installer Waarde Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10] ***** [browsers] ***** -\\ Internet Explorer v9.0.8112.16502 [OK] Het register bevat geen enkele ongeoorloofde invoer. -\\ Mozilla Firefox v16.0.2 (nl) File : C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\prefs.js [OK] De file bevat geen enkele ongeoorloofde invoer. -\\ Google Chrome v28.0.1500.95 File : C:\Users\Lutty\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] De file bevat geen enkele ongeoorloofde invoer. File : C:\Users\Pluchke\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] De file bevat geen enkele ongeoorloofde invoer. -\\ Opera v [Onmogelijk de versie te verkrijgen] File : C:\Users\Lutty\AppData\Roaming\Opera\Opera\operaprefs.ini [OK] De file bevat geen enkele ongeoorloofde invoer. File : C:\Users\Pluchke\AppData\Roaming\Opera\Opera\operaprefs.ini [OK] De file bevat geen enkele ongeoorloofde invoer. ************************* AdwCleaner[s1].txt - [5594 octets] - [15/08/2013 17:17:43] ########## EOF - C:\AdwCleaner[s1].txt - [5654 octets] ##########
- 15 augustus 2013
- 15 antwoorden
Laptop Medion Vista van 2010

Lutty2520 reageerde op Lutty2520's topic in Archief Windows Algemeen

http://speccy.piriform.com/results/SzVcfdmIBLOYSsFyo4yVp0j
- 15 augustus 2013
- 15 antwoorden
Laptop Medion Vista van 2010

Lutty2520 reageerde op Lutty2520's topic in Archief Windows Algemeen

Zoek.exe Version 4.0.0.4 Updated 10-August-2013 Tool run by Lutty on wo 14/08/2013 at 21:08:49,40. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Lutty\Downloads\zoek.exe [Quick Scan] [Auto Clean] ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2002} deleted successfully HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default ---- Lines delta removed from prefs.js ---- ---- Lines delta modified from prefs.js ---- ---- Lines delta removed from user.js ---- user_pref("extensions.delta.tlbrSrchUrl", ""); user_pref("extensions.delta.id", "3ef9625b0000000000000016eacf9136"); user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}"); user_pref("extensions.delta.instlDay", "15847"); user_pref("extensions.delta.vrsn", "1.8.21.5"); user_pref("extensions.delta.vrsni", "1.8.21.5"); user_pref("extensions.delta.vrsnTs", "1.8.21.516:25:33"); user_pref("extensions.delta.prtnrId", "delta"); user_pref("extensions.delta.prdct", "delta"); user_pref("extensions.delta.aflt", "babsst"); user_pref("extensions.delta.smplGrp", "none"); user_pref("extensions.delta.tlbrId", "base"); user_pref("extensions.delta.instlRef", "sst"); user_pref("extensions.delta.dfltLng", "en"); user_pref("extensions.delta.excTlbr", false); user_pref("extensions.delta.ffxUnstlRst", true); user_pref("extensions.delta.admin", false); user_pref("extensions.delta_i.babTrack", "affID=119357&tt=gc_"); user_pref("extensions.delta_i.babExt", ""); user_pref("extensions.delta_i.srcExt", "ss"); user_pref("extensions.delta.autoRvrt", "false"); user_pref("extensions.delta.rvrt", "false"); user_pref("extensions.delta.newTab", false); ---- Lines securedsearch removed from prefs.js ---- user_pref("browser.startup.homepage", "http://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_1&ent=hp&u=99555750464A8EA5CF307151D91A13D4"); ---- Lines securedsearch modified from prefs.js ---- ---- Lines babylon removed from prefs.js ---- ---- Lines babylon modified from prefs.js ---- ---- Lines SecureSearch removed from prefs.js ---- user_pref("browser.search.selectedEngine", "SecureSearch"); ---- Lines SecureSearch modified from prefs.js ---- ---- Lines browser.startup.page removed from prefs.js ---- user_pref("browser.startup.page", 1); ---- Lines browser.startup.page modified from prefs.js ---- ---- FireFox user.js and prefs.js backups ---- user_20131408_2113_.backup prefs_20131408_2113_.backup prefs_20132202_1824_.backup ==== Deleting Files \ Folders ====================== "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\searchplugins\delta.xml" deleted "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\searchplugins\babylon.xml" deleted "C:\Program Files\Mozilla Firefox\searchplugins\Search_Results.xml" deleted "C:\Users\Lutty\Downloads\SoftonicDownloader_voor_ad-aware.exe" deleted "C:\Windows\System32\Tasks\DSite" deleted "C:\Windows\tasks\DSite.job" deleted "C:\Windows\system32\roboot.exe" deleted "C:\Windows\System32\SET3BDC.tmp" deleted "C:\Windows\System32\SET692F.tmp" deleted "C:\Windows\System32\SET6CCB.tmp" deleted "C:\Windows\System32\SETA343.tmp" deleted "C:\Windows\System32\SETA4AA.tmp" deleted "C:\Windows\System32\SETA71E.tmp" deleted "C:\Windows\System32\SETA7E9.tmp" deleted "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\searchplugins\babylon.xml" deleted "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\searchplugins\askcom.xml" deleted "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\searchplugins\Search_Results.xml" deleted "C:\Program Files\MyPC Backup" deleted "C:\Users\Lutty\AppData\Roaming\Babylon" deleted "C:\Users\Lutty\AppData\Roaming\DSite" deleted "C:\Users\Lutty\AppData\Roaming\Systweak" deleted "C:\ProgramData\Tarma Installer" deleted "C:\ProgramData\Babylon" deleted "C:\ProgramData\Trymedia" deleted "C:\Users\Lutty\AppData\Local\PackageAware" deleted "C:\Users\Lutty\AppData\LocalLow\searchresultstb" deleted "C:\Users\Lutty\AppData\LocalLow\Delta" deleted "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\extensions\ffxtlbr@babylon.com" deleted "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\extensions\staged" deleted "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\extensions\ffxtlbr@babylon.com" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-08-09 04:54:46 06F6157BB950921D39872CEA98756DCB 224413056 ----a-w- C:\Windows\MEMORY.DMP ====== C:\Users\Lutty\AppData\Local\Temp ==== ====== C:\Windows\system32 ===== 2013-08-01 09:51:58 498BD12B38B549887D9E856EB734354E 106928 ----a-w- C:\Windows\System32\GEARAspi.dll ====== C:\Windows\system32\drivers ===== 2013-08-01 09:52:06 185ADA973B5020655CEE342059A86CBB 26840 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys ====== C:\Windows\Tasks ====== 2013-08-14 19:07:31 3117CBBAAF073C705E16B7F91FF17FF7 2966 ----a-w- C:\Windows\system32\Tasks\{7561B11A-7331-4D8E-9198-A9BE1BCD9F03} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C: ===== ====== C:\Users\Lutty\AppData\Roaming ====== 2013-07-27 08:17:03 0BE991E5089C94B755B8C444DA6DAB89 75 ----a-w- C:\users\Lutty\AppData\Roaming\WB.CFG ====== C:\Users\Lutty ====== 2013-08-14 14:07:42 8AEB5D7CF5182094977760A765FA5B01 5126104 ----a-w- C:\Users\Lutty\Downloads\spsetup122 (1).exe 2013-08-14 13:59:41 8AEB5D7CF5182094977760A765FA5B01 5126104 ----a-w- C:\Users\Lutty\Downloads\spsetup122.exe 2013-08-11 08:13:42 214591D03A6838A8F54FE7ACA0661237 104 ----a-w- C:\Users\Lutty\Internet - Snelkoppeling.lnk 2013-08-01 13:18:00 7631D5A57627F22C412C6010E264D1C6 846 ----a-w- C:\Users\Lutty\Week 70 71.lnk 2013-07-28 20:54:00 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\Users\Pluchke\ntuser.pol 2013-07-18 18:04:31 B220016FC8919F58EA1BA7F5CD69397C 900 ----a-w- C:\Users\Lutty\Week 68 69 Snelkoppeling.lnk ====== C: exe-files == 2013-08-14 14:07:42 8AEB5D7CF5182094977760A765FA5B01 5126104 ----a-w- C:\Users\Lutty\Downloads\spsetup122 (1).exe 2013-08-14 13:59:41 8AEB5D7CF5182094977760A765FA5B01 5126104 ----a-w- C:\Users\Lutty\Downloads\spsetup122.exe 2013-08-13 17:14:58 EB43F540338470C8FE4AAE8378780CAA 784224 ----a-w- C:\Program Files\Google\Update\Install\{B23AECF9-7389-48BF-B281-FD72DE7AAD8C}\28.0.1500.95_28.0.1500.72_chrome_updater.exe 2013-08-13 17:14:58 EB43F540338470C8FE4AAE8378780CAA 784224 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\28.0.1500.95\28.0.1500.95_28.0.1500.72_chrome_updater.exe 2013-08-11 08:12:22 6A22D2ABDD6969D78C2C8ADA0BC3C83C 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-4200065788-2244337797-1109055521-1000\$IY32XTE.exe 2013-08-11 08:06:26 B917E7B8A85F0668E4920FF52A76E8FB 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-4200065788-2244337797-1109055521-1000\$IQ5IH6G.exe 2013-08-11 08:06:23 2FE5DA8681C15B723A09F3B5365550AD 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-4200065788-2244337797-1109055521-1000\$IJKW075.exe 2013-08-11 08:06:20 86E02866E21956E46637294193B43D52 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-4200065788-2244337797-1109055521-1000\$IERMYUV.exe 2013-08-11 08:06:15 8EAA8BB323E01A4D726F42D81035016B 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-4200065788-2244337797-1109055521-1000\$IIAUCW4.exe 2013-08-11 08:06:07 FC855417EFDE8DD72265A272C7E684C8 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-4200065788-2244337797-1109055521-1000\$I0URHJA.exe === C: other files == 2013-08-14 19:09:07 90A594537C3731C9A3AB3B540868B60B 346 ----a-w- C:\Users\Lutty\AppData\Local\Temp\drives.vbs 2013-08-11 09:26:14 83336DEEB678A7813B3A29573A0D1AA5 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-4200065788-2244337797-1109055521-1000\$IDR1JQK.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Windows\CurrentVersion\Run] "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "Search Protection"="C:\ProgramData\Search Protection\SearchProtection.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ehTray.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ehTray.exe" "hkey"="HKCU" "command"="C:\\Windows\\ehome\\ehTray.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Desktop Search] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Google Desktop Search" "hkey"="HKLM" "command"="\"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ISUSPM] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ISUSPM" "hkey"="HKCU" "command"="\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\ISUSPM.exe\" -scheduler" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LanguageShortcut] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="LanguageShortcut" "hkey"="HKLM" "command"="\"C:\\Program Files\\HomeCinema\\PowerDVD\\Language\\Language.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MobileBroadband] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MobileBroadband" "hkey"="HKLM" "command"="C:\\Program Files\\Vodafone\\Vodafone Mobile Broadband\\Bin\\MobileBroadband.exe /silent" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSC] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MSC" "hkey"="HKLM" "command"="\"c:\\Program Files\\Microsoft Security Client\\msseces.exe\" -hide -runkey" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msnmsgr" "hkey"="HKCU" "command"="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mwlDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mwlDaemon" "hkey"="HKLM" "command"="C:\\Program Files\\EgisTec\\MyWinLocker 3\\x86\\mwlDaemon.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NBKeyScan] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NBKeyScan" "hkey"="HKLM" "command"="\"C:\\Program Files\\Nero\\Nero8\\Nero BackItUp\\NBKeyScan.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvCplDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvCplDaemon" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\Windows\\system32\\NvCpl.dll,NvStartup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvMediaCenter] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvMediaCenter" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\Windows\\system32\\NvMcTray.dll,NvTaskbarInit" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RemoteControl] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RemoteControl" "hkey"="HKLM" "command"="\"C:\\Program Files\\HomeCinema\\PowerDVD\\PDVDServ.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RtHDVCpl" "hkey"="HKLM" "command"="RtHDVCpl.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skytel] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Skytel" "hkey"="HKLM" "command"="Skytel.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spyware Doctor] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Spyware Doctor" "hkey"="HKCU" "command"="\"C:\\Program Files\\Spyware Doctor\\swdoctor.exe\" /Q" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SynTPEnh] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SynTPEnh" "hkey"="HKLM" "command"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\toolbar_eula_launcher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="toolbar_eula_launcher" "hkey"="HKLM" "command"="C:\\Program Files\\GoogleEULA\\EULALauncher.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\tsnp2uvc] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="tsnp2uvc" "hkey"="HKLM" "command"="C:\\Windows\\tsnp2uvc.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UCam_Menu] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="UCam_Menu" "hkey"="HKLM" "command"="\"C:\\Program Files\\HomeCinema\\YouCam\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files\\HomeCinema\\YouCam\" update \"Software\\CyberLink\\YouCam\\2.0\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Windows Defender] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Windows Defender" "hkey"="HKLM" "command"="%ProgramFiles%\\Windows Defender\\MSASCui.exe -hide" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WMPNSCFG] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="WMPNSCFG" "hkey"="HKCU" "command"="C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Yontoo Desktop] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Yontoo Desktop" "hkey"="HKCU" "command"="\"C:\\Users\\Lutty\\AppData\\Roaming\\Yontoo\\YontooDesktop.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\McAfee Security Scan Plus.lnk" "backup"="C:\\Windows\\pss\\McAfee Security Scan Plus.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~1\\MCAFEE~1\\30982A~1.207\\SSSCHE~1.EXE " "item"="McAfee Security Scan Plus" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "ICSDCLT"="C:\\Windows\\rundll32.exe C:\\Windows\\system32\\icsdclt.dll,ICSClient" "Adobe Reader Speed Launcher"="\"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"" "Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [12/06/2013 18:53] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29/05/2011 22:44] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29/05/2011 22:44] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default - Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension - New Tab - %ProfilePath%\extensions\{3247D0F1-1E1E-43ED-94E5-7E40F54E1C83} AppDir: C:\Program Files\Mozilla Firefox - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} ==== Firefox Plugins ====================== Profilepath: C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default D7324EB1EDCB8990F8522DE0311359E9 - C:\Windows\system32\npdeployJava1.dll - Java Deployment Toolkit 7.0.250.17 AE84791D996D1F05A2446B0C447D937A - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll - Adobe Acrobat C548328E9DE5EB73350EF292D7140662 - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa C517E5EA7CEE783F3681F62D2A362E5B - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation ACEF2CBC1032BC14D112EB4494537DA5 - C:\Windows\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director AE84791D996D1F05A2446B0C447D937A - C:\Program Files\Adobe\Reader 9.0\Reader\browser\nppdf32.dll - Adobe Acrobat DFCAB29E8FD38F95650CC1E203E8D318 - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System ==== Deleting Files \ Folders ====================== "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\extensions\{3247D0F1-1E1E-43ED-94E5-7E40F54E1C83}" deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions oejkcgajlodefenbbjdnaiahmbnnoole - C:\Program Files\adawaretb\chrome-newtab-search.crx[] Google Docs - Lutty - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Lutty - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Lutty - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Lutty - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Pixlr-o-matic - Lutty - Default\Extensions\ehcibdjmpjlekgjhepbfmenfppliikcj Gmail - Lutty - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://search.babylon.com/?affID=119357&tt=gc_&babsrc=HP_ss_din2g&mntrId=3EF90016EACF9136" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="http://www.google.be/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MEDA_nl" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {70D46D94-BF1E-45ED-B567-48701376298E} Google Desktop Url="http://127.0.0.1:4664/search&s=X6nocJFdiShyxjPIp4Ff-ZnV10Q?q={searchTerms}" {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} Bing Url="http://www.bing.com/search?FORM=UP50DF&PC=UP50&q={searchTerms}&src=IE-SearchBox" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Lutty\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Pluchke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Lutty\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\users\Lutty\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\users\Pluchke\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Lutty\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Lutty\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on wo 14/08/2013 at 21:19:25,96 ======================
- 14 augustus 2013
- 15 antwoorden
Laptop Medion Vista van 2010

Lutty2520 reageerde op Lutty2520's topic in Archief Windows Algemeen

http://speccy.piriform.com/results/7kLTfGkyU6qG5CAPb3ESXwm Is dit zo oke? Lutty
- 14 augustus 2013
- 15 antwoorden
Laptop Medion Vista van 2010

Lutty2520 reageerde op Lutty2520's topic in Archief Windows Algemeen

Logfile of Trend Micro HijackThis v2.0.4Scan saved at 18:28:30, on 22/02/2013 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16464) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\ProgramData\DatacardService\DCSHelper.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Google\Google Talk\googletalk.exe C:\Windows\System32\mobsync.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Opera\opera.exe C:\Windows\system32\taskeng.exe C:\Users\Lutty\Documents\zoek.exe C:\Users\Lutty\AppData\Local\Temp\RarSFX0\zoek.com C:\Windows\system32\cmd.exe C:\Windows\system32\cmd.exe C:\Windows\system32\mshta.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = Welcome to Internet Explorer 9 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, optimized for Bing and MSN R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart O4 - HKCU\..\Run: [Mobile Partner] C:\Program Files\MobileWiFi\MobileWiFi O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.4.24.0.cab O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: MyWinLocker Service (MWLService) - EgisTec Inc. - C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: Vodafone Mobile Broadband-service (VmbService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe -- End of file - 8447 bytes Is het zo in orde? Lutty
- 14 augustus 2013
- 15 antwoorden
Laptop Medion Vista van 2010

Lutty2520 plaatste een topic in Archief Windows Algemeen

Goedenavond kan er mij iemand helpen aub? Mijn Laptop valt regelmatig uit, ik heb gelezen dat het kan komen van de ventilator. Hoe kom ik te weten of het daaraan ligt? Nog een tweede vraagje kan ik hier een hijack this plaatsen en hoe aub. Vriendelijke groetjes en tot hoors:-)
- 13 augustus 2013
- 15 antwoorden
HijackThis logje Kan er iemand helpen aub

Lutty2520 reageerde op Lutty2520's topic in Archief Bestrijding malware & virussen

Goedemorgen, bedankt hoor mijn laptop gaat een stuk sneller. Hopelijk blijft het zo een tijdje. Prettig weekend en tot nog eens Vriendelijke groetjes Lutty
- 23 februari 2013
- 6 antwoorden
HijackThis logje Kan er iemand helpen aub

Lutty2520 reageerde op Lutty2520's topic in Archief Bestrijding malware & virussen

Bedankt Ik ga het straks uitproberen, eerst eten. Smakelijk en tot later, ik hou je op de hoogte.
- 22 februari 2013
- 6 antwoorden
HijackThis logje Kan er iemand helpen aub

Lutty2520 reageerde op Lutty2520's topic in Archief Bestrijding malware & virussen

Zoek.exe Version 4.0.0.1 Updated 18-02-2013 Tool run by Lutty on vr 22/02/2013 at 18:20:00,14. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5} deleted successfully HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\SearchScopes\{20E5801D-F52A-4789-8F46-91DD1D802CE1} deleted successfully HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\SearchScopes\{7524E5ED-0BFB-4215-A306-EE31FDB25498} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} deleted successfully HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} deleted successfully HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{95324E44-4B0A-47A9-8F77-9C6415E51C29} deleted successfully HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{95324E44-4B0A-47A9-8F77-9C6415E51C29} deleted successfully HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully ==== Running Processes ====================== C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\nvvsvc.exe c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\SLsvc.exe C:\Windows\system32\WLANExt.exe C:\Windows\System32\spoolsv.exe C:\ProgramData\DatacardService\HWDeviceService.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\EgisTec\MyWinLocker 3\x86\MWLService.exe C:\Windows\system32\PSIService.exe C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe C:\Program Files\CyberLink\Shared Files\RichVideo.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Intel\WiFi\bin\EvtEng.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\taskeng.exe C:\Windows\System32\WUDFHost.exe C:\ProgramData\DatacardService\DCSHelper.exe C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Google\Google Talk\googletalk.exe C:\Windows\System32\mobsync.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchProtocolHost.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Opera\opera.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Users\Lutty\Documents\zoek.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k bthsvcs C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation ==== FireFox Fix ====================== ProfilePath: C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default user.js not found ---- Lines babylon removed from prefs.js ---- ---- Lines babylon modified from prefs.js ---- user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{20a82645-c095-46ed-80e3-08825760534b}\":{\"descriptor\":\"c:\\\\Windows\\\\Microsoft.NET\\\\Framework\\\\v3.5\\\\Windows Presentation Foundation\\\\DotNetAssistantExtension\",\"mtime\":1306615926533}}},{\"name\":\"app-global\",\"addons\":{\"{972ce4c6-7e08-4474-a285-3208198ce6fd}\":{\"descriptor\":\"C:\\\\Program Files\\\\Mozilla Firefox\\\\extensions\\\\{972ce4c6-7e08-4474-a285-3208198ce6fd}\",\"mtime\":1351630312598},\"{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\",\"mtime\":1346568332356}}},{\"name\":\"app-profile\",\"addons\":{\"ffxtlbr@babylon.com\":{\"descriptor\":\"C:\\\\Users\\\\Lutty\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\j18vnnod.default\\\\extensions\\\\ffxtlbr@babylon.com\",\"mtime\":1345795721295}}}]"); ---- FireFox user.js and prefs.js backups ---- prefs_20132202_1824_.backup ==== Deleting Files \ Folders ====================== "C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml" deleted "C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml" deleted "C:\Windows\system32\roboot.exe" deleted "C:\Windows\system32\sasnative32.exe" deleted "C:\Program Files\RegClean Pro" deleted "C:\Program Files\Advanced System Protector" deleted "C:\Users\Lutty\AppData\Roaming\Systweak" deleted "C:\Users\Lutty\AppData\Roaming\OpenCandy" deleted "C:\ProgramData\Systweak" deleted "C:\ProgramData\boost_interprocess" deleted "C:\ProgramData\Trymedia" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector" deleted "C:\Users\Lutty\AppData\Local\Ilivid Player" deleted "C:\Users\Lutty\AppData\Local\Conduit" deleted "C:\Users\Lutty\AppData\LocalLow\BabylonToolbar" deleted "C:\Users\Lutty\AppData\LocalLow\PriceGong" deleted "C:\Users\Lutty\AppData\LocalLow\Conduit" deleted "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\extensions\ffxtlbr@babylon.com" deleted "C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default\extensions\ffxtlbr@babylon.com" deleted ==== System Specs ====================== Windows: Windows XP Home Edition Service Pack 2 (Build 2600) Internet Explorer: 9.0.8112.16421 Memory (RAM): 3066 MB CPU Info: Intel® Core2 Duo CPU T5800 @ 2.00GHz CPU Speed: 765,3 MHz Sound Card: Luidsprekers (Realtek High Defi | Realtek Digital Output (Realtek | Display Adapters: NVIDIA GeForce 9600M GS | NVIDIA GeForce 9600M GS | RDPDD Chained DD | RDP Encoder Mirror Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Intel® WiFi Link 5100 AGN | Realtek PCIe GBE Family Controller | Bluetooth-apparaat (Personal Area Network) CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SN-S083A Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 8 Button Wheel Mouse Present Hard Disks: C: 263,9GB | D: 34,2GB Hard Disks - Free: C: 231,7GB | D: 22,4GB Manufacturer *: Phoenix Technologies LTD BIOS Info: AT/AT COMPATIBLE | 09/11/08 | MEDION - 6040000 Time Zone: Romance (standaardtijd) Motherboard *: MEDION P6612 Sun Java version: 1.6.0_39 Country: Belgi‰ Language: NLB ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Lutty\AppData\Local\Temp ==== 2013-02-21 17:55:39 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{97071BF1-B939-42FC-9D29-7F8E2344EB67}-GoogleUpdateSetup.exe ====== C:\Windows\system32 ===== 2013-02-16 16:17:39 EED68558AAA106535E7290C9A8E0D5A3 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2013-02-16 16:17:39 A9919376933F7E43F93E5DA1FFBEFC9F 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2013-02-16 16:17:38 CDBFCB9A88E130F1138F80B01C56B680 420864 ----a-w- C:\Windows\System32\vbscript.dll 2013-02-16 16:17:37 F8D269134EEC097B7E47C818AF4862A7 176640 ----a-w- C:\Windows\System32\ieui.dll 2013-02-16 16:17:37 39511E05F37F0BEF8FA3B85386800BB9 65024 ----a-w- C:\Windows\System32\jsproxy.dll 2013-02-16 16:17:36 CBC39CAD3421AB71966BDD98ABF847E0 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2013-02-16 16:17:36 6E14642F79C2510626BA399F9BCC4DE6 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2013-02-16 16:17:35 C079169E6A07FC4412475C02969EB9CE 1800704 ----a-w- C:\Windows\System32\jscript9.dll 2013-02-16 16:17:35 B49B56B64F57699A1A663D2CF7D0A56F 1129472 ----a-w- C:\Windows\System32\wininet.dll 2013-02-16 16:17:35 9352AF851D98380738161620C916A042 231936 ----a-w- C:\Windows\System32\url.dll 2013-02-16 16:17:35 8843B6A1B8E102841B2DFF02805C5CEC 717824 ----a-w- C:\Windows\System32\jscript.dll 2013-02-16 16:17:34 D171EAA745A2C0C583CDDA13D9088EE4 1796096 ----a-w- C:\Windows\System32\iertutil.dll 2013-02-16 16:17:33 BE157C3800DA3010EFC48280ECF81C16 1103872 ----a-w- C:\Windows\System32\urlmon.dll 2013-02-16 16:17:32 470D8189D7FE9928FFFECBF55AAA3233 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl 2013-02-16 16:17:31 C97434C851C4821BD92D2831FDF1ECBE 12321280 ----a-w- C:\Windows\System32\mshtml.dll 2013-02-16 16:17:30 0E816EA3C5DCE94C95099E8B38E75E67 9738240 ----a-w- C:\Windows\System32\ieframe.dll 2013-02-16 16:13:52 1C1F3014453865E805A8708751743A48 2048512 ----a-w- C:\Windows\System32\win32k.sys 2013-02-16 16:13:45 C43DECDAC58C0A43E0376A216590F40A 1314816 ----a-w- C:\Windows\System32\quartz.dll 2013-02-16 16:12:53 691F1612558BF6B27F952C4B1073B0D1 3550072 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-02-16 16:12:52 E185428925DBC53CE59B2A5CBA64B837 3602808 ----a-w- C:\Windows\System32\ntkrnlpa.exe ====== C:\Windows\system32\drivers ===== 2013-02-21 16:54:33 FB54F67974D13D73BE3E2F1DF042D295 235392 ----a-w- C:\Windows\System32\drivers\ewusbnet.sys 2013-02-21 16:54:33 FA9A7AD68E4FF3E4EBDEF824CE2F3311 12997 ----a-w- C:\Windows\System32\drivers\mod7700.inf 2013-02-21 16:54:33 F44461E66F1B7DD267957FE9BAA63ED0 73216 ----a-w- C:\Windows\System32\drivers\ew_jubusenum.sys 2013-02-21 16:54:33 B50E1D8627354BA8E4DF83470F1272C8 194816 ----a-w- C:\Windows\System32\drivers\ewusbmdm.sys 2013-02-21 16:54:33 ABD9692AC0C6891DC02BC7DE559F967E 19200 ----a-w- C:\Windows\System32\drivers\ew_hwupgrade.sys 2013-02-21 16:54:33 69A103138B77AC0950EC3846E2E6F655 26624 ----a-w- C:\Windows\System32\drivers\ew_juextctrl.sys 2013-02-21 16:54:33 61A973F60E94A551BA7B15F3460444FB 11136 ----a-w- C:\Windows\System32\drivers\ew_usbenumfilter.sys 2013-02-21 16:54:33 57C171EA22F0A7F068FCB0CAEDD1E8E7 102784 ----a-w- C:\Windows\System32\drivers\ew_hwusbdev.sys 2013-02-21 16:54:33 3170044AA8090F80839D3D4330BF733A 90368 ----a-w- C:\Windows\System32\drivers\ew_jucdcacm.sys 2013-02-21 16:54:33 21B9BACDD4418B59B546C42B4C5A084A 25856 ----a-w- C:\Windows\System32\drivers\ewdcsc.sys 2013-02-21 16:54:33 1EF9E48AB82EA785C7348B22E9B02DC4 64384 ----a-w- C:\Windows\System32\drivers\ew_jucdcecm.sys 2013-02-16 16:14:05 CD21572F83F7EC6E2C20C465967BEDD9 31232 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys 2013-02-16 16:14:05 3535CD93F944C00F098E73E12EE7FEB6 914792 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-02-01 13:19:20 629CABB0421668C9D3D402A3C3D77E14 21104 ----a-w- C:\Windows\System32\drivers\mbam.sys 2013-01-30 15:36:41 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_ew_juextctrl_01007.Wdf 2013-01-30 15:36:36 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf 2013-01-30 15:36:30 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf 2013-01-30 15:35:00 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\Windows\System32\drivers\WdfCoInstaller01007.dll ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-02-05 08:53:43 -------- d-----w- C:\Program Files\Trend Micro 2013-01-30 15:34:28 -------- d-----w- C:\Program Files\MobileWiFi ======= C: ===== ====== C:\Users\Lutty\AppData\Roaming ====== ====== C:\Users\Lutty ====== 2013-01-30 15:33:41 -------- d-----w- C:\ProgramData\DatacardService ====== C: exe-files == 2013-02-22 16:36:01 27D4BCC325306B1415A89DE550528E04 94720 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\MsiZap.exe 2013-02-22 16:36:01 1EF788F187FEC8D4F38D7BF6681B01A8 36864 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\PostBuild.exe 2013-02-22 16:36:01 00AB2BCDC51266A347A2125D4A5A25F0 69632 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\CLSM.exe 2013-02-22 16:36:00 782804B2E3DF05F1DA38E29B337DB04E 311296 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\setup.exe 2013-02-22 16:28:25 74E337FFEB2B34043F8499D2F3DE03A8 59784 ----atw- C:\Program Files\Google\Update\1.3.21.135\GoogleUpdateOnDemand.exe 2013-02-22 16:28:25 376ECCCE33C2C232112DE830E3C81763 59784 ----atw- C:\Program Files\Google\Update\1.3.21.135\GoogleUpdateBroker.exe 2013-02-22 16:28:23 984CC93BB0EF86A0B4825269D8379D81 774424 ----a-w- C:\Program Files\Google\Update\1.3.21.135\GoogleUpdateSetup.exe 2013-02-22 16:28:18 B676429E44F2F8ACC3BAE7C89F46B212 281480 ----atw- C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler64.exe 2013-02-22 16:28:17 BECDDA0990DEBD72A30096533521AD73 213384 ----atw- C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe 2013-02-22 16:28:17 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files\Google\Update\1.3.21.135\GoogleUpdate.exe 2013-02-22 16:28:14 984CC93BB0EF86A0B4825269D8379D81 774424 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.135\GoogleUpdateSetup.exe 2013-02-22 16:10:35 FE5ADB75381BAA826A5DB2BE863B6A7C 3145768 ----a-w- C:\Users\Lutty\Desktop\Desktop\Desktop\ccsetup327_slim.exe 2013-02-21 17:55:39 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{97071BF1-B939-42FC-9D29-7F8E2344EB67}-GoogleUpdateSetup.exe 2013-02-16 16:17:36 6E14642F79C2510626BA399F9BCC4DE6 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2013-02-16 16:17:34 698EB1E5F8C66344D97C00B5699E871D 757280 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2013-02-16 16:12:53 691F1612558BF6B27F952C4B1073B0D1 3550072 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-02-16 16:12:52 E185428925DBC53CE59B2A5CBA64B837 3602808 ----a-w- C:\Windows\System32\ntkrnlpa.exe === C: other files == 2013-02-22 17:13:17 18E293B09114B3FD7D56B1AC0CB622F8 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-4200065788-2244337797-1109055521-1000\$I70HSC7.zip 2013-02-22 16:36:01 FB477A5C574CCDBB29AEE17940D1ECFC 28672 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\GetSTime.dll 2013-02-22 16:36:01 D07756AB3FB3D77932DECD8F00E010B2 110657 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\CLScan.dll 2013-02-22 16:36:01 BDBF4D3129A1F5068F1349FEC8A680B2 135168 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\HwCtrlMgr.dll 2013-02-22 16:36:01 B845E5BD63CD844E9565ADFDD7E59D18 36864 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\GetDXver.dll 2013-02-22 16:36:01 653A39B0D41DD59C667A5D2FF6DE40F9 28672 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\RegKey64Bit.dll 2013-02-22 16:36:01 429063846145BD83860B7D703783A6D3 28672 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\APIfor64Bit.dll 2013-02-22 16:36:00 EDDAD4BC2B7E8C423DEB9F2711FE653B 208304 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\ISRT.dll 2013-02-22 16:36:00 1567EE6F246A364BB407BC079C1B78D8 98816 ----a-w- C:\Users\Lutty\AppData\Local\Temp\{D517F068-19D3-4FD9-9F60-EC5B3B2FBEB2}\_isres.dll 2013-02-22 16:28:24 E0FF893763BA82BAABB869A351F0C455 572808 ----atw- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll 2013-02-22 16:28:23 C56DE8185672B9F17F127EA282DD5E07 160136 ----atw- C:\Program Files\Google\Update\1.3.21.135\psmachine.dll 2013-02-22 16:28:22 EA1848EFE8F3B60C687D003977945289 28040 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_th.dll 2013-02-22 16:28:22 DF1FAEC09D59CF8CDBC30D3455648F8C 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_uk.dll 2013-02-22 16:28:22 A613AEA586B0ADF6902A59F39C547DA6 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_tr.dll 2013-02-22 16:28:22 59CBFB54ECC5FE93C74ECB2E4A1FF9A2 22408 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_zh-TW.dll 2013-02-22 16:28:22 51B96D72840AB9232225521102AB4962 22408 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_zh-CN.dll 2013-02-22 16:28:22 2A0309B546700308E7DF9ED9302E8E94 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_te.dll 2013-02-22 16:28:22 1C074E661B522E7F40D3534089FC225E 160136 ----atw- C:\Program Files\Google\Update\1.3.21.135\psuser.dll 2013-02-22 16:28:22 17EBF25727C05C7273AD72BADF1F7058 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ur.dll 2013-02-22 16:28:22 1359046E906BFC1147702E78442ADB1E 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ta.dll 2013-02-22 16:28:22 0A6FD6C1F1E21A54CDC342616E8E4F82 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_vi.dll 2013-02-22 16:28:21 E849D447E038462CBE0B79655865CBB8 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_mr.dll 2013-02-22 16:28:21 E534BB37BF5C43826E748E1D89910253 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_sk.dll 2013-02-22 16:28:21 956C7CFAE0FCA13AE6592A72E681325A 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_pt-BR.dll 2013-02-22 16:28:21 8AAFF4EE2151DC1DBE13B1B42189A9A4 32136 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ml.dll 2013-02-22 16:28:21 787B22D1B3551214EA18A438EB497BC2 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_sr.dll 2013-02-22 16:28:21 6D9CDB9FE405DB672187CA1F85B148FA 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_pt-PT.dll 2013-02-22 16:28:21 6D8879BF56B5875E70508A6A20812BB1 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ms.dll 2013-02-22 16:28:21 6B3640EFF0DD461E27C36AD7EB469D44 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ro.dll 2013-02-22 16:28:21 6A2929FC5F24464DBDC0577DB6766DC1 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ru.dll 2013-02-22 16:28:21 52E4EDF65BA65BEC4BA56D0B6E326F9E 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_no.dll 2013-02-22 16:28:21 3ABFB1E60F232142271FAB79253786F4 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_sl.dll 2013-02-22 16:28:21 326DC32156A3587395B6858C10D34B0E 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_sw.dll 2013-02-22 16:28:21 172724B5A3F3988A7FA0F038A92FF11E 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_nl.dll 2013-02-22 16:28:21 0B09837C01231654CEA36BAD94F88994 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_sv.dll 2013-02-22 16:28:21 00F8FEEFD4AE00EC5065B937BE00C595 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_pl.dll 2013-02-22 16:28:20 F7281230459DA9BF21EC099CA833CA03 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_id.dll 2013-02-22 16:28:20 F1B3D5D1D7A332FD6E24C4EB4844C7D5 23944 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ko.dll 2013-02-22 16:28:20 AD7C821EDB54639DD23D745173938ED4 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_is.dll 2013-02-22 16:28:20 93545A29801793646159E248D69D337E 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_kn.dll 2013-02-22 16:28:20 73CF46B4F2B54AF8D0BF940B12DF10A5 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_hr.dll 2013-02-22 16:28:20 6E67575379F7CE795FF77CEC74F6D769 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_lv.dll 2013-02-22 16:28:20 648544BA93B4DD273DF243F9E72948EF 31112 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_it.dll 2013-02-22 16:28:20 4CB3C4616DA0DDF3D03829D8B18C640E 24968 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ja.dll 2013-02-22 16:28:20 3CC2D1834C1292A11C963FD9523CC4EF 26504 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_iw.dll 2013-02-22 16:28:20 2E1685D3B946B8D4D199494AF700CD2E 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_gu.dll 2013-02-22 16:28:20 2D39FA2E03FCCBB4D76A33FA03C76FE9 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_hu.dll 2013-02-22 16:28:20 0A119E73AB9ABCB87107B816B0FA74F9 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_lt.dll 2013-02-22 16:28:20 050448DEA40A5CED634C914DBE6336DE 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_hi.dll 2013-02-22 16:28:19 FC5D9F5CBC46B3662DE958C682611296 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_en-GB.dll 2013-02-22 16:28:19 F7C88FA49453C948D52D5350F16720D5 31624 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_es.dll 2013-02-22 16:28:19 DE939A1A8F7EA3C0E41E46F87A4F6EF5 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_fil.dll 2013-02-22 16:28:19 DB9BE127989AF7386234BE8D746CE65D 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_da.dll 2013-02-22 16:28:19 D87B79DF28588640F027686FD1209DD4 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_fi.dll 2013-02-22 16:28:19 C164FE32626724656C77362A88156684 28040 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_fa.dll 2013-02-22 16:28:19 A8D817072D08DB41F0BB193F234F43BB 31624 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_de.dll 2013-02-22 16:28:19 8F1E180AF2F5B9AF234196DAFAB07E11 31112 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_el.dll 2013-02-22 16:28:19 8D70A5894C60E412B4DF74B4EC049F13 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_et.dll 2013-02-22 16:28:19 35DB83C4DE9FA3889E937125D115EAA0 28040 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_en.dll 2013-02-22 16:28:19 2C42FE9ACCA5654AEA2D0C7734531DDA 31112 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_fr.dll 2013-02-22 16:28:19 0ABF233C089FB7E8191D29DA2C6AC0AF 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_es-419.dll 2013-02-22 16:28:18 EC724DAA39BEB13862324594100C1052 27016 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ar.dll 2013-02-22 16:28:18 98A4DF0939A0ECB3A1A7C7F9C3AA318F 25480 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_am.dll 2013-02-22 16:28:18 8B572945FF7BED636A05A219DD78EC95 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_bg.dll 2013-02-22 16:28:18 8ABBEF4327C86834E25E979CEEB19605 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_cs.dll 2013-02-22 16:28:18 43BC38087C79995F7BEDEF8648D5B790 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_bn.dll 2013-02-22 16:28:18 3781763F294C34D9F8A993B384A88FA2 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ca.dll 2013-02-22 16:28:17 2E5672EEA419A4DC9DACD714632E1DC3 835464 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdate.dll 2013-02-21 16:54:33 FB54F67974D13D73BE3E2F1DF042D295 235392 ----a-w- C:\Windows\System32\drivers\ewusbnet.sys 2013-02-21 16:54:33 F44461E66F1B7DD267957FE9BAA63ED0 73216 ----a-w- C:\Windows\System32\drivers\ew_jubusenum.sys 2013-02-21 16:54:33 B50E1D8627354BA8E4DF83470F1272C8 194816 ----a-w- C:\Windows\System32\drivers\ewusbmdm.sys 2013-02-21 16:54:33 ABD9692AC0C6891DC02BC7DE559F967E 19200 ----a-w- C:\Windows\System32\drivers\ew_hwupgrade.sys 2013-02-21 16:54:33 69A103138B77AC0950EC3846E2E6F655 26624 ----a-w- C:\Windows\System32\drivers\ew_juextctrl.sys 2013-02-21 16:54:33 61A973F60E94A551BA7B15F3460444FB 11136 ----a-w- C:\Windows\System32\drivers\ew_usbenumfilter.sys 2013-02-21 16:54:33 57C171EA22F0A7F068FCB0CAEDD1E8E7 102784 ----a-w- C:\Windows\System32\drivers\ew_hwusbdev.sys 2013-02-21 16:54:33 3170044AA8090F80839D3D4330BF733A 90368 ----a-w- C:\Windows\System32\drivers\ew_jucdcacm.sys 2013-02-21 16:54:33 21B9BACDD4418B59B546C42B4C5A084A 25856 ----a-w- C:\Windows\System32\drivers\ewdcsc.sys 2013-02-21 16:54:33 1EF9E48AB82EA785C7348B22E9B02DC4 64384 ----a-w- C:\Windows\System32\drivers\ew_jucdcecm.sys 2013-02-16 16:17:39 A9919376933F7E43F93E5DA1FFBEFC9F 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2013-02-16 16:17:38 F7BC1D90C3A976A5259BD1A5D7D43038 194048 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll 2013-02-16 16:17:38 CDBFCB9A88E130F1138F80B01C56B680 420864 ----a-w- C:\Windows\System32\vbscript.dll 2013-02-16 16:17:38 0F4871B3BF0E48664A24D2717F2117A0 149528 ----a-w- C:\Program Files\Internet Explorer\sqmapi.dll 2013-02-16 16:17:37 F8D269134EEC097B7E47C818AF4862A7 176640 ----a-w- C:\Windows\System32\ieui.dll 2013-02-16 16:17:37 39511E05F37F0BEF8FA3B85386800BB9 65024 ----a-w- C:\Windows\System32\jsproxy.dll 2013-02-16 16:17:36 CBC39CAD3421AB71966BDD98ABF847E0 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2013-02-16 16:17:36 7F73235D527DCF16C38578CD1CD9F7A8 194560 ----a-w- C:\Program Files\Internet Explorer\ieproxy.dll 2013-02-16 16:17:35 C079169E6A07FC4412475C02969EB9CE 1800704 ----a-w- C:\Windows\System32\jscript9.dll 2013-02-16 16:17:35 B49B56B64F57699A1A663D2CF7D0A56F 1129472 ----a-w- C:\Windows\System32\wininet.dll 2013-02-16 16:17:35 9352AF851D98380738161620C916A042 231936 ----a-w- C:\Windows\System32\url.dll 2013-02-16 16:17:35 8843B6A1B8E102841B2DFF02805C5CEC 717824 ----a-w- C:\Windows\System32\jscript.dll 2013-02-16 16:17:34 D171EAA745A2C0C583CDDA13D9088EE4 1796096 ----a-w- C:\Windows\System32\iertutil.dll 2013-02-16 16:17:34 2E22305A88AD0F37434C896F5A4746F8 387584 ----a-w- C:\Program Files\Internet Explorer\jsdbgui.dll 2013-02-16 16:17:34 23AA73F4024DE78ED5A2F5F0BEB5388F 66048 ----a-w- C:\Windows\System32\migration\WininetPlugin.dll 2013-02-16 16:17:33 C2AD78FF88FEC9663B0227A72E65F0C3 678912 ----a-w- C:\Program Files\Internet Explorer\iedvtool.dll 2013-02-16 16:17:33 BE157C3800DA3010EFC48280ECF81C16 1103872 ----a-w- C:\Windows\System32\urlmon.dll 2013-02-16 16:17:31 C97434C851C4821BD92D2831FDF1ECBE 12321280 ----a-w- C:\Windows\System32\mshtml.dll 2013-02-16 16:17:30 0E816EA3C5DCE94C95099E8B38E75E67 9738240 ----a-w- C:\Windows\System32\ieframe.dll 2013-02-16 16:17:19 E74C018279BB3FB2596AA4CEEA97EC0C 768000 ----a-w- C:\Program Files\Common Files\microsoft shared\vgx\VGX.dll 2013-02-16 16:14:05 CD21572F83F7EC6E2C20C465967BEDD9 31232 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys 2013-02-16 16:14:05 3535CD93F944C00F098E73E12EE7FEB6 914792 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-02-16 16:13:52 1C1F3014453865E805A8708751743A48 2048512 ----a-w- C:\Windows\System32\win32k.sys 2013-02-16 16:13:45 C43DECDAC58C0A43E0376A216590F40A 1314816 ----a-w- C:\Windows\System32\quartz.dll ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-4200065788-2244337797-1109055521-1000\Software\Microsoft\Windows\CurrentVersion\Run] "googletalk"="C:\Program Files\Google\Google Talk\googletalk.exe /autostart" "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "googletalk"="C:\Program Files\Google\Google Talk\googletalk.exe /autostart" "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ehTray.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ehTray.exe" "hkey"="HKCU" "command"="C:\\Windows\\ehome\\ehTray.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Desktop Search] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Google Desktop Search" "hkey"="HKLM" "command"="\"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ISUSPM] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ISUSPM" "hkey"="HKCU" "command"="\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\ISUSPM.exe\" -scheduler" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LanguageShortcut] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="LanguageShortcut" "hkey"="HKLM" "command"="\"C:\\Program Files\\HomeCinema\\PowerDVD\\Language\\Language.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MobileBroadband] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MobileBroadband" "hkey"="HKLM" "command"="C:\\Program Files\\Vodafone\\Vodafone Mobile Broadband\\Bin\\MobileBroadband.exe /silent" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSC] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MSC" "hkey"="HKLM" "command"="\"c:\\Program Files\\Microsoft Security Client\\msseces.exe\" -hide -runkey" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msnmsgr" "hkey"="HKCU" "command"="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mwlDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mwlDaemon" "hkey"="HKLM" "command"="C:\\Program Files\\EgisTec\\MyWinLocker 3\\x86\\mwlDaemon.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NBKeyScan] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NBKeyScan" "hkey"="HKLM" "command"="\"C:\\Program Files\\Nero\\Nero8\\Nero BackItUp\\NBKeyScan.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvCplDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvCplDaemon" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\Windows\\system32\\NvCpl.dll,NvStartup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvMediaCenter] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvMediaCenter" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\Windows\\system32\\NvMcTray.dll,NvTaskbarInit" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RemoteControl] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RemoteControl" "hkey"="HKLM" "command"="\"C:\\Program Files\\HomeCinema\\PowerDVD\\PDVDServ.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RtHDVCpl" "hkey"="HKLM" "command"="RtHDVCpl.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skytel] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Skytel" "hkey"="HKLM" "command"="Skytel.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spyware Doctor] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Spyware Doctor" "hkey"="HKCU" "command"="\"C:\\Program Files\\Spyware Doctor\\swdoctor.exe\" /Q" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SynTPEnh] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SynTPEnh" "hkey"="HKLM" "command"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\toolbar_eula_launcher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="toolbar_eula_launcher" "hkey"="HKLM" "command"="C:\\Program Files\\GoogleEULA\\EULALauncher.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\tsnp2uvc] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="tsnp2uvc" "hkey"="HKLM" "command"="C:\\Windows\\tsnp2uvc.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UCam_Menu] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="UCam_Menu" "hkey"="HKLM" "command"="\"C:\\Program Files\\HomeCinema\\YouCam\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files\\HomeCinema\\YouCam\" update \"Software\\CyberLink\\YouCam\\2.0\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Windows Defender] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Windows Defender" "hkey"="HKLM" "command"="%ProgramFiles%\\Windows Defender\\MSASCui.exe -hide" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WMPNSCFG] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="WMPNSCFG" "hkey"="HKCU" "command"="C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\McAfee Security Scan Plus.lnk" "backup"="C:\\Windows\\pss\\McAfee Security Scan Plus.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~1\\MCAFEE~1\\30982A~1.207\\SSSCHE~1.EXE " "item"="McAfee Security Scan Plus" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "ICSDCLT"="C:\\Windows\\rundll32.exe C:\\Windows\\system32\\icsdclt.dll,ICSClient" "Adobe Reader Speed Launcher"="\"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"" "Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2013-02-21 17:52:36 1915 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [08/02/2013 16:53] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29/05/2011 21:44] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29/05/2011 21:44] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default - Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension AppDir: C:\Program Files\Mozilla Firefox - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} ==== Firefox Plugins ====================== Profilepath: C:\Users\Lutty\AppData\Roaming\Mozilla\Firefox\Profiles\j18vnnod.default 834FCF71D7651C5778BDFFAE5CE1D567 - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll - Java Platform SE 6 U39 DE8275CAB4D3F80E4E266E14955B16EC - C:\Windows\system32\npdeployJava1.dll - Java Deployment Toolkit 6.0.390.4 667CB7D2CAF917608421E5250462C0AA - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll - Adobe Acrobat 588219A982E2B8CE02BBAA0D4DC1382F - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa 9013599B12923A45C029C34E8D2211AC - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.1.0.30716.0.dll - Silverlight Plug-In C517E5EA7CEE783F3681F62D2A362E5B - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery FC5866F7793AF2CBCD425CC4B8D32A9E - C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll - Zylom Plugin AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation ACEF2CBC1032BC14D112EB4494537DA5 - C:\Windows\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director 667CB7D2CAF917608421E5250462C0AA - C:\Program Files\Adobe\Reader 9.0\Reader\browser\nppdf32.dll - Adobe Acrobat 9013599B12923A45C029C34E8D2211AC - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll - Silverlight Plug-In DFCAB29E8FD38F95650CC1E203E8D318 - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System BF2AD333C79072EEBE5AE0D72670E64E - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrlui.dll - Microsoft® Silverlight ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions dhkplhfnhceodhffomolpfigojocbpcb - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbar.crx[] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/?ocid=EIE9HP&PC=UP50" "Search Page"="http://www.google.com" "Default_Search_URL"="http://www.google.com/ie" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://www.aldi.com/" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.google.com/search?q=%s" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=3ef9625b000000000000000000000000&tlver=1.4.19.19&affID=19404" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.msn.com/?ocid=EIE9HP&PC=UP50" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}" {67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="http://www.google.be/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MEDA_nl" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {70D46D94-BF1E-45ED-B567-48701376298E} Google Desktop Url="http://127.0.0.1:4664/search&s=X6nocJFdiShyxjPIp4Ff-ZnV10Q?q={searchTerms}" {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} Bing Url="http://www.bing.com/search?FORM=UP50DF&PC=UP50&q={searchTerms}&src=IE-SearchBox" ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.0.318\mcuicnt.exe SecurityScanner.dll C:\Users\Public\Desktop\MobileWiFi.lnk - ==== shortcuts in Users Start Menu ====================== C:\Users\Lutty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis\HiJackThis.lnk - C:\Users\Lutty\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus\McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.0.318\mcuicnt.exe SecurityScanner.dll C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus\Verwijderen.lnk - C:\Program Files\McAfee Security Scan\uninstall.exe C:\Program Files\McAfee Security Scan\3.0.318\McAfee.ico C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb deleted successfully ==== HijackThis Entries ====================== O1 - Hosts: ::1 localhost O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.4.24.0.cab O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: MyWinLocker Service (MWLService) - EgisTec Inc. - C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: Vodafone Mobile Broadband-service (VmbService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Lutty\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Pluchke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Lutty\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\users\Pluchke\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Lutty\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Lutty\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
- 22 februari 2013
- 6 antwoorden
HijackThis logje Kan er iemand helpen aub

Lutty2520 plaatste een topic in Archief Bestrijding malware & virussen

Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:02:14, on 5/02/2013 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16457) Boot mode: Normal Running processes: C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\ProgramData\DatacardService\DCSHelper.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Google\Google Talk\googletalk.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\System32\mobsync.exe C:\Program Files\Windows Live\Mail\wlmail.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Welcome to ALDI R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=3ef9625b000000000000000000000000&tlver=1.4.19.19&affID=19404 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = Internet Explorer 9 - Microsoft Windows R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, optimized for Bing and MSN R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {95324e44-4b0a-47a9-8f77-9c6415e51c29} - (no file) R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file) O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart O4 - HKCU\..\Run: [Mobile Partner] C:\Program Files\MobileWiFi\MobileWiFi O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.4.24.0.cab O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: MyWinLocker Service (MWLService) - EgisTec Inc. - C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: Vodafone Mobile Broadband-service (VmbService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe -- End of file - 8175 bytes
- 22 februari 2013
- 6 antwoorden

Inloggen

Lutty2520

Items

Registratiedatum

Laatst bezocht

Inhoudstype

Profielen

Forums

Store

Alles dat geplaatst werd door Lutty2520

Laptop Medion Vista van 2010

Laptop Medion Vista van 2010

Laptop Medion Vista van 2010

Laptop Medion Vista van 2010

Laptop Medion Vista van 2010

Laptop Medion Vista van 2010

Laptop Medion Vista van 2010

Laptop Medion Vista van 2010

HijackThis logje Kan er iemand helpen aub

HijackThis logje Kan er iemand helpen aub

HijackThis logje Kan er iemand helpen aub

HijackThis logje Kan er iemand helpen aub

OVER ONS

SITEMAP

Home

Info

Handleidingen & Tips

Activiteit

Belangrijke informatie