Inmortis

Jazeker hartelijk dank voor de hulp echt super! Probleem opgelost!

YES!! foutmeldingen zijn weg op met opstarten de melding kan geen verbinding krijgen met windows service.

Gedaan maakt helaas geen verschil, foutmeldingen blijven.

Gedaan, maar foutmeldingen blijven ook de melding kan geen verbinding maken met windows service.

Zoek.exe Version 4.0.0.2 Updated 16-03-2013 Tool run by Maarten on zo 17-03-2013 at 16:51:53,56. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE C:\Windows\SysWOW64\PnkBstrA.exe C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\atieclxx.exe C:\Windows\System32\WUDFHost.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe C:\Windows\system32\taskeng.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Windows\system32\taskeng.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\Ask.com\Updater\Updater.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\DllHost.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Program Files (x86)\Nero\Update\NASvc.exe C:\Windows\system32\msiexec.exe C:\Windows\system32\sppsvc.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Users\Maarten\Desktop\zoek.exe C:\Windows\system32\conhost.exe ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1249170916-2885273402-2243985007-1001\Software\Microsoft\Internet Explorer\SearchScopes\{20E255FA-103F-4210-A80A-84FD714B21E4} deleted successfully HKEY_USERS\S-1-5-21-1249170916-2885273402-2243985007-1001\Software\Microsoft\Internet Explorer\SearchScopes\{4C2A4127-C2AD-4D09-A8B9-140B7058614A} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== @C:\\PROGRA~2\\Nero\\Update\\NASvc.exe,-200 Aangifte inkomstenbelasting 2011 Adobe AIR Adobe Download Assistant Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader X (10.1.6) - Nederlands Advanced WindowsCare Personal 2.6.0 Age of Empires III Age of Empires Online Apple Software Update Ask Toolbar Ask Toolbar Updater Assassin's Creed ® III Battlefield 3T Battlefield 3T Open Beta Battlefield Play4Free Battlelog Web Plugins BioShock 2 BitTorrent Borderlands 2 Caesar 3 Catalyst Control Center - Branding Catalyst Control Center Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish Counter-Strike: Source Crysis©3 D3DX10 DAEMON Tools Lite Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition Diablo III ESN Sonar Far Cry 3 Fraps Futuremark SystemInfo Game Booster 3 Google Earth Plug-in Google Update Helper Hema Fotoalbum High-Definition Video Playback 10 HydraVision ImgBurn Java 7 Update 17 Java Auto Updater Java 6 Update 26 Kruidvat fotoservice Majesty 2 Collection Malwarebytes Anti-Malware versie 1.70.0.1100 Microsoft Games for Windows - LIVE Redistributable Microsoft Games for Windows Marketplace Microsoft Office 2010 Proofing Tools Kit Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office IME (Chinese (Simplified)) 2010 Microsoft Office IME (Chinese (Traditional)) 2010 Microsoft Office IME (Japanese) 2010 Microsoft Office IME (Korean) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Arabic) 2010 Microsoft Office Proof (Basque) 2010 Microsoft Office Proof (Bulgarian) 2010 Microsoft Office Proof (Catalan) 2010 Microsoft Office Proof (Chinese (Simplified)) 2010 Microsoft Office Proof (Chinese (Traditional)) 2010 Microsoft Office Proof (Croatian) 2010 Microsoft Office Proof (Czech) 2010 Microsoft Office Proof (Danish) 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (Estonian) 2010 Microsoft Office Proof (Finnish) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (Galician) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proof (Greek) 2010 Microsoft Office Proof (Gujarati) 2010 Microsoft Office Proof (Hebrew) 2010 Microsoft Office Proof (Hindi) 2010 Microsoft Office Proof (Hungarian) 2010 Microsoft Office Proof (Italian) 2010 Microsoft Office Proof (Japanese) 2010 Microsoft Office Proof (Kannada) 2010 Microsoft Office Proof (Kazakh) 2010 Microsoft Office Proof (Korean) 2010 Microsoft Office Proof (Latvian) 2010 Microsoft Office Proof (Lithuanian) 2010 Microsoft Office Proof (Marathi) 2010 Microsoft Office Proof (Norwegian (Bokm†l)) 2010 Microsoft Office Proof (Norwegian (Nynorsk)) 2010 Microsoft Office Proof (Polish) 2010 Microsoft Office Proof (Portuguese (Brazil)) 2010 Microsoft Office Proof (Portuguese (Portugal)) 2010 Microsoft Office Proof (Punjabi) 2010 Microsoft Office Proof (Romanian) 2010 Microsoft Office Proof (Russian) 2010 Microsoft Office Proof (Serbian (Latin)) 2010 Microsoft Office Proof (Slovak) 2010 Microsoft Office Proof (Slovenian) 2010 Microsoft Office Proof (Spanish) 2010 Microsoft Office Proof (Swedish) 2010 Microsoft Office Proof (Tamil) 2010 Microsoft Office Proof (Telugu) 2010 Microsoft Office Proof (Thai) 2010 Microsoft Office Proof (Turkish) 2010 Microsoft Office Proof (Ukrainian) 2010 Microsoft Office Proof (Urdu) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Proofing Kit 2010 Microsoft Office Proofing Tools Kit Compilation 2010 Microsoft Office ProofMUI (English) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Primary Interoperability Assemblies 2005 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Windows Media Video 9 VCM Mozilla Firefox 19.0.2 (x86 nl) Mozilla Maintenance Service MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 10 Menu TemplatePack Basic Nero 10 Movie ThemePack Basic Nero BackItUp 10 Nero BackItUp 10 Help (CHM) Nero Burning ROM 10 Nero BurningROM 10 Help (CHM) Nero BurnRights 10 Nero BurnRights 10 Help (CHM) Nero Control Center 10 Nero ControlCenter 10 Help (CHM) Nero Core Components 10 Nero CoverDesigner 10 Nero CoverDesigner 10 Help (CHM) Nero DiscSpeed 10 Nero DiscSpeed 10 Help (CHM) Nero Dolby Files 10 Nero Express 10 Nero Express 10 Help (CHM) Nero InfoTool 10 Nero InfoTool 10 Help (CHM) Nero MediaHub 10 Nero MediaHub 10 Help (CHM) Nero Multimedia Suite 10 Nero Recode 10 Nero Recode 10 Help (CHM) Nero RescueAgent 10 Nero RescueAgent 10 Help (CHM) Nero SoundTrax 10 Nero SoundTrax 10 Help (CHM) Nero StartSmart 10 Nero StartSmart 10 Help (CHM) Nero Update Nero Vision 10 Nero Vision 10 Help (CHM) Nero WaveEditor 10 Nero WaveEditor 10 Help (CHM) NVIDIA PhysX Omerta - City of Gangsters OpenTTD 1.2.2 Orcs Must Die Origin Port Royale 3 PS3 Media Server Rockstar Games Social Club Samsung_MonSetup Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft .NET Framework 4 Extended (KB2736428) Security Update for Microsoft .NET Framework 4 Extended (KB2742595) Security Update for Microsoft Excel 2010 (KB2597126) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2687417) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2687436) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553091) Security Update for Microsoft Office 2010 (KB2553096) Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2597986) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2687501) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2687510) 32-Bit Edition Security Update for Microsoft Visio 2010 (KB2687508) 32-Bit Edition Security Update for Microsoft Visio Viewer 2010 (KB2598287) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2760410) 32-Bit Edition Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663) Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870) Sierra Utilities Skype Click to Call SkypeT 5.10 Steam System Requirements Lab System Requirements Lab CYRI System Requirements Lab Detection Team Fortress 2 The Witcher 2 - Assassins of Kings Enhanced Edition Trekpleister fotoservice Tunngle beta Ugrib RC1 Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2600217) Update for Microsoft Office 2010 (KB2494150) Update for Microsoft Office 2010 (KB2553065) Update for Microsoft Office 2010 (KB2553092) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition Update for Microsoft Office 2010 (KB2566458) Update for Microsoft Office 2010 (KB2596963) 32-Bit Edition Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition Update for Microsoft Office 2010 (KB2598241) 32-Bit Edition Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition Uplay VLC media player 1.1.11 Warhammer© 40,000©: Dawn of War© II - RetributionT Warhammer© 40,000T: Dawn of War© II Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Messenger Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Media Player Firefox Plugin XCOM: Enemy Unknown ==== Reset Hosts File ====================== # Copyright © 1993-2006 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host # localhost name resolution is handle within DNS itself. 127.0.0.1 localhost ::1 localhost ==== FireFox Fix ====================== ProfilePath: C:\Users\Maarten\AppData\Roaming\Mozilla\Firefox\Profiles\llbpzvjg.default ---- Lines conduit removed from prefs.js ---- user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2849859&SearchSource=3&q={searchTerms}"); ---- Lines conduit modified from prefs.js ---- ---- Lines conduit removed from user.js ---- ---- Lines ask.com removed from prefs.js ---- ---- Lines ask.com modified from prefs.js ---- ---- Lines ask.com removed from user.js ---- ---- Lines search.com removed from prefs.js ---- ---- Lines search.com modified from prefs.js ---- ---- Lines search.com removed from user.js ---- ---- Lines Web Search removed from prefs.js ---- ---- Lines Web Search modified from prefs.js ---- ---- Lines Web Search removed from user.js ---- ---- Lines asktb removed from prefs.js ---- ---- Lines asktb modified from prefs.js ---- ---- Lines asktb removed from user.js ---- ---- Lines Customized removed from prefs.js ---- ---- Lines Customized modified from prefs.js ---- ---- Lines Customized removed from user.js ---- ---- FireFox user.js and prefs.js backups ---- user_17-03-2013_1654_.backup prefs_17-03-2013_1654_.backup ==== Deleting Files \ Folders ====================== "C:\Users\Maarten\AppData\Roaming\Mozilla\Firefox\Profiles\llbpzvjg.default\searchplugins\askcom.xml" deleted "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" deleted "C:\Windows\syswow64\appdata" deleted "C:\Program Files (x86)\Ask.com" deleted "C:\ProgramData\Ask" deleted "C:\ProgramData\InstallMate" deleted "C:\ProgramData\Premium" deleted "C:\Users\Maarten\AppData\Local\CRE" deleted "C:\Users\Maarten\AppData\Local\APN" deleted "C:\Users\Maarten\AppData\Local\Conduit" deleted "C:\Users\Maarten\AppData\LocalLow\AskToolbar" deleted "C:\Users\Maarten\AppData\LocalLow\Conduit" deleted "C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}" deleted "C:\Users\Maarten\AppData\Roaming\Mozilla\Firefox\Profiles\llbpzvjg.default\extensions\toolbar@ask.com" deleted "C:\Program Files (x86)\Ask.com\Updater" deleted ==== System Specs ====================== Windows: Windows 7 Professional Edition (64-bit) Service Pack 1 (Build 7601) Internet Explorer: 9.0.8112.16421 Memory (RAM): 8188 MB CPU Info: Intel® Core i7 CPU 870 @ 2.93GHz CPU Speed: 2936,1 MHz Sound Card: Hoofdtelefoon (High Definition | AMD HDMI Output (AMD High Defin | Luidsprekers (High Definition A | Display Adapters: AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; SyncMaster S24A350H (Digital) | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: TAP-Win32 Adapter V9 (Tunngle) | Realtek RTL8168D/8111D Family PCI-E Gigabit Ethernet NIC (NDIS 6.20) CD / DVD Drives: 5x (D: | F: | J: | K: | L: | ) D: Optiarc DVD RW AD-7260S | F: DTSOFT BDROM | J: DTSOFT BDROM | K: DTSOFT BDROM | L: DTSOFT BDROM Ports: COM1 LPT Port NOT Present. Mouse: 8 Button Wheel Mouse Present Hard Disks: C: 465,7GB | Y: 189,9GB Hard Disks - Free: C: 118,6GB | Y: 101,3GB Manufacturer *: Award Software International, Inc. BIOS Info: AT/AT COMPATIBLE | 01/28/10 | GBT - 42302e31 Time Zone: West-Europa (standaardtijd) Motherboard *: Gigabyte Technology Co., Ltd. P55M-UD2 Sun Java version: 1.7.0_17 Country: Nederland Language: NLD ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-03-12 16:19:21 D41D8CD98F00B204E9800998ECF8427E 0 ---hatw- C:\Windows\wusa.lock ====== C:\Users\Maarten\AppData\Local\Temp ==== 2013-03-14 23:22:22 CE755676AE6D27A1EFEEFB0F3C70A929 358600 ----a-w- C:\Users\Maarten\AppData\Local\Temp\APNStub.exe ====== C:\Windows\SysWOW64 ===== 2013-03-14 23:21:53 F003B6C8BFD5F675A4DD398D2A8AEB63 95648 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== 2013-03-14 22:02:15 92EB844D90615CB266F84C3202B8786E 24176 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys 2013-02-25 20:15:09 B62A953F2BF3922C8764A29C34A22899 1913192 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys 2013-02-25 20:15:09 41C67E4205C606A103DEC8651D0B6FE6 288088 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2013-02-25 19:58:17 313F68E1A3E6345A4F47A36B07062F34 19456 ----a-w- C:\Windows\Sysnative\drivers\rdpvideominiport.sys 2013-02-25 19:58:16 AD64450A4ABE076F5CB34CC08EEACB07 30208 ----a-w- C:\Windows\Sysnative\drivers\TsUsbGD.sys 2013-02-25 19:58:16 17C6B51CBCCDED95B3CC14E22791F85E 57856 ----a-w- C:\Windows\Sysnative\drivers\TsUsbFlt.sys 2013-02-25 19:57:34 AAFCB52FE0037207FB6FBEA070D25EFE 458712 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2013-02-25 19:57:34 7EFB9333E4ECCE6AE4AE9D777D9E553E 154480 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-03-11 23:09:39 -------- d-----w- C:\Program Files\CPUID ======= C:\Program Files (x86) ===== 2013-03-13 00:27:38 -------- d-----w- C:\Program Files (x86)\GridinSoft Trojan Killer 2013-02-21 13:26:52 -------- d-----w- C:\Program Files (x86)\Trekpleister ======= C: ===== ====== C:\Users\Maarten\AppData\Roaming ====== 2013-03-12 23:18:02 -------- d-----w- C:\users\Public\AppData\Local\temp 2013-03-12 23:18:02 -------- d-----w- C:\users\Maarten-Hamel\AppData\Local\temp 2013-03-12 23:18:02 -------- d-----w- C:\users\Default\AppData\Local\temp 2013-03-12 23:18:02 -------- d-----w- C:\users\Default User\AppData\Local\temp 2013-03-12 18:18:11 -------- d-----w- C:\users\Maarten-Hamel\AppData\Locallow\Sun 2013-03-12 16:30:03 E7572E19C7E47C27CAF7564287F02FE3 109680 ----a-w- C:\users\Maarten-Hamel\AppData\Local\GDIPFONTCACHEV1.DAT 2013-03-12 16:30:03 -------- d-----w- C:\users\Maarten-Hamel\AppData\Roaming\ATI 2013-03-12 16:30:03 -------- d-----w- C:\users\Maarten-Hamel\AppData\Local\ATI 2013-03-12 16:29:45 -------- d-s---w- C:\users\Maarten-Hamel\AppData\Locallow\Microsoft 2013-03-12 16:29:45 -------- d-----w- C:\users\Maarten-Hamel\AppData\Roaming\Identities 2013-03-12 16:29:43 -------- d-----w- C:\users\Maarten-Hamel\AppData\Local\VirtualStore 2013-03-12 16:29:40 -------- d-sh--we C:\users\Maarten-Hamel\AppData\Local\Temporary Internet Files 2013-03-12 16:29:40 -------- d-sh--we C:\users\Maarten-Hamel\AppData\Local\Geschiedenis 2013-03-12 16:29:40 -------- d-sh--we C:\users\Maarten-Hamel\AppData\Local\Application Data 2013-03-12 16:29:39 -------- d-----w- C:\users\Maarten-Hamel\AppData\Roaming\Microsoft 2013-03-12 16:29:39 -------- d-----w- C:\users\Maarten-Hamel\AppData\Roaming\Media Center Programs 2013-03-12 16:29:39 -------- d-----w- C:\users\Maarten-Hamel\AppData\Local\Microsoft Help 2013-03-12 16:29:39 -------- d-----w- C:\users\Maarten-Hamel\AppData\Local\Microsoft 2013-02-25 19:51:38 -------- d-----w- C:\users\Maarten\AppData\Roaming\IObit ====== C:\Users\Maarten ====== 2013-03-12 22:52:33 -------- d-----w- C:\Users\Public\AppData 2013-03-12 18:17:06 0FDEC6B35A42206AF71665A896729C3C 12800 --sha-w- C:\Users\Maarten-Hamel\Thumbs.db 2013-03-12 16:29:53 -------- d-----w- C:\Users\Maarten-Hamel\Searches 2013-03-12 16:29:43 -------- d-----w- C:\Users\Maarten-Hamel\Contacts 2013-03-12 16:29:40 -------- d-sh--we C:\Users\Maarten-Hamel\Sjablonen 2013-03-12 16:29:40 -------- d-sh--we C:\Users\Maarten-Hamel\SendTo 2013-03-12 16:29:40 -------- d-sh--we C:\Users\Maarten-Hamel\Recent 2013-03-12 16:29:40 -------- d-sh--we C:\Users\Maarten-Hamel\Netwerkprinteromgeving 2013-03-12 16:29:40 -------- d-sh--we C:\Users\Maarten-Hamel\NetHood 2013-03-12 16:29:40 -------- d-sh--we C:\Users\Maarten-Hamel\Mijn documenten 2013-03-12 16:29:40 -------- d-sh--we C:\Users\Maarten-Hamel\Menu Start 2013-03-12 16:29:40 -------- d-sh--we C:\Users\Maarten-Hamel\Local Settings 2013-03-12 16:29:40 -------- d-sh--we C:\Users\Maarten-Hamel\Cookies 2013-03-12 16:29:40 -------- d-sh--we C:\Users\Maarten-Hamel\Application Data 2013-03-12 16:29:39 -------- d-----w- C:\Users\Maarten-Hamel\Pictures 2013-03-12 16:29:39 -------- d-----w- C:\Users\Maarten-Hamel\Favorites 2013-03-12 16:29:39 -------- d-----w- C:\Users\Maarten-Hamel\Downloads 2013-03-12 16:29:39 -------- d-----w- C:\Users\Maarten-Hamel\Documents 2013-03-12 16:29:39 -------- d-----w- C:\Users\Maarten-Hamel\AppData 2013-03-12 16:18:55 -------- d-----w- C:\ProgramData\Windows Genuine Advantage 2013-02-25 19:51:41 -------- d-----w- C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} 2013-02-16 11:01:44 -------- d-----w- C:\Users\Maarten\restore ====== C: exe-files == 2013-03-14 23:22:22 CE755676AE6D27A1EFEEFB0F3C70A929 358600 ----a-w- C:\Users\Maarten\AppData\Local\Temp\APNStub.exe 2013-03-14 22:01:42 0FB6D382FA5FBF72D05FC2A4503B7DF2 10156344 ----a-w- C:\Users\Maarten\Downloads\mbam-setup-1.70.0.1100.exe 2013-03-14 20:49:59 10F4163F0EDDC031100180787D5F696F 347424 ----a-w- C:\Users\Maarten\Downloads\MicrosoftFixit.WindowsFirewall.RNP.38286724807968051.3.1.Run.exe 2013-03-14 20:44:02 10F4163F0EDDC031100180787D5F696F 347424 ----a-w- C:\Users\Maarten\Downloads\MicrosoftFixit.WindowsFirewall.RNP.3328672460982176.1.1.Run.exe 2013-03-13 21:32:07 22101A85B3CA2FE2BE05FE9A61A7A83D 216424 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1249170916-2885273402-2243985007-1001\$R2WV76Z\Chameleon\rundll32.exe 2013-03-12 16:18:44 C191C746CD975CE2DD5F8B5E009F8385 1528184 ----a-w- C:\Users\Maarten\Downloads\GenuineCheck.exe 2013-03-12 15:57:14 DD5929790DADF08539945440FC7B2BC1 1331904 ----a-w- C:\Program Files (x86)\Origin\LegacyPM\OriginUninstall.exe 2013-03-12 15:56:07 F0BC5A32CA2FC7E0C98268FAA1C138E7 11818720 ----a-w- C:\ProgramData\Origin\DownloadCache\{ CP_Guest_3420(1)_ver3 }\OriginThinSetup.exe 2013-03-12 15:53:33 44AD9C03443B0D4DB04173FB085599F9 1127956469 ----a-w- C:\Games\Crysis 3\Bin32\Crysis.3.Update.v1.2.exe 2013-03-12 14:36:31 8E6BB00FB445074376EE33FF10015460 33131008 ----a-w- C:\Users\Maarten\Downloads\Crysis.3.Update.v1.2.INTERNAL-RELOADED\Crack\Crysis3.exe 2013-03-12 14:36:18 44AD9C03443B0D4DB04173FB085599F9 1127956469 ----a-w- C:\Users\Maarten\Downloads\Crysis.3.Update.v1.2.INTERNAL-RELOADED\Update\Crysis.3.Update.v1.2.exe 2013-03-11 23:32:33 8C4AC5832E3AA9B13B88047303CF6CA4 310784 ----a-w- C:\Users\Maarten\Desktop\linx\LinX\LinX.exe 2013-03-11 23:32:32 E75C886213C23582C2D175110642EF55 2964144 ----a-w- C:\Users\Maarten\Desktop\linx\LinX\linpack_xeon64.exe 2013-03-11 23:32:31 EDB4DB670497DE096015D72F4144EF59 1427632 ----a-w- C:\Users\Maarten\Desktop\linx\LinX\linpack_xeon32.exe 2013-03-11 23:09:40 A6C45F8C665FE2B37EA0A55D08E06E81 2652904 ----a-w- C:\Program Files\CPUID\CPU-Z\cpuz.exe 2013-03-11 23:09:40 8C70386EA0F3743E56BD0ACDCBDC11CD 715038 ----a-w- C:\Program Files\CPUID\CPU-Z\unins000.exe 2013-03-11 23:09:21 3154DE43D7213CE8C4EA18A01CDD83D2 1688976 ----a-w- C:\Users\Maarten\Downloads\cpu-z(1).exe 2013-03-11 23:08:09 6F96C895477849F6BB752F4158F8D015 265192 ----a-w- C:\Users\Maarten\Downloads\CPU-Z.exe === C: other files == 2013-03-14 22:02:15 92EB844D90615CB266F84C3202B8786E 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys 2013-03-14 20:42:04 C38DD02A60708F57513D038ABE509BB8 180690 ----a-w- C:\Users\Maarten\AppData\Local\Temp\temp123.zip 2013-03-13 21:32:07 22101A85B3CA2FE2BE05FE9A61A7A83D 216424 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1249170916-2885273402-2243985007-1001\$R2WV76Z\Chameleon\firefox.com ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1249170916-2885273402-2243985007-1001\Software\Microsoft\Windows\CurrentVersion\Run] "OfficeSyncProcess"="C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "ApnUpdater"="C:\Program Files (x86)\Ask.com\Updater\Updater.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "OfficeSyncProcess"="C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IME14 CHT Setup"="C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /CHT /Log" "IME14 JPN Setup"="C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log" "IME14 KOR Setup"="C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log" "IME14 CHS Setup"="C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /CHS /Log" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DAEMON Tools Lite" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14-03-2013 01:00] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02-05-2012 22:41] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02-05-2012 22:41] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Maarten\AppData\Roaming\Mozilla\Firefox\Profiles\llbpzvjg.default - Visualisateur 3D de 20-20 - %ProfilePath%\extensions\2020Player_IKEA@2020Technologies.com - Shine Bright Skin Aero - %ProfilePath%\extensions\{c7b3cf78-9cbc-47b9-ba47-bb84a56069dd}.xpi - Greasemonkey - %ProfilePath%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Maarten\AppData\Roaming\Mozilla\Firefox\Profiles\llbpzvjg.default D4BD9F86123C87ECA570418B69326F99 - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.170.2 47299371607DC2FB234444EEACB1639E - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll - Shockwave Flash 87132527E2256CF6683A18C4EB34DD3B - C:\Windows\system32\Wat\npWatWeb.dll - Windows Activation Technologies 15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02-10-2012 12:14] ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\Maarten\AppData\Local\CRE\ndgonipadfipmlmdfofnjnhhlgojnjdn.crx[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\Maarten\AppData\Local\CRE\ndgonipadfipmlmdfofnjnhhlgojnjdn.crx[] Click to call with Skype - Maarten - Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl ==== Chrome Fix ====================== C:\Users\Maarten\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://home.mywebsearch.com/index.jhtml?n=77DE8857&p2=^HJ^xdm069^YY^nl&ptb=72B989AB-6DA3-4631-917F-03349DBBA845&si=pconverter" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{CF159400-A324-4C74-A684-DE5A22133787}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {CF159400-A324-4C74-A684-DE5A22133787} Google Url="http://www.google.co.uk/search?hl=en&q={searchTerms}&meta=" ==== Deleting CLSID Registry Keys ====================== HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-1249170916-2885273402-2243985007-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully ==== shortcuts on Users Desktops ====================== C:\Users\Maarten\Desktop\Windows Update Troubleshooting Info.lnk - C:\Users\Maarten\AppData\Local\Temp\WUDiagTempFolder\2013_03_14T21_41_51 ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\CPUID CPU-Z.lnk - C:\Program Files\CPUID\CPU-Z\cpuz.exe C:\Users\Public\Desktop\Kruidvat fotoservice.lnk - C:\Program Files (x86)\Fotoservice\Kruidvat fotoservice\Kruidvat fotoservice.exe C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk - C:\Program Files (x86)\Microsoft Security Client\msseces.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk - C:\Windows\system32\mstsc.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\CPU-Z\CPU-Z.lnk - C:\Program Files\CPUID\CPU-Z\cpuz.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\CPU-Z\Uninstall CPU-Z.lnk - C:\Program Files\CPUID\CPU-Z\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Crysis®3.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kruidvat fotoservice\Fotoshow.lnk - C:\Program Files (x86)\Fotoservice\Kruidvat fotoservice\Fotoshow.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kruidvat fotoservice\Kruidvat fotoservice Uninstall.lnk - C:\Program Files (x86)\Fotoservice\Kruidvat fotoservice\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kruidvat fotoservice\Kruidvat fotoservice.lnk - C:\Program Files (x86)\Fotoservice\Kruidvat fotoservice\Kruidvat fotoservice.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trekpleister fotoservice\Trekpleister fotoservice Uninstall.lnk - C:\Program Files (x86)\Trekpleister\Trekpleister fotoservice\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trekpleister fotoservice\Trekpleister fotoservice.lnk - C:\Program Files (x86)\Trekpleister\Trekpleister fotoservice\Trekpleister fotoservice.exe ==== shortcuts in Quick Launch ====================== C:\Users\Maarten\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyEnable"=dword:00000000 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Maarten\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Maarten\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Maarten\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\users\Maarten\AppData\Local\Mozilla\Firefox\Profiles\llbpzvjg.default\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\users\Maarten\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Maarten\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Maarten\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted Beste Juisterr dank je wel voor de reactie! hier is het logje wat je vroeg. groetjes Inmortis. Tevens wil ik ook vermelden dat de computer met opstarten de melding "kan geen verbinding met windows-service maken"

Na een beetje zoeken op het forum begrijp ik dat een logbestand van hijack nodig is. Bij deze post ik die op voorhand Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:50:09, on 14-3-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16464) Boot mode: Normal Running processes: C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe C:\Users\Maarten\Downloads\HijackThis.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe C:\Users\Maarten\Desktop\HijackThis.exe C:\Windows\SysWOW64\DllHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.mywebsearch.com/index.jhtml?n=77DE8857&p2=^HJ^xdm069^YY^nl&ptb=72B989AB-6DA3-4631-917F-03349DBBA845&si=pconverter R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {2d8d9acc-f6d7-4362-8876-a275ca929591} - (no file) F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 10284 bytes

Beste mense, Ik krijg al enige tijd deze fout codes als ik in mijn firewall wil zijn.(Foutcode 0x80070422 en foutcode 0x6D9) Ik kan hem nietopstarten en heb al van alles geprobeerd om het op te lossen, zoals Hijack this, Mr fix it, Combofix Malwarebytes..... Maar niks helpt. Ik ben bang dat ik een virus heb en heb totaal geen idee hoe ik er vanaf kan komen. Hopelijk kunnen jullie mij helpen. Ik hoor het graag. Bji voorbaat dank, Inmortis