evelie
-
Items
49 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Berichten die geplaatst zijn door evelie
-
-
Neen Asus, mn toetsenbord werkt nu helemaal niet meer :-( kan ik er iets aandoen.
-
[ATTACH]33513[/ATTACH]
-
Zoek.exe v5.0.0.0 Updated 30-06-2014
Tool run by user on do 03-07-2014 at 0:32:06,06.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\user\Downloads\zoek (5).exe [scan all users] [script inserted]
===== Runcheck 0:33:18,96 =====
--- Create Environment Variables 0:33:20,74
--- Checking Input 0:33:32,28
--- AU AppData Check 0:33:37,47
--- Remove From Windows Installer 0:33:41,34
--- IE Startpage Check 0:34:46,54
--- Program Files DB Check 0:35:26,73
--- C:\Users\Default\AppData\Roaming DB Check 0:36:27,84
--- C:\Users\Default User\AppData\Roaming DB Check 0:36:27,84
--- C:\Users\Gast\AppData\Roaming DB Check 0:36:27,84
--- C:\Users\user\AppData\Roaming DB Check 0:36:27,84
--- C:\Windows\SysNative\config\systemprofile\AppData\Roaming DB Check 0:36:27,84
--- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming DB Check 0:36:27,84
--- C:\Windows\serviceprofiles\networkservice\AppData\Roaming DB Check 0:36:27,84
--- C:\Windows\serviceprofiles\Localservice\AppData\Roaming DB Check 0:36:27,84
--- C:\Users\user DB Check 0:39:14,31
--- C:\PROGRA~3 DB Check 0:39:34,44
--- C:\Users\Default\AppData\Local DB Check 0:39:35,54
--- C:\Users\Default User\AppData\Local DB Check 0:39:35,54
--- C:\Users\Gast\AppData\Local DB Check 0:39:35,54
--- C:\Users\user\AppData\Local DB Check 0:39:35,54
--- C:\Windows\SysNative\config\systemprofile\AppData\Local DB Check 0:39:35,54
--- C:\Windows\sysWoW64\config\systemprofile\AppData\Local DB Check 0:39:35,54
--- C:\Windows\serviceprofiles\networkservice\AppData\Local DB Check 0:39:35,54
--- C:\Windows\serviceprofiles\Localservice\AppData\Local DB Check 0:39:35,54
--- C:\ProgramData\Microsoft\Windows\Start Menu\Programs DB Check 0:41:48,34
--- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs DB Check 0:41:57,70
--- Tasks DB Check 0:42:04,43
--- Downloads DB Check 0:42:08,86
--- C:\Users\Gast\AppData\LocalLow DB Check 0:42:15,24
--- C:\Users\user\AppData\LocalLow DB Check 0:42:15,24
--- C:\Windows\SysNative\config\systemprofile\AppData\LocalLow DB Check 0:42:15,24
--- C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow DB Check 0:42:15,24
--- C:\Windows\serviceprofiles\networkservice\AppData\LocalLow DB Check 0:42:15,24
--- C:\Windows\serviceprofiles\Localservice\AppData\LocalLow DB Check 0:42:15,24
--- Tasks2 DB Check 0:43:45,06
--- Documents DB Check 0:44:11,60
--- C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\eu7oqqak.default DB Check 0:44:18,87
--- C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\iysuyrxl.default DB Check 0:44:18,87
--- C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\uaonk95b.default DB Check 0:44:18,87
--- C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\x2r8zr9s.default DB Check 0:44:18,87
--- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default DB Check 0:44:18,87
--- C:\Users\user\Desktop DB Check 0:44:38,25
--- Services DB Check 0:44:50,41
--- FF prefs.js DB Check 0:45:19,49
-
sorry dak vergeten te vermelden dat het om toetsenbord laptop ging :-( echt bedankt om jullie advies!
-
Zoek.exe v5.0.0.0 Updated 30-06-2014
Tool run by user on wo 02-07-2014 at 2:41:11,39.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\user\Downloads\zoek (4).exe [scan all users] [script inserted]
==== Older Logs ======================
C:\zoek-results20-08-2013-2347.log 83500 bytes
C:\zoek-results2013-08-20-221737.log 30780 bytes
C:\zoek-results25-03-2013-1602.log 2899 bytes
==== Empty Folders Check ======================
C:\PROGRA~2\McAfee Security Scan deleted successfully
C:\PROGRA~2\Naver deleted successfully
C:\PROGRA~3\systemk deleted successfully
C:\PROGRA~3\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} deleted successfully
C:\Users\user\AppData\Roaming\rmi deleted successfully
C:\Users\user\AppData\Roaming\systweak deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2871622637-3147571663-1438806652-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully
HKEY_USERS\S-1-5-21-2871622637-3147571663-1438806652-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully
HKEY_USERS\S-1-5-21-2871622637-3147571663-1438806652-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully
HKEY_USERS\S-1-5-21-2871622637-3147571663-1438806652-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} deleted successfully
HKEY_USERS\S-1-5-21-2871622637-3147571663-1438806652-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{54739D49-AC03-4C57-9264-C5195596B3A1} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\McComponentHostService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\McComponentHostService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater15.4.0 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater15.4.0 deleted successfully
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Softonic for Windows"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe]
==== Registry Fix Code x64 ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}]
==== Deleting Files \ Folders ======================
C:\Program Files (x86)\Common Files\AVG Secure Search not found
C:\ProgramData\systemk not found
C:\Users\user\AppData\Roaming\systweak not found
C:\PROGRA~2\Linkey deleted
C:\Program Files (x86)\PricePeep deleted
C:\ProgramData\McAfee Security Scan deleted
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\chrome.manifest" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\install.rdf" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\content\button.css" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\content\overlay.xul" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\skin\bright_green_19_19.png" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\skin\default_19_19.png" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\skin\hard_green_19_19.png" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\skin\icon.png" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\skin\icon64.png" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\skin\orange_19_19.png" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\skin\red_19_19.png" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\skin\yellow_19_19.png" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\content\js\common.js" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\content\js\LinkeyManager.js" deleted
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\content" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\skin" deleted
"C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\extension@linkeyproject.com\content\js" deleted
"C:\Program Files\McAfee Security Scan" not deleted
"C:\Program Files\McAfee Security Scan\3.8.150" not deleted
==== Files Recently Created / Modified ======================
====== C:\Windows ====
====== C:\Users\user\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2014-06-11 21:28:26 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-06-11 21:28:26 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
====== C:\Windows\Tasks ======
2014-06-17 01:19:15 E2FB07A5BEA1345435E9A828F783C0A8 3120 ----a-w- C:\Windows\Sysnative\Tasks\{2B98F828-5BC8-4895-9A3E-703842EDC721}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-06-17 01:47:15 -------- d-----w- C:\Program Files\trend micro
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\user\AppData\Roaming ======
====== C:\Users\user ======
====== C: exe-files ==
=== C: other files ==
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-21-2871622637-3147571663-1438806652-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"="C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"PC Speed Maximizer"="C:\Program Files (x86)\PC Speed Maximizer\SPMLauncher.exe"
"GoogleChromeAutoLaunch_4E874A737D5662A34EBBEADB3A9C4A09"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Tiny download manager"="C:\Users\user\AppData\Local\DM\TinyDM.exe /M"
"RESTART_STICKY_NOTES"="C:\Windows\System32\StikyNot.exe"
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui"
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"BlueStacks Agent"="C:\Program Files (x86)\BlueStacks\HD-Agent.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"="C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"PC Speed Maximizer"="C:\Program Files (x86)\PC Speed Maximizer\SPMLauncher.exe"
"GoogleChromeAutoLaunch_4E874A737D5662A34EBBEADB3A9C4A09"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Tiny download manager"="C:\Users\user\AppData\Local\DM\TinyDM.exe /M"
"RESTART_STICKY_NOTES"="C:\Windows\System32\StikyNot.exe"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [13-05-2014 22:30]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2871622637-3147571663-1438806652-1000Core.job --a------ C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe [22-01-2013 22:40]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2871622637-3147571663-1438806652-1000UA.job --a------ C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe [22-01-2013 22:40]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29-12-2012 17:10]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29-12-2012 17:10]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2871622637-3147571663-1438806652-1000Core" [C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2871622637-3147571663-1438806652-1000UA" [C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\{8F404E05-E4AD-435B-84A3-933B4E65B200}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [25-07-2013 16:54]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{e4f94d1e-2f53-401e-8885-681602c0ddd8}"="C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi" []
==== Firefox Extensions ======================
ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default
- PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default
A58DE0A570148AF5FF3512B2A340D09F - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll - Shockwave Flash
FF0D6F82A0EC13952E83B9439100E45D - C:\Users\user\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bopakagnckmlgajfccecajhnimjiiedh - No path found[]
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Users\user\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx[31-01-2013 03:22]
Google Docs - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
avast WebRep - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda
Gmail - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
MSS+ Extension - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Adblock for Youtube - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk
Allin1Convert - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl
PricePeep - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb
DvdVideoSoft Free Youtube Download - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
Google Wallet - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-2871622637-3147571663-1438806652-1000\Software\Mozilla\Firefox\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8} deleted successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=65 folders=13 20085157 bytes)
==== After Reboot ======================
==== Deleting Files / Folders ======================
"C:\Program Files\McAfee Security Scan" not found
==== EOF on wo 02-07-2014 at 2:54:21,24 ======================
- - - Updated - - -
[ATTACH]33491[/ATTACH]
- - - Updated - - -
sorry ik heb heir een soepje van gemaakt... ik hoop dat het dit is wat ik moest doorsturen...
-
Zoek.exe v5.0.0.0 Updated 30-06-2014
Tool run by user on wo 02-07-2014 at 2:41:11,39.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\user\Downloads\zoek (4).exe [scan all users] [script inserted]
===== Runcheck 2:42:53,24 =====
--- Create Environment Variables 2:42:55,15
--- Checking Input 2:43:07,07
--- Empty Folders Check 2:43:36,72
--- Emptyclsid 2:43:36,79
--- Del by CLSID 2:43:54,07
--- Delete Services 2:45:02,94
--- Registry Fix 2:45:12,78
--- Registry Fix x64 2:45:12,89
--- Delete files\folders 2:45:12,90
--- Create Backups 2:45:13,11
--- Recently Created 2:45:25,46
-
is er een kans dat het terug gaat werken? en een haardroger gebruiken? sommigen thuis beweren zelfs dat rijst de drank opslorpt en dat ik het dus daarom moet leggen.
en als het terug werkt wat kunnen de gevolgen zijn?- - - Updated - - -
ps: het is wel toetsenbord van mijn laptop he.... geen gewone toetsenbord van een pc
-
titel zegt het zelf :-( kan iemand me helpen?
-
Oh super bedankt voor advies, mocht er nog iets verwijderd worden hoor ik het graag...
Dit is het log.txt...
Logfile of random's system information tool 1.10 (written by random/random)
Run by user at 2014-06-17 05:08:29
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 230 GB (75%) free of 305 GB
Total RAM: 2811 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:08:31, on 17-6-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Users\user\AppData\Local\DM\TinyDM.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\BlueStacks\HD-Agent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\PROGRA~2\Linkey\IEEXTE~1\iedll.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: PricePeep - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Program Files (x86)\PricePeep\pricepeep.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [blueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [PC Speed Maximizer] C:\Program Files (x86)\PC Speed Maximizer\SPMLauncher.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_4E874A737D5662A34EBBEADB3A9C4A09] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [softonic for Windows] "C:\Users\user\AppData\Local\Softonic\Softonic.exe" -minimize
O4 - HKCU\..\Run: [Tiny download manager] "C:\Users\user\AppData\Local\DM\TinyDM.exe" /M
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{FA1E0D4A-AE05-470F-A76E-EE2C327E56B3}: NameServer = 212.217.0.1 212.217.1.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HitmanPro Scheduler (HitmanProScheduler) - SurfRight B.V. - C:\Program Files\HitmanPro\hmpsched.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater15.4.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10620 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\HitmanPro\hmpsched.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
atieclxx
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Users\user\AppData\Local\DM\TinyDM.exe" /M
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
"C:\Program Files (x86)\BlueStacks\HD-Agent.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3164.0.626759382\1362941422" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x9712 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.632.1.2000 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A5_Stable_R2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="3164.1.1083769560\1659374341" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A5_Stable_R2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="3164.2.1182387426\683827247" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A5_Stable_R2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="3164.3.299013160\1852125268" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A5_Stable_R2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="3164.5.1957092547\1220108728" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A5_Stable_R2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="3164.7.1324384766\584905131" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3164.8.1160665966\838688005" --ppapi-flash-args=enable_hw_video_decode=1 --lang=nl --ignored=" --type=renderer " /prefetch:-632637702
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe19_ Global\UsGthrCtrlFltPipeMssGthrPipe19 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\user\Downloads\RSITx64 (3).exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2871622637-3147571663-1438806652-1000Core.job - C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2871622637-3147571663-1438806652-1000UA.job - C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default
prefs.js - "browser.search.useDBForOrder" - "false"
prefs.js - "browser.startup.homepage" - "http://www.default-search.net?sid=476&aid=135&itype=n&ver=12349&tm=329&src=hmp"
prefs.js - "keyword.URL" - "http://www.default-search.net/search?sid=476&aid=135&itype=a&ver=12521&tm=329&src=ds&p="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\extensions\
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7onkgtuy.default\searchplugins\
bingp.xml
default-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
Linkey - C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll [2014-04-08 210960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program File [2013-07-25 6583664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program File [2013-07-25 6583664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
Linkey - C:\PROGRA~2\Linkey\IEEXTE~1\iedll.dll [2014-04-08 182800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program File [2013-07-25 6583664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program File [2013-07-25 6583664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Aanmelden - Help - C:\Program File [2013-07-25 6583664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program File [2013-07-25 6583664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}]
PricePeep - C:\Program File [2013-07-25 6583664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program File [2013-07-25 6583664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program File [2013-07-25 6583664]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program File [2013-07-25 6583664]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-22 138096]
"PC Speed Maximizer"=C:\Program File [2013-07-25 6583664]
"GoogleChromeAutoLaunch_4E874A737D5662A34EBBEADB3A9C4A09"=C:\Program File [2013-07-25 6583664]
"swg"=C:\Program File [2013-07-25 6583664]
"Softonic for Windows"=C:\Users\user\AppData\Local\Softonic\Softonic.exe -minimize []
"Tiny download manager"=C:\Users\user\AppData\Local\DM\TinyDM.exe [2013-11-02 288728]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program File [2013-07-25 6583664]
"GrooveMonitor"=C:\Program File [2013-07-25 6583664]
"YouCam Service"=C:\Program File [2013-07-25 6583664]
"Adobe ARM"=C:\Program File [2013-07-25 6583664]
"BlueStacks Agent"=C:\Program File [2013-07-25 6583664]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program File [2013-07-25 6583664]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-06-17 03:47:15 ----D---- C:\rsit
2014-06-17 03:47:15 ----D---- C:\Program Files\trend micro
2014-06-17 03:24:23 ----SHD---- C:\Config.Msi
2014-06-11 23:28:29 ----A---- C:\Windows\system32\usp10.dll
2014-06-11 23:28:28 ----A---- C:\Windows\SYSWOW64\usp10.dll
2014-06-11 23:28:26 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-06-11 23:28:26 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-06-11 23:28:23 ----A---- C:\Windows\system32\msxml6.dll
2014-06-11 23:28:22 ----A---- C:\Windows\system32\msxml3.dll
2014-06-11 23:28:21 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-06-11 23:28:20 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2014-06-11 23:28:20 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-06-11 23:28:20 ----A---- C:\Windows\system32\msxml6r.dll
2014-06-11 23:28:19 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-06-11 23:28:19 ----A---- C:\Windows\system32\msxml3r.dll
2014-06-11 23:28:12 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-06-11 23:28:12 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-06-11 23:28:11 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-06-11 23:28:10 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-06-11 23:28:09 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-06-11 23:28:09 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-06-11 23:28:08 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-06-11 23:28:08 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-06-11 23:28:08 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 23:28:07 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-06-11 23:28:05 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-06-11 23:28:05 ----A---- C:\Windows\system32\urlmon.dll
2014-06-11 23:28:04 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-06-11 23:28:03 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-06-11 23:28:03 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-06-11 23:28:03 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 23:28:02 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-06-11 23:28:02 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-06-11 23:28:01 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-06-11 23:28:01 ----A---- C:\Windows\system32\msfeeds.dll
2014-06-11 23:28:01 ----A---- C:\Windows\system32\dxtmsft.dll
2014-06-11 23:28:00 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-06-11 23:27:59 ----A---- C:\Windows\system32\iesetup.dll
2014-06-11 23:27:59 ----A---- C:\Windows\system32\ie4uinit.exe
2014-06-11 23:27:57 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-06-11 23:27:57 ----A---- C:\Windows\system32\iertutil.dll
2014-06-11 23:27:56 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-06-11 23:27:56 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-06-11 23:27:55 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-06-11 23:27:55 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-06-11 23:27:54 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-06-11 23:27:54 ----A---- C:\Windows\system32\jsproxy.dll
2014-06-11 23:27:54 ----A---- C:\Windows\system32\iernonce.dll
2014-06-11 23:27:53 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-06-11 23:27:51 ----A---- C:\Windows\system32\ieui.dll
2014-06-11 23:27:51 ----A---- C:\Windows\system32\dxtrans.dll
2014-06-11 23:27:50 ----A---- C:\Windows\system32\ieframe.dll
2014-06-11 23:27:49 ----A---- C:\Windows\system32\mshtmled.dll
2014-06-11 23:27:48 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-06-11 23:27:48 ----A---- C:\Windows\system32\ieUnatt.exe
2014-06-11 23:27:47 ----A---- C:\Windows\system32\jscript9diag.dll
2014-06-11 23:27:47 ----A---- C:\Windows\system32\jscript9.dll
2014-06-11 23:27:46 ----A---- C:\Windows\system32\vbscript.dll
2014-06-11 23:27:46 ----A---- C:\Windows\system32\ieapfltr.dll
2014-06-11 23:27:45 ----A---- C:\Windows\system32\wininet.dll
2014-06-11 23:27:43 ----A---- C:\Windows\system32\msrating.dll
2014-06-11 23:27:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 23:27:40 ----A---- C:\Windows\system32\mshtml.dll
2014-06-04 21:04:36 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-31 15:39:41 ----D---- C:\Program Files\McAfee Security Scan
2014-05-19 02:12:14 ----D---- C:\ProgramData\systemk
======List of files/folders modified in the last 1 month======
2014-06-17 05:08:30 ----D---- C:\Windows\Temp
2014-06-17 03:47:15 ----RD---- C:\Program Files
2014-06-17 03:30:48 ----D---- C:\Windows\system32\config
2014-06-17 03:26:41 ----SHD---- C:\Windows\Installer
2014-06-17 03:26:28 ----SHD---- C:\System Volume Information
2014-06-17 03:26:15 ----RD---- C:\Program Files (x86)
2014-06-17 03:26:02 ----D---- C:\Windows\System32
2014-06-17 03:25:56 ----D---- C:\Windows\SysWOW64
2014-06-17 03:25:56 ----D---- C:\Windows\system32\Tasks
2014-06-17 03:24:33 ----D---- C:\ProgramData\Skype
2014-06-17 03:24:31 ----D---- C:\Program Files (x86)\Common Files
2014-06-17 03:24:16 ----D---- C:\Users\user\AppData\Roaming\Skype
2014-06-17 03:23:10 ----D---- C:\Windows\Tasks
2014-06-17 03:23:08 ----D---- C:\Users\user\AppData\Roaming\systweak
2014-06-17 03:21:30 ----D---- C:\Windows\inf
2014-06-17 03:21:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-06-17 03:21:22 ----D---- C:\Windows\system32\drivers
2014-06-17 03:21:15 ----D---- C:\Program Files (x86)\Naver
2014-06-17 03:20:17 ----D---- C:\Users\user\AppData\Roaming\uTorrent
2014-06-15 15:46:26 ----D---- C:\Program Files\Speccy
2014-06-13 01:51:21 ----D---- C:\Windows\rescache
2014-06-12 23:19:04 ----D---- C:\Windows\winsxs
2014-06-12 23:16:55 ----D---- C:\Windows\SYSWOW64\en-US
2014-06-12 23:16:55 ----D---- C:\Program Files\Internet Explorer
2014-06-12 23:16:53 ----D---- C:\Windows\system32\en-US
2014-06-12 23:16:51 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-12 23:16:48 ----D---- C:\Windows\system32\DriverStore
2014-06-12 00:32:50 ----D---- C:\Windows\system32\MRT
2014-06-12 00:30:47 ----A---- C:\Windows\system32\MRT.exe
2014-06-12 00:30:34 ----D---- C:\ProgramData\Microsoft Help
2014-06-12 00:26:06 ----D---- C:\Windows\Prefetch
2014-06-11 23:27:01 ----D---- C:\Windows\system32\catroot
2014-06-11 23:26:10 ----D---- C:\Windows\system32\catroot2
2014-06-06 17:55:14 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-31 15:39:47 ----D---- C:\ProgramData\McAfee Security Scan
2014-05-19 20:08:24 ----D---- C:\Windows\Microsoft.NET
2014-05-19 20:08:18 ----RSD---- C:\Windows\assembly
2014-05-19 02:12:14 ----HD---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-07-25 189936]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-07-25 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-07-25 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-07-29 45856]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program File [2013-07-25 6583664]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-07-01 4745280]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2012-08-03 40432]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-08-25 349800]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\Windows\system32\DRIVERS\ewusbnet.sys [2009-12-07 246224]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-12-07 117504]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-10-12 114304]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2009-09-21 127488]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program File [2013-07-25 6583664]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 avast! Antivirus;avast! Antivirus; C:\Program File [2013-07-25 6583664]
R2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program File [2013-07-25 6583664]
R2 HitmanProScheduler;HitmanPro Scheduler; C:\Program File [2013-07-25 6583664]
S2 BstHdAndroidSvc;BlueStacks Android Service; C:\Program File [2013-07-25 6583664]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Update-service (gupdate); C:\Program File [2013-07-25 6583664]
S2 vToolbarUpdater15.4.0;vToolbarUpdater15.4.0; C:\Program File [2013-07-25 6583664]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 gupdatem;Google Update-service (gupdatem); C:\Program File [2013-07-25 6583664]
S3 gusvc;Google Software Updater; C:\Program File [2013-07-25 6583664]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-05-30 111616]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program File [2013-07-25 6583664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program File [2013-07-25 6583664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program File [2013-07-25 6583664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program File [2013-07-25 6583664]
S3 ose;Office Source Engine; C:\Program File [2013-07-25 6583664]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-29 1255736]
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
-
Ik heb nog een vraagje: hoe kan ik die programma's zoals tango, skype enz verwijderen? Dus die ik absoluut nooit gebruik en toch vaak openspringen. Dank u...
-
-
Beste
Ik heb helaas windows 7 en niet 8...
-
Kweezie en Zirion bedankt voor reacties.
Kweezie wel ik denk dat het volgens veilige modus niet voorkomt. Aangezien je soms er heel lang mee moet werken vooralleer het een keer voorkomt. Maar bij het ander komt het wel nog steeds voor, wel minder dan eerder.
Zirion eerste wat ik krijg bij opstarten is een wit scherm wat ik niets mee kan doen en trg dus uit moet met de uit en aan knop. Maar nu doe ik het via F5 of F8 en soms hersteld het en soms niet... En als het gelukt is met de F5 dan krijg ik precies wat ik moet krijgen (dus mijn wachtwoord invoer
) -
Ok is goed...
-
Soms per direct bij het opstarten. Aantal keren en de momenten verschillen van dag tot dag. Het is heel vervelend. Want dan moet ik via de aan en uitknop de laptop helemaal uitschakelen en opnieuw herstarten en hopen dat het niet meer gebeurd, indien het weer gebeurd moet het weer uit en zo gaat het maar door. Soms herstelt het zelf trg maar dat gebeurd heel soms.
De wit beeld is altijd hetzelfde verschilt niet in kleur of dergelijke.
Via veilige modus heb ik nog niet geprobeerd. Ik wist niet dat het via F5 of F8 kon. Heb ik dan ook vandaag geleerd. Met deze danku! (sorry ik en de computer...., hihi ieder zo zijn ding...)
-
Herkent iemand dit probleem ?
In het midden van om het even welke activiteit op de laptop wordt plots het scherm volledig wit. De computer reageert op niets meer en kan enkel nog worden uitgeschakeld met de aan/uit-toets.
Het betreft een HP Pavilion 15-e099eb notebook.
Iemand een idee waardoor dit veroorzaakt wordt, en vooral ook : hoe het kan vermeden worden ?
Dank voor alle nuttige tips !
-
Beste
Mijn laptop valt soms plotseling uit? :-( Wat is het probleem en wat kan ik eraan doen?
Alvast bedankt, met vriendelijke groeten
-
USB\VID_04F2&PID_B1AA&REV_5953&MI_00
dit is het volgens mij...
-
-
Windows 7was erop...
-
00196-099-855-593, dit nr die je nodig hebt? (sorry ik ken er echt absoluut niet veel van..)
-
-
Ah moet je dan misschien dit hebben X15_53758 of dit HP 584037-001? Groetjes..
-
Ik heb een Hp, Windows7.
en als het terug werkt wat kunnen de gevolgen zijn?
help een halve glas fruitsap op mijn toetsenbord en nu? :-(
in Archief Hardware algemeen
Geplaatst:
maar naast dat mijn toetsenbord niet werkt selecteert mijn laptop altijd het laatste dus als ja langs je fotos gaat brengt het me telkens tot de laatste foto, het laat mijn ding niet doen. PFFF krijg er zenuwe van, wil sebbiet de scherm een heel goede vuist late voele.