geiteke

Lid

Bekijk profiel Bekijk hun activiteit

Items
92
Registratiedatum
22 augustus 2013
Laatst bezocht
16 februari 2023

Inhoudstype

Alle activiteit

Profielen

Forums

Store

Product Reviews

Alles dat geplaatst werd door geiteke

Slakkengang bij opstarten laptop

geiteke reageerde op geiteke's topic in Archief Windows Algemeen

@kweezie wabbit: zo heb ik cc nog niet gebruikt...een eerste scan had 164 fouten en een tweede nog 8. Het resultaat van het gereedschaptxtje: Nee HKCU:Run Samsung C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Nee HKCU:Run KiesPreload Samsung C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload Nee HKLM:Run 00TCrdMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe Ja HKLM:Run 20131121 AVAST Software C:\Program Files\AVAST Software\Avast\setup\emupdate\c9cfc118-265f-4922-93f9-af4be017d40f.exe /check Ja HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" Nee HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" Ja HKLM:Run avast AVAST Software "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui Ja HKLM:Run BCSSync Microsoft Corporation "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices Nee HKLM:Run CanonMyPrinter CANON INC. C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon Nee HKLM:Run CanonSolutionMenuEx CANON INC. C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon Ja HKLM:Run fssui Microsoft Corporation "C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe" -autorun Nee HKLM:Run HSON TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TBS\HSON.exe Nee HKLM:Run HWSetup TOSHIBA Electronics, Inc. C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP Nee HKLM:Run IJNetworkScanUtility CANON INC. C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe Nee HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe" Nee HKLM:Run KeNotify TOSHIBA CORPORATION C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe Nee HKLM:Run KiesTrayAgent Samsung Electronics Co., Ltd. C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe Nee HKLM:Run NBAgent "c:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe" /WinStart Ja HKLM:Run RtHDVBg Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3 Ja HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s Nee HKLM:Run SmartFaceVWatcher TOSHIBA Corporation %ProgramFiles%\Toshiba\SmartFaceV\SmartFaceVWatcher.exe Nee HKLM:Run SmoothView TOSHIBA Corporation %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe Nee HKLM:Run StartCCC Advanced Micro Devices, Inc. "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun Nee HKLM:Run SVPWUTIL TOSHIBA C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL Ja HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe Nee HKLM:Run Teco "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r Nee HKLM:Run Toshiba Registration Toshiba Europe GmbH C:\Program Files\Toshiba\Registration\ToshibaReminder.exe Nee HKLM:Run Toshiba TEMPRO Toshiba Europe GmbH C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe Nee HKLM:Run ToshibaServiceStation TOSHIBA Corporation "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60 Nee HKLM:Run TosNC TOSHIBA Corporation %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe Nee HKLM:Run TosReelTimeMonitor TOSHIBA Corporation %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe Nee HKLM:Run TosSENotify TOSHIBA Corporation C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe Nee HKLM:Run TosVolRegulator TOSHIBA Corporation C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe Nee HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe Nee HKLM:Run TPwrMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE Nee HKLM:Run TWebCamera TOSHIBA CORPORATION. "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun Nee HKLM:Run Zune Launcher Microsoft Corporation "C:\Program Files\ZuneLauncher.exe"
- 9 december 2013
- 32 antwoorden
Slakkengang bij opstarten laptop

geiteke reageerde op geiteke's topic in Archief Windows Algemeen

@kweezie wabbit: nee jammer genoeg niet :-( :-( :-( eens opgestart werkt alles naar behoren, maar opstarten zelf blijft enorm lang duren. Het bureaublad verschijnt vrij snel bij opstart maar kan dan enkele minuten niets doen want dan reageert niets...
- 8 december 2013
- 32 antwoorden
Slakkengang bij opstarten laptop

geiteke reageerde op geiteke's topic in Archief Windows Algemeen

@kweezie wabbit: et voila: # AdwCleaner v3.000 - Report created 23/08/2013 at 10:06:46 # Updated 20/08/2013 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : Mike - MIKE-TOSH # Running from : C:\Users\Mike\Downloads\adwcleaner.exe # Option : Clean ***** [ Services ] ***** Service Deleted : WsysSvc ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\eSafe Folder Deleted : C:\ProgramData\InstallMate Folder Deleted : C:\Program Files (x86)\Web Cake Folder Deleted : C:\Users\Mike\AppData\Local\Temp\eIntaller Folder Deleted : C:\Users\Mike\AppData\Roaming\Web Cake ***** [ Shortcuts ] ***** Shortcut Disinfected : C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk Shortcut Disinfected : C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk Shortcut Disinfected : C:\Users\Mike\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk Shortcut Disinfected : C:\Users\Mike\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk ***** [ Registry ] ***** Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_5dec30d7 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_calibre_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_calibre_RASMANCS Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Key Deleted : HKLM\Software\delta-homesSoftware Key Deleted : HKLM\Software\eSafeSecControl Key Deleted : HKLM\Software\V9 ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16660 ************************* AdwCleaner[R0].txt - [3128 octets] - [23/08/2013 10:06:16] AdwCleaner[s0].txt - [2172 octets] - [23/08/2013 10:06:46] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2232 octets] ########## # AdwCleaner v3.014 - Report created 06/12/2013 at 16:01:01 # Updated 01/12/2013 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : Mike - MIKE-TOSH # Running from : C:\Users\Mike\Downloads\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec Folder Deleted : C:\Program Files (x86)\myfree codec Folder Deleted : C:\Users\Mike\AppData\Local\torch ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasapi32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasmancs Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BB975E58-E769-4E5A-BA12-B765BC559FF3} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Key Deleted : HKCU\Software\Myfree Codec Key Deleted : HKCU\Software\torch Key Deleted : HKLM\Software\hdcode Key Deleted : HKLM\Software\Myfree Codec Key Deleted : HKLM\Software\torch Key Deleted : HKLM\Software\winzipersvc Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\torch ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.16428 Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page] ************************* AdwCleaner[R0].txt - [5748 octets] - [23/08/2013 09:06:16] AdwCleaner[R1].txt - [3445 octets] - [23/08/2013 21:34:40] AdwCleaner[R2].txt - [2680 octets] - [06/12/2013 16:00:33] AdwCleaner[s0].txt - [4630 octets] - [23/08/2013 09:06:46] AdwCleaner[s1].txt - [817 octets] - [23/08/2013 21:35:14] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [4749 octets] ##########
- 6 december 2013
- 32 antwoorden
Slakkengang bij opstarten laptop

geiteke reageerde op geiteke's topic in Archief Windows Algemeen

@kweezie wabbit: deze ging vlot ;-) ComboFix 13-12-04.04 - Mike 05/12/2013 15:10:08.1.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.3955.2495 [GMT 1:00] Gestart vanuit: c:\users\Mike\Downloads\ComboFix.exe AV: avast! Internet Security *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47} SP: avast! Internet Security *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((( Bestanden Gemaakt van 2013-11-05 to 2013-12-05 )))))))))))))))))))))))))))))) . . 2013-12-05 14:35 . 2013-12-05 14:35 -------- d-----w- c:\users\Public\AppData\Local\temp 2013-12-05 14:35 . 2013-12-05 14:35 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-12-04 19:49 . 2013-12-04 19:49 -------- d--h--w- c:\programdata\CanonIJEPPEX2 2013-12-04 19:49 . 2013-12-04 19:49 -------- d--h--w- c:\programdata\CanonEPP 2013-12-03 14:15 . 2013-12-03 14:15 -------- d-----w- C:\zoek 2013-12-03 10:32 . 2013-11-08 03:12 10285968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E32FC8C5-331E-4647-B5F4-0ADB460D0F97}\mpengine.dll 2013-11-29 15:04 . 2013-11-29 15:07 -------- d-----w- C:\rsit 2013-11-28 18:54 . 2013-11-28 18:54 -------- d-----w- c:\windows\nl 2013-11-28 18:52 . 2013-02-05 21:06 57840 ----a-w- c:\windows\system32\drivers\fssfltr.sys 2013-11-28 18:52 . 2013-11-28 18:52 -------- d-----w- c:\program files\Windows Live 2013-11-28 18:51 . 2010-06-02 03:55 77656 ----a-w- c:\windows\system32\XAPOFX1_5.dll 2013-11-28 18:51 . 2010-06-02 03:55 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_5.dll 2013-11-28 18:51 . 2010-06-02 03:55 527192 ----a-w- c:\windows\SysWow64\XAudio2_7.dll 2013-11-28 18:51 . 2010-06-02 03:55 518488 ----a-w- c:\windows\system32\XAudio2_7.dll 2013-11-28 18:51 . 2010-05-26 10:41 2526056 ----a-w- c:\windows\system32\D3DCompiler_43.dll 2013-11-28 18:51 . 2010-05-26 10:41 2106216 ----a-w- c:\windows\SysWow64\D3DCompiler_43.dll 2013-11-28 18:51 . 2010-05-26 10:41 276832 ----a-w- c:\windows\system32\d3dx11_43.dll 2013-11-28 18:51 . 2010-05-26 10:41 248672 ----a-w- c:\windows\SysWow64\d3dx11_43.dll 2013-11-28 18:50 . 2009-09-04 16:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll 2013-11-28 18:50 . 2009-09-04 16:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll 2013-11-28 18:49 . 2013-11-28 18:49 525656 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\97c28e101ceec6a07\DXSETUP.exe 2013-11-28 18:49 . 2013-11-28 18:49 1691480 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\97c28e101ceec6a07\dsetup32.dll 2013-11-28 18:49 . 2013-11-28 18:49 94040 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\97c28e101ceec6a07\DSETUP.dll 2013-11-28 18:49 . 2013-11-28 18:49 89944 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\9641b4cd1ceec6a05\DSETUP.dll 2013-11-28 18:49 . 2013-11-28 18:49 537432 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\9641b4cd1ceec6a05\DXSETUP.exe 2013-11-28 18:49 . 2013-11-28 18:49 1801048 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\9641b4cd1ceec6a05\dsetup32.dll 2013-11-28 18:49 . 2013-11-28 18:49 89944 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\92f5b1c11ceec6a02\DSETUP.dll 2013-11-28 18:49 . 2013-11-28 18:49 537432 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\92f5b1c11ceec6a02\DXSETUP.exe 2013-11-28 18:49 . 2013-11-28 18:49 1801048 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\92f5b1c11ceec6a02\dsetup32.dll 2013-11-28 18:35 . 2013-12-05 13:20 -------- d-----w- c:\users\Killian 2013-11-19 22:16 . 2013-10-14 17:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE 2013-11-13 12:54 . 2013-10-05 20:25 1474048 ----a-w- c:\windows\system32\crypt32.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-12-04 10:50 . 2013-07-21 10:46 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-12-04 10:50 . 2013-07-21 10:46 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-11-28 18:52 . 2009-08-18 09:24 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-11-13 18:53 . 2012-12-11 18:28 82896128 ----a-w- c:\windows\system32\MRT.exe 2013-11-11 04:50 . 2012-12-10 14:38 267936 ------w- c:\windows\system32\MpSigStub.exe 2013-09-08 02:30 . 2013-10-09 10:24 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys 2013-09-08 02:27 . 2013-10-09 10:24 327168 ----a-w- c:\windows\system32\mswsock.dll 2013-09-08 02:03 . 2013-10-09 10:24 231424 ----a-w- c:\windows\SysWow64\mswsock.dll 2011-08-05 11:56 . 2011-08-05 11:56 645856 ----a-w- c:\program files\UIX.renderapi.dll 2011-08-05 11:56 . 2011-08-05 11:56 1530592 ----a-w- c:\program files\UIX.dll 2011-08-05 11:56 . 2011-08-05 11:56 1288928 ----a-w- c:\program files\UIXcontrols.dll 2011-08-05 11:56 . 2011-08-05 11:56 1272544 ----a-w- c:\program files\ZuneShell.dll 2011-08-05 11:56 . 2011-08-05 11:56 1175264 ----a-w- c:\program files\ZuneDBApi.dll 2011-08-05 11:53 . 2011-08-05 11:53 9440 ----a-w- c:\program files\ZuneWmduResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 863968 ----a-w- c:\program files\ZuneWmdu.dll 2011-08-05 11:53 . 2011-08-05 11:53 74464 ----a-w- c:\program files\ZuneShellExt.dll 2011-08-05 11:53 . 2011-08-05 11:53 507104 ----a-w- c:\program files\ZuneSP.dll 2011-08-05 11:53 . 2011-08-05 11:53 467680 ----a-w- c:\program files\ZuneWlanCfgSvc.exe 2011-08-05 11:53 . 2011-08-05 11:53 4020448 ----a-w- c:\program files\ZuneSetup.exe 2011-08-05 11:53 . 2011-08-05 11:53 366816 ----a-w- c:\program files\ZuneSrcWrp.dll 2011-08-05 11:53 . 2011-08-05 11:53 306400 ----a-w- c:\program files\WMZuneComm.exe 2011-08-05 11:53 . 2011-08-05 11:53 27872 ----a-w- c:\program files\WMZuneTCP2UDP.dll 2011-08-05 11:53 . 2011-08-05 11:53 21216 ----a-w- c:\program files\WMZuneDTPTDNS.dll 2011-08-05 11:53 . 2011-08-05 11:53 196832 ----a-w- c:\program files\ZuneZMDB.Mobile.dll 2011-08-05 11:53 . 2011-08-05 11:53 18656 ----a-w- c:\program files\WMZuneCommProxyStub.dll 2011-08-05 11:53 . 2011-08-05 11:53 17632 ----a-w- c:\program files\ZuneShare.exe 2011-08-05 11:53 . 2011-08-05 11:53 16921312 ----a-w- c:\program files\ZuneShellResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 157920 ----a-w- c:\program files\ZuneZMDB.Library.dll 2011-08-05 11:53 . 2011-08-05 11:53 157408 ----a-w- c:\program files\ZuneZMDB.ZuneHD.dll 2011-08-05 11:53 . 2011-08-05 11:53 152288 ----a-w- c:\program files\ZuneZMDB.Classic.dll 2011-08-05 11:53 . 2011-08-05 11:53 100064 ----a-w- c:\program files\ZuneTaskbar.dll 2011-08-05 11:53 . 2011-08-05 11:53 916704 ----a-w- c:\program files\ZuneQP.dll 2011-08-05 11:53 . 2011-08-05 11:53 683744 ----a-w- c:\program files\ZuneSH.dll 2011-08-05 11:53 . 2011-08-05 11:53 514272 ----a-w- c:\program files\ZuneSE.dll 2011-08-05 11:53 . 2011-08-05 11:53 3889376 ----a-w- c:\program files\ZuneResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 155872 ----a-w- c:\program files\ZuneSA.dll 2011-08-05 11:53 . 2011-08-05 11:53 1257184 ----a-w- c:\program files\ZuneService.dll 2011-08-05 11:53 . 2011-08-05 11:53 879328 ----a-w- c:\program files\ZuneMBR.dll 2011-08-05 11:53 . 2011-08-05 11:53 8277728 ----a-w- c:\program files\ZuneNss.exe 2011-08-05 11:53 . 2011-08-05 11:53 72928 ----a-w- c:\program files\ZuneDXVA2.dll 2011-08-05 11:53 . 2011-08-05 11:53 707808 ----a-w- c:\program files\ZUNEMP4SDECD.dll 2011-08-05 11:53 . 2011-08-05 11:53 61664 ----a-w- c:\program files\ZuneCfg.dll 2011-08-05 11:53 . 2011-08-05 11:53 56544 ----a-w- c:\program files\ZuneConfig.exe 2011-08-05 11:53 . 2011-08-05 11:53 38624 ----a-w- c:\program files\ZuneEnc.exe 2011-08-05 11:53 . 2011-08-05 11:53 376544 ----a-w- c:\program files\ZuneEvr.dll 2011-08-05 11:53 . 2011-08-05 11:53 35552 ----a-w- c:\program files\UIXsup.dll 2011-08-05 11:53 . 2011-08-05 11:53 347872 ----a-w- c:\program files\ZuneNssci.dll 2011-08-05 11:53 . 2011-08-05 11:53 223968 ----a-w- c:\program files\Zune.exe 2011-08-05 11:53 . 2011-08-05 11:53 218848 ----a-w- c:\program files\ZuneHost.exe 2011-08-05 11:53 . 2011-08-05 11:53 212192 ----a-w- c:\program files\ZuneDB.dll 2011-08-05 11:53 . 2011-08-05 11:53 2110176 ----a-w- c:\program files\ZuneEncEng.dll 2011-08-05 11:53 . 2011-08-05 11:53 20704 ----a-w- c:\program files\ZunePS.dll 2011-08-05 11:53 . 2011-08-05 11:53 1752288 ----a-w- c:\program files\UIXrender.dll 2011-08-05 11:53 . 2011-08-05 11:53 163552 ----a-w- c:\program files\ZuneLauncher.exe 2011-08-05 11:53 . 2011-08-05 11:53 1481440 ----a-w- c:\program files\ZuneCore.dll 2011-08-05 11:53 . 2011-08-05 11:53 131296 ----a-w- c:\program files\ZunePresenter.dll 2011-08-05 11:53 . 2011-08-05 11:53 129248 ----a-w- c:\program files\ZuneEffects.dll 2011-08-05 11:53 . 2011-08-05 11:53 121056 ----a-w- c:\program files\ZuneAACDec.dll 2011-08-05 11:53 . 2011-08-05 11:53 1184480 ----a-w- c:\program files\ZuneH264Dec.dll 2011-08-05 11:53 . 2011-08-05 11:53 1161440 ----a-w- c:\program files\ZuneMde.dll 2011-08-05 11:53 . 2011-08-05 11:53 1096928 ----a-w- c:\program files\ZuneMarketplaceResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 10061536 ----a-w- c:\program files\ZuneNativeLib.dll 2011-08-05 11:31 . 2011-08-05 11:31 182784 ----a-w- c:\program files\l3codecp.acm 2011-06-06 12:48 . 2011-06-06 12:48 856576 ----a-w- c:\program files\msvcp90.dll 2011-06-06 12:48 . 2011-06-06 12:48 626688 ----a-w- c:\program files\msvcr90.dll 2011-06-06 12:48 . 2011-06-06 12:48 245760 ----a-w- c:\program files\msvcm90.dll 2007-10-02 13:12 . 2007-10-02 13:12 1642568 ----a-w- c:\program files\msidcrl40.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-06-27 4769352] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] "20131121"="c:\program files\AVAST Software\Avast\setup\emupdate\c9cfc118-265f-4922-93f9-af4be017d40f.exe" [2013-11-23 180184] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "TOSHIBA Online Product Information"="c:\program files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe" [2010-03-03 4581280] . c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ TRDCReminder.lnk - c:\program files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-9-1 481184] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R3 aswVmm;aswVmm; [x] R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x] R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x] R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x] R3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe;c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [x] R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x] R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [x] R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] R3 WSDScan;Ondersteuning voor WSD-scan via UMB;c:\windows\system32\drivers\WSDScan.sys;c:\windows\SYSNATIVE\drivers\WSDScan.sys [x] S0 aswKbd;aswKbd; [x] S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdis.sys [x] S0 aswNdis2;avast! Firewall Core Firewall Service; [x] S0 aswRvrt;aswRvrt; [x] S1 aswFW;avast! TDI Firewall driver; [x] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x] S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x] S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [x] S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [x] S2 regi;regi;c:\windows\system32\drivers\regi.sys;c:\windows\SYSNATIVE\drivers\regi.sys [x] S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe;c:\program files\TOSHIBA\TECO\TecoService.exe [x] S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x] S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x] S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x] S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x] S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x] S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x] S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys;c:\windows\SYSNATIVE\DRIVERS\rtl8192se.sys [x] . . Inhoud van de 'Gedeelde Taken' map . 2013-12-05 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-21 10:50] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2013-06-27 08:36 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-10-17 13307496] "RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-10-14 2278504] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2012-11-05 108144] "fssui"="c:\program files (x86)\Windows Live\Family Safety\fsui.exe" [2013-02-05 892416] . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.be/ mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local uSearchAssistant = hxxp://www.google.com TCP: DhcpNameServer = 195.130.131.132 195.130.130.4 DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc] "ImagePath"="c:\windows\system32\GameMon.des -service" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_152_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_152_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_152_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_152_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_152.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_152.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_152.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_152.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\McAfee] "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2013-12-05 15:37:16 ComboFix-quarantined-files.txt 2013-12-05 14:37 . Pre-Run: 158.161.018.880 bytes beschikbaar Post-Run: 158.116.622.336 bytes beschikbaar . - - End Of File - - 787AF067248085ACE0AFD1ADD166DAE5
- 5 december 2013
- 32 antwoorden
Slakkengang bij opstarten laptop

geiteke reageerde op geiteke's topic in Archief Windows Algemeen

@kweezie wabbit: zoek.exe kon niet gestopt worden. zowel het scherm sluiten als via taakbeheer afsluiten resulteerde in het opnieuw openen van het scherm. laptop was op dat moment ook niet verder toegankelijk waardoor geforceerd moest afgesloten worden. bij een nieuwe poging hetzelfde resultaat. er is 11 minuten processoractiviteit en dan niets meer
- 3 december 2013
- 32 antwoorden
Slakkengang bij opstarten laptop

geiteke reageerde op geiteke's topic in Archief Windows Algemeen

@ kweezie wabbit: alvast bedankt voor je moeite je schrijft wacht geduldig af tot een logje opent... zoek.exe is ondertusen 7 uur bezig... is dit normaal?
- 30 november 2013
- 32 antwoorden
Slakkengang bij opstarten laptop

geiteke reageerde op geiteke's topic in Archief Windows Algemeen

@ falstring: opstartsequentie werd niet aangepakt, enkel de twee stappen die ik in mijn tweede berichtje postte @ kweezie wabbit: hieronder het logje: Logfile of random's system information tool 1.09 (written by random/random) Run by Mike at 2013-11-29 16:04:33 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 150 GB (49%) free of 305 GB Total RAM: 3955 MB (48% free) HijackThis download failed ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe winlogon.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService atieclxx "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" "C:\Program Files\AVAST Software\Avast\afwServ.exe" C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "C:\Program Files\Bonjour\mDNSResponder.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe" "C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe" C:\Windows\system32\TODDSrv.exe "C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe" "C:\Program Files\TOSHIBA\TECO\TecoService.exe" C:\Windows\System32\svchost.exe -k secsvcs "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" WLIDSvcM.exe 2624 C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe" "C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe" "C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe" "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3 "C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe" -autorun "C:\Program Files\Synaptics\SynTP\SynTPHelper.exe" "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui C:\Windows\System32\svchost.exe -k LocalServicePeerNet taskeng.exe {954A151D-681D-4E60-B050-AA90EC770EF2} "C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe" "C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe" "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4204 CREDAT:267521 /prefetch:2 "C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE" C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe -Embedding "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4204 CREDAT:3020186 /prefetch:2 ctfmon.exe "C:\Users\Mike\Downloads\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\svchost.exe -k WerSvcGroup ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-06-27 245592] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-01-11 551400] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-01-11 209384] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}] Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2013-03-09 4171464] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-06-27 201784] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Microsoft-account - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2013-03-06 562904] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-04-22 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14}] TOSHIBA Media Controller Plug-in - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll [2010-03-19 529784] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-06-27 245592] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-06-27 201784] {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-03-10 2052392] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-10-17 13307496] "RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-10-14 2278504] "BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144] "fssui"=C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe [2013-02-05 892416] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2010-03-03 913720] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-03-24 2726728] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe [2009-03-09 52600] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [2010-03-04 423936] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [2010-03-02 140640] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-10-23 152392] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KeNotify] C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [2009-12-25 34160] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe [2013-04-23 1561968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2013-04-23 311152] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent] c:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe /WinStart [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartFaceVWatcher] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [2009-10-19 238080] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmoothView] C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2009-08-13 570680] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-15 98304] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [2010-02-22 352256] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe [2010-04-06 1489760] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [2010-04-19 136136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Toshiba TEMPRO] C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [2010-02-11 1050072] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [2011-02-11 1295736] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TosNC] C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [2010-03-19 595816] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TosReelTimeMonitor] C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [2010-03-03 35672] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2010-02-05 709976] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TosVolRegulator] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [2009-11-11 24376] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TosWaitSrv] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2010-02-23 705368] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2009-11-05 505696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TWebCamera] C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2010-02-24 2454840] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zune Launcher] C:\Program Files\ZuneLauncher.exe [2011-08-05 163552] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-06-27 4769352] "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] "20131121"=C:\Program Files\AVAST Software\Avast\setup\emupdate\c9cfc118-265f-4922-93f9-af4be017d40f.exe [2013-11-23 180184] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2013-03-09 4171464] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "LogonHoursAction"=2 "DontDisplayLogonHoursWarnings"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=l3codecp.acm "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "VIDC.FFDS"=ff_vfw.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 1 month====== 2013-11-29 16:04:33 ----D---- C:\rsit 2013-11-29 16:04:33 ----D---- C:\Program Files\trend micro 2013-11-28 19:54:19 ----D---- C:\Windows\nl 2013-11-28 19:52:38 ----A---- C:\Windows\system32\drivers\fssfltr.sys 2013-11-28 19:52:34 ----D---- C:\Program Files\Windows Live 2013-11-28 19:51:25 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll 2013-11-28 19:51:25 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll 2013-11-28 19:51:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll 2013-11-28 19:51:25 ----A---- C:\Windows\system32\XAudio2_7.dll 2013-11-28 19:51:25 ----A---- C:\Windows\system32\XAPOFX1_5.dll 2013-11-28 19:51:25 ----A---- C:\Windows\system32\D3DCompiler_43.dll 2013-11-28 19:51:24 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll 2013-11-28 19:51:24 ----A---- C:\Windows\system32\d3dx11_43.dll 2013-11-28 19:50:43 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll 2013-11-28 19:50:43 ----A---- C:\Windows\system32\d3dx10_42.dll 2013-11-19 23:16:03 ----A---- C:\Windows\system32\IEUDINIT.EXE 2013-11-19 23:12:35 ----A---- C:\Windows\SYSWOW64\elshyph.dll 2013-11-19 23:12:35 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\wextract.exe 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\webcheck.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\url.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\pngfilt.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\occache.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\msrating.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\msls31.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\mshtmler.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\mshta.exe 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\licmgr10.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\jsIntl.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\inseng.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\imgutil.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\iexpress.exe 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\iepeers.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\icardie.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2013-11-19 23:12:29 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\wininet.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\wextract.exe 2013-11-19 23:12:29 ----A---- C:\Windows\system32\webcheck.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\vbscript.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\urlmon.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\url.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\SetIEInstalledDate.exe 2013-11-19 23:12:29 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-19 23:12:29 ----A---- C:\Windows\system32\pngfilt.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\occache.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\msrating.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\msls31.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\mshtmlmedia.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\mshtmler.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\mshtmled.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\MshtmlDac.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\mshtml.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\mshta.exe 2013-11-19 23:12:29 ----A---- C:\Windows\system32\msfeedssync.exe 2013-11-19 23:12:29 ----A---- C:\Windows\system32\msfeedsbs.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\msfeeds.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\licmgr10.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\jsproxy.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\jsIntl.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\jscript9diag.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\jscript9.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\jscript.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\inseng.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\imgutil.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\iexpress.exe 2013-11-19 23:12:29 ----A---- C:\Windows\system32\ieUnatt.exe 2013-11-19 23:12:29 ----A---- C:\Windows\system32\ieui.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\iesysprep.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\iesetup.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\iertutil.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\iernonce.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\iepeers.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\ieframe.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\ieetwproxystub.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\ieetwcollector.exe 2013-11-19 23:12:29 ----A---- C:\Windows\system32\iedkcs32.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\ieapfltr.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\ieapfltr.dat 2013-11-19 23:12:29 ----A---- C:\Windows\system32\IEAdvpack.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\ie4uinit.exe 2013-11-19 23:12:29 ----A---- C:\Windows\system32\icardie.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\elshyph.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\dxtrans.dll 2013-11-19 23:12:29 ----A---- C:\Windows\system32\dxtmsft.dll 2013-11-13 13:54:57 ----A---- C:\Windows\system32\crypt32.dll 2013-11-13 13:54:56 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2013-11-13 13:54:47 ----A---- C:\Windows\system32\drivers\afd.sys 2013-11-13 13:54:45 ----A---- C:\Windows\SYSWOW64\authui.dll 2013-11-13 13:54:45 ----A---- C:\Windows\system32\authui.dll 2013-11-13 13:54:44 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll 2013-11-13 13:54:44 ----A---- C:\Windows\SYSWOW64\credui.dll 2013-11-13 13:54:44 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll 2013-11-13 13:54:44 ----A---- C:\Windows\system32\credui.dll 2013-11-13 13:54:38 ----A---- C:\Windows\SYSWOW64\schannel.dll 2013-11-13 13:54:38 ----A---- C:\Windows\system32\schannel.dll 2013-11-13 13:54:38 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2013-11-13 13:54:38 ----A---- C:\Windows\system32\drivers\cng.sys 2013-11-13 13:54:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2013-11-13 13:54:37 ----A---- C:\Windows\SYSWOW64\secur32.dll 2013-11-13 13:54:37 ----A---- C:\Windows\system32\sspicli.dll 2013-11-13 13:54:37 ----A---- C:\Windows\system32\lsasrv.dll 2013-11-13 13:54:37 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2013-11-13 13:54:36 ----A---- C:\Windows\SYSWOW64\ncrypt.dll 2013-11-13 13:54:36 ----A---- C:\Windows\system32\sspisrv.dll 2013-11-13 13:54:36 ----A---- C:\Windows\system32\secur32.dll 2013-11-13 13:54:36 ----A---- C:\Windows\system32\ncrypt.dll 2013-11-13 13:54:36 ----A---- C:\Windows\system32\lsass.exe 2013-11-13 13:54:34 ----A---- C:\Windows\SYSWOW64\gdi32.dll 2013-11-13 13:54:34 ----A---- C:\Windows\system32\gdi32.dll 2013-11-13 13:54:33 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL 2013-11-13 13:54:33 ----A---- C:\Windows\system32\nshwfp.dll 2013-11-13 13:54:33 ----A---- C:\Windows\system32\IKEEXT.DLL 2013-11-13 13:54:33 ----A---- C:\Windows\system32\FWPUCLNT.DLL 2013-11-13 13:54:32 ----A---- C:\Windows\SYSWOW64\nshwfp.dll ======List of files/folders modified in the last 1 month====== 2013-11-29 16:05:16 ----D---- C:\Windows\Prefetch 2013-11-29 16:04:33 ----RD---- C:\Program Files 2013-11-29 16:04:30 ----D---- C:\Windows\temp 2013-11-29 15:05:59 ----D---- C:\Windows\system32\config 2013-11-29 13:54:03 ----D---- C:\Windows\System32 2013-11-29 13:54:03 ----D---- C:\Windows\inf 2013-11-29 13:54:03 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-11-29 11:51:06 ----D---- C:\Windows\system32\wdi 2013-11-29 11:49:13 ----A---- C:\Windows\SYSWOW64\log.txt 2013-11-29 08:49:23 ----D---- C:\Windows 2013-11-28 23:43:00 ----D---- C:\Users\Mike\AppData\Roaming\Media Player Classic 2013-11-28 21:10:37 ----D---- C:\Windows\Logs 2013-11-28 20:04:07 ----D---- C:\Windows\Microsoft.NET 2013-11-28 20:03:11 ----RSD---- C:\Windows\assembly 2013-11-28 19:56:11 ----D---- C:\Config.Msi 2013-11-28 19:54:36 ----SHD---- C:\Windows\Installer 2013-11-28 19:54:35 ----RD---- C:\Program Files (x86) 2013-11-28 19:53:40 ----D---- C:\Program Files (x86)\Windows Live 2013-11-28 19:53:11 ----D---- C:\Windows\SysWOW64 2013-11-28 19:52:44 ----SD---- C:\ProgramData\Microsoft 2013-11-28 19:52:39 ----D---- C:\Windows\system32\drivers 2013-11-28 19:52:38 ----DC---- C:\Windows\system32\DRVSTORE 2013-11-28 19:52:27 ----SHD---- C:\System Volume Information 2013-11-28 19:52:06 ----D---- C:\Program Files\Common Files\Microsoft Shared 2013-11-28 19:50:35 ----D---- C:\Windows\system32\catroot2 2013-11-28 19:35:15 ----SHD---- C:\$RECYCLE.BIN 2013-11-28 19:35:11 ----RD---- C:\Users 2013-11-28 19:33:40 ----HD---- C:\Windows\system32\GroupPolicyUsers 2013-11-28 19:33:40 ----HD---- C:\Windows\system32\GroupPolicy 2013-11-26 09:13:26 ----D---- C:\Program Files (x86)\Toshiba TEMPRO 2013-11-22 12:08:29 ----D---- C:\Windows\Panther 2013-11-20 12:23:59 ----D---- C:\Windows\rescache 2013-11-20 11:29:54 ----D---- C:\Windows\winsxs 2013-11-20 11:25:49 ----D---- C:\Windows\SYSWOW64\nl-NL 2013-11-20 11:25:49 ----D---- C:\Windows\system32\nl-NL 2013-11-20 11:25:48 ----D---- C:\Program Files (x86)\Internet Explorer 2013-11-20 11:25:47 ----D---- C:\Program Files\Internet Explorer 2013-11-20 11:25:46 ----D---- C:\Windows\SYSWOW64\migration 2013-11-20 11:25:45 ----D---- C:\Windows\SYSWOW64\en-US 2013-11-20 11:25:43 ----D---- C:\Windows\PolicyDefinitions 2013-11-20 11:25:42 ----D---- C:\Windows\system32\migration 2013-11-20 11:25:42 ----D---- C:\Windows\system32\en-US 2013-11-19 23:15:49 ----D---- C:\Windows\system32\catroot 2013-11-15 21:28:32 ----D---- C:\Windows\debug 2013-11-13 19:56:31 ----D---- C:\ProgramData\Microsoft Help 2013-11-13 19:55:37 ----D---- C:\Windows\system32\MRT 2013-11-13 19:53:29 ----A---- C:\Windows\system32\MRT.exe 2013-11-11 20:50:56 ----D---- C:\Program Files (x86)\PokerStars.BE 2013-11-11 05:50:16 ----N---- C:\Windows\system32\MpSigStub.exe 2013-11-10 16:57:20 ----D---- C:\Program Files (x86)\SpeedFan 2013-11-05 23:35:15 ----A---- C:\Windows\win.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-06-27 22600] R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2012-07-13 12368] R0 aswNdis2;avast! Firewall Core Firewall Service; C:\Windows\system32\drivers\aswNdis2.sys [2013-06-27 263096] R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-06-27 65336] R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-05-20 557848] R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2011-03-18 29592] R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2009-07-14 26840] R1 aswFW;avast! TDI Firewall driver; C:\Windows\system32\drivers\aswFW.sys [2013-06-27 127648] R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-06-27 70992] R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-27 1025808] R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-27 377920] R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-06-27 68920] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-06-27 33400] R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-06-27 80816] R2 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2013-02-05 57840] R2 regi;regi; \??\C:\Windows\system32\drivers\regi.sys [2007-04-17 14112] R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\Windows\system32\DRIVERS\TVALZFL.sys [2009-06-19 14472] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-03-15 6403072] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-03-15 188928] R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2011-09-02 108544] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-27 158976] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-10-18 2957544] R3 PGEffect;Pangu effect driver; C:\Windows\system32\DRIVERS\pgeffect.sys [2009-06-22 35008] R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh64.sys [2011-09-08 508520] R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\Windows\system32\DRIVERS\rtl8192se.sys [2010-12-13 916072] R3 SynTP;Synaptics Pointing Device Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-03-10 316464] R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2009-07-30 27784] S3 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-27 189936] S3 athr;Stuurprogramma Atheros Extensible draadloze LAN-apparaat; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688] S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232] S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984] S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384] S3 catchme;catchme; \??\C:\ComboFix\catchme.sys [] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-04-03 103064] S3 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2009-07-30 44912] S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-01-07 232992] S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2009-12-02 213280] S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-01-12 325152] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-04-03 203672] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784] S3 WinUSB;WinUsb-stuurprogramma; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984] S3 WSDPrintDevice;WSD-ondersteuning voor afdrukken via UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys [2009-07-14 23040] S3 WSDScan;Ondersteuning voor WSD-scan via UMB; C:\Windows\system32\drivers\WSDScan.sys [2009-07-14 25088] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-03-15 202752] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-06-27 45248] R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2013-06-27 136912] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] R2 cfWiMAXService;ConfigFree WiMAX Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2010-01-28 249200] R2 ConfigFree Service;ConfigFree Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448] R2 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2013-02-05 1512448] R2 IviRegMgr;IviRegMgr; C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-04 112152] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2010-03-03 268824] R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-30 935208] R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632] R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632] R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2009-11-05 489312] R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\TECO\TecoService.exe [2010-04-06 258928] R2 UNS;Intel® Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-03-03 2320920] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480] R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-07-25 162672] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09 257416] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-19 111616] S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-10-23 641352] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-03-09 50921648] S3 npggsvc;nProtect GameGuard Service; C:\Windows\syswow64\GameMon.des [2012-12-16 4552296] S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440] S3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO); C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2010-02-11 124368] S3 TMachInfo;TMachInfo; C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2011-02-11 54136] S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-02-05 137560] S3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2010-02-23 835952] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-10 1255736] S3 WMZuneComm;Zune Windows Mobile Connectivity Service; C:\Program Files\WMZuneComm.exe [2011-08-05 306400] S3 ZuneNetworkSvc;Zune Network Sharing Service; C:\Program Files\ZuneNss.exe [2011-08-05 8277728] S3 ZuneWlanCfgSvc;Zune Wireless Configuration Service; C:\Program Files\ZuneWlanCfgSvc.exe [2011-08-05 467680] -----------------EOF-----------------
- 29 november 2013
- 32 antwoorden
Slakkengang bij opstarten laptop

geiteke reageerde op geiteke's topic in Archief Windows Algemeen

falstring alvast bedankt voor je reactie Ccleaner heeft zen werk al gedaan en ook avast heb ik in de lange versie zen werk laten doen voor ik men berichtje postte.
- 28 november 2013
- 32 antwoorden
Slakkengang bij opstarten laptop

geiteke plaatste een topic in Archief Windows Algemeen

Sinds geruime tijd lijkt mijn laptop Toshiba Satellite L670 - 4gb Ram - 64bit met Windows 7 op te starten met de snelheid van een slak. Het opstarten op zich lijkt normaal te gaan, maar vanaf het moment dat het startscherm verschijnt lijkt alles trager te gaan. Soms duurt het tot 2 minuten voor je iets kan doen. Is er iemand die deze pc-newbie op weg kan helpen om van deze slak terug een springend konijn te maken??
- 28 november 2013
- 32 antwoorden
delta-homes.com startpagina

geiteke reageerde op geiteke's topic in Archief Bestrijding malware & virussen

Thans gedaan wat er in bericht 12 stond Bedankt voor de moeite kape!!!!!!
- 28 augustus 2013
- 14 antwoorden
delta-homes.com startpagina

geiteke reageerde op geiteke's topic in Archief Bestrijding malware & virussen

Met enige vertraging... ComboFix 13-08-22.01 - Mike 24/08/2013 20:59:32.1.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.3955.2341 [GMT 2:00] Gestart vanuit: c:\users\Mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6HF3F77S\ComboFix.exe AV: avast! Internet Security *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47} SP: avast! Internet Security *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\prefs.js . . (((((((((((((((((((( Bestanden Gemaakt van 2013-07-24 to 2013-08-24 )))))))))))))))))))))))))))))) . . 2013-08-24 19:05 . 2013-08-24 19:05 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-08-23 19:07 . 2013-08-23 19:07 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{04C7EB9F-4A2A-4BC0-A631-3012BBAFE6D3}\offreg.dll 2013-08-23 18:37 . 2013-08-23 18:37 -------- d-----w- c:\program files (x86)\Microsoft Silverlight 2013-08-23 08:05 . 2013-08-23 20:35 -------- d-----w- C:\AdwCleaner 2013-08-23 07:50 . 2013-08-06 08:58 9515512 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{04C7EB9F-4A2A-4BC0-A631-3012BBAFE6D3}\mpengine.dll 2013-08-22 18:25 . 2013-08-22 18:25 388096 ----a-r- c:\users\Mike\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2013-08-22 18:25 . 2013-08-22 18:25 -------- d-----w- c:\program files (x86)\Trend Micro 2013-08-22 16:50 . 2013-08-22 16:50 -------- d-----w- C:\User Data 2013-08-22 16:50 . 2013-08-22 17:26 -------- d-----w- c:\program files (x86)\WinZipper 2013-08-22 16:50 . 2013-08-22 16:50 -------- d-----w- c:\users\Mike\AppData\Roaming\WinZipper 2013-08-14 21:13 . 2013-08-14 21:15 -------- d-----w- c:\windows\system32\MRT 2013-07-27 12:46 . 2013-07-27 12:46 88 ----a-w- c:\windows\DeleteOnReboot.bat 2013-07-27 10:48 . 2013-07-27 10:52 -------- d-----w- c:\program files (x86)\SpeedFan . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-08-22 16:50 . 2011-02-19 21:03 421032 ----a-w- c:\windows\SysWow64\msvcp100.dll 2013-08-22 16:50 . 2011-02-18 22:40 773800 ----a-w- c:\windows\SysWow64\msvcr100.dll 2013-08-14 21:13 . 2012-12-11 18:28 78161360 ----a-w- c:\windows\system32\MRT.exe 2013-07-21 10:46 . 2013-07-21 10:46 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-07-21 10:46 . 2013-07-21 10:46 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-07-09 04:45 . 2013-08-14 17:35 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2013-06-27 08:39 . 2013-07-09 11:11 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys 2013-06-27 08:39 . 2013-07-09 11:11 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys 2013-06-27 08:39 . 2013-01-06 13:59 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys 2013-06-27 08:39 . 2013-01-06 13:59 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2013-06-27 08:39 . 2013-01-06 13:59 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2013-06-27 08:39 . 2013-01-06 13:59 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys 2013-06-27 08:39 . 2013-01-06 13:59 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2013-06-27 08:39 . 2013-01-06 13:59 127648 ----a-w- c:\windows\system32\drivers\aswFW.sys 2013-06-27 08:39 . 2013-01-06 13:59 263096 ----a-w- c:\windows\system32\drivers\aswNdis2.sys 2013-06-27 08:39 . 2013-01-06 13:59 22600 ----a-w- c:\windows\system32\drivers\aswKbd.sys 2013-06-27 08:39 . 2013-01-06 13:59 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2013-06-27 08:37 . 2013-01-06 13:59 41664 ----a-w- c:\windows\avastSS.scr 2013-06-27 08:36 . 2012-12-10 11:09 287840 ----a-w- c:\windows\system32\aswBoot.exe 2013-06-05 03:34 . 2013-07-10 19:16 3153920 ----a-w- c:\windows\system32\win32k.sys 2013-06-04 06:00 . 2013-07-10 19:16 624128 ----a-w- c:\windows\system32\qedit.dll 2013-06-04 04:53 . 2013-07-10 19:16 509440 ----a-w- c:\windows\SysWow64\qedit.dll 2011-08-05 11:56 . 2011-08-05 11:56 645856 ----a-w- c:\program files\UIX.renderapi.dll 2011-08-05 11:56 . 2011-08-05 11:56 1530592 ----a-w- c:\program files\UIX.dll 2011-08-05 11:56 . 2011-08-05 11:56 1288928 ----a-w- c:\program files\UIXcontrols.dll 2011-08-05 11:56 . 2011-08-05 11:56 1272544 ----a-w- c:\program files\ZuneShell.dll 2011-08-05 11:56 . 2011-08-05 11:56 1175264 ----a-w- c:\program files\ZuneDBApi.dll 2011-08-05 11:53 . 2011-08-05 11:53 9440 ----a-w- c:\program files\ZuneWmduResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 863968 ----a-w- c:\program files\ZuneWmdu.dll 2011-08-05 11:53 . 2011-08-05 11:53 74464 ----a-w- c:\program files\ZuneShellExt.dll 2011-08-05 11:53 . 2011-08-05 11:53 507104 ----a-w- c:\program files\ZuneSP.dll 2011-08-05 11:53 . 2011-08-05 11:53 467680 ----a-w- c:\program files\ZuneWlanCfgSvc.exe 2011-08-05 11:53 . 2011-08-05 11:53 4020448 ----a-w- c:\program files\ZuneSetup.exe 2011-08-05 11:53 . 2011-08-05 11:53 366816 ----a-w- c:\program files\ZuneSrcWrp.dll 2011-08-05 11:53 . 2011-08-05 11:53 306400 ----a-w- c:\program files\WMZuneComm.exe 2011-08-05 11:53 . 2011-08-05 11:53 27872 ----a-w- c:\program files\WMZuneTCP2UDP.dll 2011-08-05 11:53 . 2011-08-05 11:53 21216 ----a-w- c:\program files\WMZuneDTPTDNS.dll 2011-08-05 11:53 . 2011-08-05 11:53 196832 ----a-w- c:\program files\ZuneZMDB.Mobile.dll 2011-08-05 11:53 . 2011-08-05 11:53 18656 ----a-w- c:\program files\WMZuneCommProxyStub.dll 2011-08-05 11:53 . 2011-08-05 11:53 17632 ----a-w- c:\program files\ZuneShare.exe 2011-08-05 11:53 . 2011-08-05 11:53 16921312 ----a-w- c:\program files\ZuneShellResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 157920 ----a-w- c:\program files\ZuneZMDB.Library.dll 2011-08-05 11:53 . 2011-08-05 11:53 157408 ----a-w- c:\program files\ZuneZMDB.ZuneHD.dll 2011-08-05 11:53 . 2011-08-05 11:53 152288 ----a-w- c:\program files\ZuneZMDB.Classic.dll 2011-08-05 11:53 . 2011-08-05 11:53 100064 ----a-w- c:\program files\ZuneTaskbar.dll 2011-08-05 11:53 . 2011-08-05 11:53 916704 ----a-w- c:\program files\ZuneQP.dll 2011-08-05 11:53 . 2011-08-05 11:53 683744 ----a-w- c:\program files\ZuneSH.dll 2011-08-05 11:53 . 2011-08-05 11:53 514272 ----a-w- c:\program files\ZuneSE.dll 2011-08-05 11:53 . 2011-08-05 11:53 3889376 ----a-w- c:\program files\ZuneResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 155872 ----a-w- c:\program files\ZuneSA.dll 2011-08-05 11:53 . 2011-08-05 11:53 1257184 ----a-w- c:\program files\ZuneService.dll 2011-08-05 11:53 . 2011-08-05 11:53 879328 ----a-w- c:\program files\ZuneMBR.dll 2011-08-05 11:53 . 2011-08-05 11:53 8277728 ----a-w- c:\program files\ZuneNss.exe 2011-08-05 11:53 . 2011-08-05 11:53 72928 ----a-w- c:\program files\ZuneDXVA2.dll 2011-08-05 11:53 . 2011-08-05 11:53 707808 ----a-w- c:\program files\ZUNEMP4SDECD.dll 2011-08-05 11:53 . 2011-08-05 11:53 61664 ----a-w- c:\program files\ZuneCfg.dll 2011-08-05 11:53 . 2011-08-05 11:53 56544 ----a-w- c:\program files\ZuneConfig.exe 2011-08-05 11:53 . 2011-08-05 11:53 38624 ----a-w- c:\program files\ZuneEnc.exe 2011-08-05 11:53 . 2011-08-05 11:53 376544 ----a-w- c:\program files\ZuneEvr.dll 2011-08-05 11:53 . 2011-08-05 11:53 35552 ----a-w- c:\program files\UIXsup.dll 2011-08-05 11:53 . 2011-08-05 11:53 347872 ----a-w- c:\program files\ZuneNssci.dll 2011-08-05 11:53 . 2011-08-05 11:53 223968 ----a-w- c:\program files\Zune.exe 2011-08-05 11:53 . 2011-08-05 11:53 218848 ----a-w- c:\program files\ZuneHost.exe 2011-08-05 11:53 . 2011-08-05 11:53 212192 ----a-w- c:\program files\ZuneDB.dll 2011-08-05 11:53 . 2011-08-05 11:53 2110176 ----a-w- c:\program files\ZuneEncEng.dll 2011-08-05 11:53 . 2011-08-05 11:53 20704 ----a-w- c:\program files\ZunePS.dll 2011-08-05 11:53 . 2011-08-05 11:53 1752288 ----a-w- c:\program files\UIXrender.dll 2011-08-05 11:53 . 2011-08-05 11:53 163552 ----a-w- c:\program files\ZuneLauncher.exe 2011-08-05 11:53 . 2011-08-05 11:53 1481440 ----a-w- c:\program files\ZuneCore.dll 2011-08-05 11:53 . 2011-08-05 11:53 131296 ----a-w- c:\program files\ZunePresenter.dll 2011-08-05 11:53 . 2011-08-05 11:53 129248 ----a-w- c:\program files\ZuneEffects.dll 2011-08-05 11:53 . 2011-08-05 11:53 121056 ----a-w- c:\program files\ZuneAACDec.dll 2011-08-05 11:53 . 2011-08-05 11:53 1184480 ----a-w- c:\program files\ZuneH264Dec.dll 2011-08-05 11:53 . 2011-08-05 11:53 1161440 ----a-w- c:\program files\ZuneMde.dll 2011-08-05 11:53 . 2011-08-05 11:53 1096928 ----a-w- c:\program files\ZuneMarketplaceResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 10061536 ----a-w- c:\program files\ZuneNativeLib.dll 2011-08-05 11:31 . 2011-08-05 11:31 182784 ----a-w- c:\program files\l3codecp.acm 2011-06-06 12:48 . 2011-06-06 12:48 856576 ----a-w- c:\program files\msvcp90.dll 2011-06-06 12:48 . 2011-06-06 12:48 626688 ----a-w- c:\program files\msvcr90.dll 2011-06-06 12:48 . 2011-06-06 12:48 245760 ----a-w- c:\program files\msvcm90.dll 2007-10-02 13:12 . 2007-10-02 13:12 1642568 ----a-w- c:\program files\msidcrl40.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2013-04-23 1561968] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-15 98304] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-06-27 4769352] "CanonSolutionMenuEx"="c:\program files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" [2010-04-02 1185112] "IJNetworkScanUtility"="c:\program files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2010-03-02 140640] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280] "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-12-12 152544] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] "KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2013-04-23 311152] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "TOSHIBA Online Product Information"="c:\program files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe" [2010-03-03 4581280] . c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ TRDCReminder.lnk - c:\program files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-9-1 481184] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R3 aswVmm;aswVmm; [x] R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x] R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x] R3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe;c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [x] R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x] R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [x] R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] R3 WSDScan;Ondersteuning voor WSD-scan via UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x] S0 aswKbd;aswKbd; [x] S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdis.sys [x] S0 aswNdis2;avast! Firewall Core Firewall Service; [x] S0 aswRvrt;aswRvrt; [x] S1 aswFW;avast! TDI Firewall driver; [x] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x] S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x] S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [x] S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [x] S2 regi;regi;c:\windows\system32\drivers\regi.sys;c:\windows\SYSNATIVE\drivers\regi.sys [x] S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe;c:\program files\TOSHIBA\TECO\TecoService.exe [x] S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x] S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x] S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x] S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x] S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x] S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x] S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys;c:\windows\SYSNATIVE\DRIVERS\rtl8192se.sys [x] . . Inhoud van de 'Gedeelde Taken' map . 2013-08-24 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-21 10:46] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2013-06-27 08:36 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-10-17 13307496] "RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-10-14 2278504] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512] "CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-24 2726728] . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.be/ mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local uSearchAssistant = hxxp://www.google.com TCP: DhcpNameServer = 195.130.131.132 195.130.130.4 DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) Wow6432Node-HKCU-Run-KiesAirMessage - c:\program files (x86)\Samsung\Kies\KiesAirMessage.exe HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start Toolbar-Locked - (no file) HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe AddRemove-Adobe Flash Player ActiveX - c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_94_ActiveX.exe AddRemove-{53820F89-063F-10D7-7457-06C201F4CBF0} - c:\programdata\Zoomex\uninstall.exe . . . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc] "ImagePath"="c:\windows\system32\GameMon.des -service" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee] "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2013-08-24 21:07:47 ComboFix-quarantined-files.txt 2013-08-24 19:07 . Pre-Run: 162.610.540.544 bytes beschikbaar Post-Run: 162.466.746.368 bytes beschikbaar . - - End Of File - - 1D849C245949685088A9866B06A5BD9C Bedankt kape om zo veel tijd te steken in dit probleem ( en bijkomende probleempjes )
- 27 augustus 2013
- 14 antwoorden
delta-homes.com startpagina

geiteke reageerde op geiteke's topic in Archief Bestrijding malware & virussen

Dit lijkt me een serieuze hap... ComboFix 13-08-22.01 - Mike 24/08/2013 20:59:32.1.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.3955.2341 [GMT 2:00] Gestart vanuit: c:\users\Mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6HF3F77S\ComboFix.exe AV: avast! Internet Security *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47} SP: avast! Internet Security *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\prefs.js . . (((((((((((((((((((( Bestanden Gemaakt van 2013-07-24 to 2013-08-24 )))))))))))))))))))))))))))))) . . 2013-08-24 19:05 . 2013-08-24 19:05 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-08-23 19:07 . 2013-08-23 19:07 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{04C7EB9F-4A2A-4BC0-A631-3012BBAFE6D3}\offreg.dll 2013-08-23 18:37 . 2013-08-23 18:37 -------- d-----w- c:\program files (x86)\Microsoft Silverlight 2013-08-23 08:05 . 2013-08-23 20:35 -------- d-----w- C:\AdwCleaner 2013-08-23 07:50 . 2013-08-06 08:58 9515512 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{04C7EB9F-4A2A-4BC0-A631-3012BBAFE6D3}\mpengine.dll 2013-08-22 18:25 . 2013-08-22 18:25 388096 ----a-r- c:\users\Mike\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2013-08-22 18:25 . 2013-08-22 18:25 -------- d-----w- c:\program files (x86)\Trend Micro 2013-08-22 16:50 . 2013-08-22 16:50 -------- d-----w- C:\User Data 2013-08-22 16:50 . 2013-08-22 17:26 -------- d-----w- c:\program files (x86)\WinZipper 2013-08-22 16:50 . 2013-08-22 16:50 -------- d-----w- c:\users\Mike\AppData\Roaming\WinZipper 2013-08-14 21:13 . 2013-08-14 21:15 -------- d-----w- c:\windows\system32\MRT 2013-07-27 12:46 . 2013-07-27 12:46 88 ----a-w- c:\windows\DeleteOnReboot.bat 2013-07-27 10:48 . 2013-07-27 10:52 -------- d-----w- c:\program files (x86)\SpeedFan . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-08-22 16:50 . 2011-02-19 21:03 421032 ----a-w- c:\windows\SysWow64\msvcp100.dll 2013-08-22 16:50 . 2011-02-18 22:40 773800 ----a-w- c:\windows\SysWow64\msvcr100.dll 2013-08-14 21:13 . 2012-12-11 18:28 78161360 ----a-w- c:\windows\system32\MRT.exe 2013-07-21 10:46 . 2013-07-21 10:46 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-07-21 10:46 . 2013-07-21 10:46 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-07-09 04:45 . 2013-08-14 17:35 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2013-06-27 08:39 . 2013-07-09 11:11 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys 2013-06-27 08:39 . 2013-07-09 11:11 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys 2013-06-27 08:39 . 2013-01-06 13:59 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys 2013-06-27 08:39 . 2013-01-06 13:59 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2013-06-27 08:39 . 2013-01-06 13:59 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2013-06-27 08:39 . 2013-01-06 13:59 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys 2013-06-27 08:39 . 2013-01-06 13:59 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2013-06-27 08:39 . 2013-01-06 13:59 127648 ----a-w- c:\windows\system32\drivers\aswFW.sys 2013-06-27 08:39 . 2013-01-06 13:59 263096 ----a-w- c:\windows\system32\drivers\aswNdis2.sys 2013-06-27 08:39 . 2013-01-06 13:59 22600 ----a-w- c:\windows\system32\drivers\aswKbd.sys 2013-06-27 08:39 . 2013-01-06 13:59 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2013-06-27 08:37 . 2013-01-06 13:59 41664 ----a-w- c:\windows\avastSS.scr 2013-06-27 08:36 . 2012-12-10 11:09 287840 ----a-w- c:\windows\system32\aswBoot.exe 2013-06-05 03:34 . 2013-07-10 19:16 3153920 ----a-w- c:\windows\system32\win32k.sys 2013-06-04 06:00 . 2013-07-10 19:16 624128 ----a-w- c:\windows\system32\qedit.dll 2013-06-04 04:53 . 2013-07-10 19:16 509440 ----a-w- c:\windows\SysWow64\qedit.dll 2011-08-05 11:56 . 2011-08-05 11:56 645856 ----a-w- c:\program files\UIX.renderapi.dll 2011-08-05 11:56 . 2011-08-05 11:56 1530592 ----a-w- c:\program files\UIX.dll 2011-08-05 11:56 . 2011-08-05 11:56 1288928 ----a-w- c:\program files\UIXcontrols.dll 2011-08-05 11:56 . 2011-08-05 11:56 1272544 ----a-w- c:\program files\ZuneShell.dll 2011-08-05 11:56 . 2011-08-05 11:56 1175264 ----a-w- c:\program files\ZuneDBApi.dll 2011-08-05 11:53 . 2011-08-05 11:53 9440 ----a-w- c:\program files\ZuneWmduResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 863968 ----a-w- c:\program files\ZuneWmdu.dll 2011-08-05 11:53 . 2011-08-05 11:53 74464 ----a-w- c:\program files\ZuneShellExt.dll 2011-08-05 11:53 . 2011-08-05 11:53 507104 ----a-w- c:\program files\ZuneSP.dll 2011-08-05 11:53 . 2011-08-05 11:53 467680 ----a-w- c:\program files\ZuneWlanCfgSvc.exe 2011-08-05 11:53 . 2011-08-05 11:53 4020448 ----a-w- c:\program files\ZuneSetup.exe 2011-08-05 11:53 . 2011-08-05 11:53 366816 ----a-w- c:\program files\ZuneSrcWrp.dll 2011-08-05 11:53 . 2011-08-05 11:53 306400 ----a-w- c:\program files\WMZuneComm.exe 2011-08-05 11:53 . 2011-08-05 11:53 27872 ----a-w- c:\program files\WMZuneTCP2UDP.dll 2011-08-05 11:53 . 2011-08-05 11:53 21216 ----a-w- c:\program files\WMZuneDTPTDNS.dll 2011-08-05 11:53 . 2011-08-05 11:53 196832 ----a-w- c:\program files\ZuneZMDB.Mobile.dll 2011-08-05 11:53 . 2011-08-05 11:53 18656 ----a-w- c:\program files\WMZuneCommProxyStub.dll 2011-08-05 11:53 . 2011-08-05 11:53 17632 ----a-w- c:\program files\ZuneShare.exe 2011-08-05 11:53 . 2011-08-05 11:53 16921312 ----a-w- c:\program files\ZuneShellResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 157920 ----a-w- c:\program files\ZuneZMDB.Library.dll 2011-08-05 11:53 . 2011-08-05 11:53 157408 ----a-w- c:\program files\ZuneZMDB.ZuneHD.dll 2011-08-05 11:53 . 2011-08-05 11:53 152288 ----a-w- c:\program files\ZuneZMDB.Classic.dll 2011-08-05 11:53 . 2011-08-05 11:53 100064 ----a-w- c:\program files\ZuneTaskbar.dll 2011-08-05 11:53 . 2011-08-05 11:53 916704 ----a-w- c:\program files\ZuneQP.dll 2011-08-05 11:53 . 2011-08-05 11:53 683744 ----a-w- c:\program files\ZuneSH.dll 2011-08-05 11:53 . 2011-08-05 11:53 514272 ----a-w- c:\program files\ZuneSE.dll 2011-08-05 11:53 . 2011-08-05 11:53 3889376 ----a-w- c:\program files\ZuneResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 155872 ----a-w- c:\program files\ZuneSA.dll 2011-08-05 11:53 . 2011-08-05 11:53 1257184 ----a-w- c:\program files\ZuneService.dll 2011-08-05 11:53 . 2011-08-05 11:53 879328 ----a-w- c:\program files\ZuneMBR.dll 2011-08-05 11:53 . 2011-08-05 11:53 8277728 ----a-w- c:\program files\ZuneNss.exe 2011-08-05 11:53 . 2011-08-05 11:53 72928 ----a-w- c:\program files\ZuneDXVA2.dll 2011-08-05 11:53 . 2011-08-05 11:53 707808 ----a-w- c:\program files\ZUNEMP4SDECD.dll 2011-08-05 11:53 . 2011-08-05 11:53 61664 ----a-w- c:\program files\ZuneCfg.dll 2011-08-05 11:53 . 2011-08-05 11:53 56544 ----a-w- c:\program files\ZuneConfig.exe 2011-08-05 11:53 . 2011-08-05 11:53 38624 ----a-w- c:\program files\ZuneEnc.exe 2011-08-05 11:53 . 2011-08-05 11:53 376544 ----a-w- c:\program files\ZuneEvr.dll 2011-08-05 11:53 . 2011-08-05 11:53 35552 ----a-w- c:\program files\UIXsup.dll 2011-08-05 11:53 . 2011-08-05 11:53 347872 ----a-w- c:\program files\ZuneNssci.dll 2011-08-05 11:53 . 2011-08-05 11:53 223968 ----a-w- c:\program files\Zune.exe 2011-08-05 11:53 . 2011-08-05 11:53 218848 ----a-w- c:\program files\ZuneHost.exe 2011-08-05 11:53 . 2011-08-05 11:53 212192 ----a-w- c:\program files\ZuneDB.dll 2011-08-05 11:53 . 2011-08-05 11:53 2110176 ----a-w- c:\program files\ZuneEncEng.dll 2011-08-05 11:53 . 2011-08-05 11:53 20704 ----a-w- c:\program files\ZunePS.dll 2011-08-05 11:53 . 2011-08-05 11:53 1752288 ----a-w- c:\program files\UIXrender.dll 2011-08-05 11:53 . 2011-08-05 11:53 163552 ----a-w- c:\program files\ZuneLauncher.exe 2011-08-05 11:53 . 2011-08-05 11:53 1481440 ----a-w- c:\program files\ZuneCore.dll 2011-08-05 11:53 . 2011-08-05 11:53 131296 ----a-w- c:\program files\ZunePresenter.dll 2011-08-05 11:53 . 2011-08-05 11:53 129248 ----a-w- c:\program files\ZuneEffects.dll 2011-08-05 11:53 . 2011-08-05 11:53 121056 ----a-w- c:\program files\ZuneAACDec.dll 2011-08-05 11:53 . 2011-08-05 11:53 1184480 ----a-w- c:\program files\ZuneH264Dec.dll 2011-08-05 11:53 . 2011-08-05 11:53 1161440 ----a-w- c:\program files\ZuneMde.dll 2011-08-05 11:53 . 2011-08-05 11:53 1096928 ----a-w- c:\program files\ZuneMarketplaceResources.dll 2011-08-05 11:53 . 2011-08-05 11:53 10061536 ----a-w- c:\program files\ZuneNativeLib.dll 2011-08-05 11:31 . 2011-08-05 11:31 182784 ----a-w- c:\program files\l3codecp.acm 2011-06-06 12:48 . 2011-06-06 12:48 856576 ----a-w- c:\program files\msvcp90.dll 2011-06-06 12:48 . 2011-06-06 12:48 626688 ----a-w- c:\program files\msvcr90.dll 2011-06-06 12:48 . 2011-06-06 12:48 245760 ----a-w- c:\program files\msvcm90.dll 2007-10-02 13:12 . 2007-10-02 13:12 1642568 ----a-w- c:\program files\msidcrl40.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2013-04-23 1561968] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-15 98304] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-06-27 4769352] "CanonSolutionMenuEx"="c:\program files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" [2010-04-02 1185112] "IJNetworkScanUtility"="c:\program files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2010-03-02 140640] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280] "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-12-12 152544] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] "KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2013-04-23 311152] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "TOSHIBA Online Product Information"="c:\program files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe" [2010-03-03 4581280] . c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ TRDCReminder.lnk - c:\program files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-9-1 481184] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R3 aswVmm;aswVmm; [x] R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x] R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x] R3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe;c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [x] R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x] R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [x] R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] R3 WSDScan;Ondersteuning voor WSD-scan via UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x] S0 aswKbd;aswKbd; [x] S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdis.sys [x] S0 aswNdis2;avast! Firewall Core Firewall Service; [x] S0 aswRvrt;aswRvrt; [x] S1 aswFW;avast! TDI Firewall driver; [x] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x] S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x] S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [x] S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [x] S2 regi;regi;c:\windows\system32\drivers\regi.sys;c:\windows\SYSNATIVE\drivers\regi.sys [x] S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe;c:\program files\TOSHIBA\TECO\TecoService.exe [x] S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x] S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x] S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x] S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x] S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x] S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x] S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys;c:\windows\SYSNATIVE\DRIVERS\rtl8192se.sys [x] . . Inhoud van de 'Gedeelde Taken' map . 2013-08-24 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-21 10:46] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2013-06-27 08:36 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-10-17 13307496] "RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-10-14 2278504] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512] "CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-24 2726728] . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.be/ mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local uSearchAssistant = hxxp://www.google.com TCP: DhcpNameServer = 195.130.131.132 195.130.130.4 DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) Wow6432Node-HKCU-Run-KiesAirMessage - c:\program files (x86)\Samsung\Kies\KiesAirMessage.exe HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start Toolbar-Locked - (no file) HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe AddRemove-Adobe Flash Player ActiveX - c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_94_ActiveX.exe AddRemove-{53820F89-063F-10D7-7457-06C201F4CBF0} - c:\programdata\Zoomex\uninstall.exe . . . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc] "ImagePath"="c:\windows\system32\GameMon.des -service" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee] "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2013-08-24 21:07:47 ComboFix-quarantined-files.txt 2013-08-24 19:07 . Pre-Run: 162.610.540.544 bytes beschikbaar Post-Run: 162.466.746.368 bytes beschikbaar . - - End Of File - - 1D849C245949685088A9866B06A5BD9C
- 24 augustus 2013
- 14 antwoorden
delta-homes.com startpagina

geiteke reageerde op geiteke's topic in Archief Bestrijding malware & virussen

Buiten dat laptop traag opstart blijkt alles te werken zoals we gewoon zijn ;-) Bedankt voor je hulp kape :-)
- 24 augustus 2013
- 14 antwoorden
delta-homes.com startpagina

geiteke reageerde op geiteke's topic in Archief Bestrijding malware & virussen

de propere versie? # AdwCleaner v3.000 - Report created 23/08/2013 at 22:35:14 # Updated 20/08/2013 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : Mike - MIKE-TOSH # Running from : C:\Users\Mike\Downloads\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16660 ************************* AdwCleaner[R0].txt - [3128 octets] - [23/08/2013 10:06:16] AdwCleaner[R1].txt - [757 octets] - [23/08/2013 22:34:40] AdwCleaner[s0].txt - [2316 octets] - [23/08/2013 10:06:46] AdwCleaner[s1].txt - [679 octets] - [23/08/2013 22:35:14] ########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [738 octets] ##########
- 23 augustus 2013
- 14 antwoorden
delta-homes.com startpagina

geiteke reageerde op geiteke's topic in Archief Bestrijding malware & virussen

Hier komtdie.... # AdwCleaner v2.306 - Verslag gemaakt op 27/07/2013 om 14:46:19 # Geactualiseerd op 19/07/2013 door Xplode # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits) # Gebruiker : Mike - MIKE-TOSH # Opstarten Modus : Normale modus # Gelanceerd vanaf : C:\Users\Mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6HF3F77S\adwcleaner.exe # Optie [Zoeken] ***** [Diensten] ***** ***** [Files / Mappen] ***** File Infected : C:\Users\Mike\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067) File Infected : C:\Users\Mike\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067) File Infected : C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067) File Infected : C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067) File Infected : C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067) File Infected : C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067) Map Aanwezig : C:\Program Files (x86)\Zoomex Map Aanwezig : C:\ProgramData\eSafe Map Aanwezig : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoomex Map Aanwezig : C:\ProgramData\Premium Map Aanwezig : C:\ProgramData\Tarma Installer Map Aanwezig : C:\ProgramData\Zoomex Map Aanwezig : C:\Users\Mike\AppData\Roaming\eIntaller Map Aanwezig : C:\Users\Mike\AppData\Roaming\OpenCandy ***** [Register] ***** Data Aanwezig : HKLM\...\StartMenuInternet\IEXPLORE.EXE [(Default)] = C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067 Sleutel Aanwezig : HKCU\Software\AppDataLow\SProtector Sleutel Aanwezig : HKCU\Software\InstallCore Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113} Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA} Sleutel Aanwezig : HKCU\Software\PrivitizeVPNInstallDates Sleutel Aanwezig : HKCU\Software\Softonic Sleutel Aanwezig : HKCU\Software\StartSearch Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{7169BBB3-3289-4696-B35D-4A88BCF6FB12} Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\secman.DLL Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\WebCakeIEClient.DLL Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994} Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{EFDF368C-8DD9-4E05-87CD-16AA5CB03CB8} Sleutel Aanwezig : HKLM\SOFTWARE\Classes\WebCakeIEClient.Api Sleutel Aanwezig : HKLM\SOFTWARE\Classes\WebCakeIEClient.Api.1 Sleutel Aanwezig : HKLM\SOFTWARE\Classes\WebCakeIEClient.Layers Sleutel Aanwezig : HKLM\SOFTWARE\Classes\WebCakeIEClient.Layers.1 Sleutel Aanwezig : HKLM\Software\eSafeSecControl Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32 Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AF6B0594-6008-4327-93E5-608AD710A6FA} Sleutel Aanwezig : HKLM\Software\qvo6Software Sleutel Aanwezig : HKLM\Software\SP Global Sleutel Aanwezig : HKLM\Software\SProtector Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AF6B0594-6008-4327-93E5-608AD710A6FA} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF84E609-C3A4-49CB-A160-61767DAF8899} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899} Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38} Sleutel Aanwezig : HKLM\SOFTWARE\Software Sleutel Aanwezig : HKLM\SOFTWARE\Tarma Installer Sleutel Aanwezig : HKU\S-1-5-21-2350513517-3510856325-3015485931-1001\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Sleutel Aanwezig : HKU\S-1-5-21-2350513517-3510856325-3015485931-1001\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Waarde Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [WebCake Desktop] Waarde Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}] Waarde Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}] ***** [browsers] ***** -\\ Internet Explorer v10.0.9200.16635 [HKCU\Software\Microsoft\Internet Explorer\Main - Search Page] = hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=BE&userid=bccd3380-2ec4-4444-85ab-5de3c033aa45&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms} [HKCU\Software\Microsoft\Internet Explorer\Main - Default_Page_URL] = hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067 [HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=BE&userid=bccd3380-2ec4-4444-85ab-5de3c033aa45&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms} [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=BE&userid=bccd3380-2ec4-4444-85ab-5de3c033aa45&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms} [HKCU\Software\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=BE&userid=bccd3380-2ec4-4444-85ab-5de3c033aa45&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms} [HKCU\Software\Microsoft\Internet Explorer\SearchUrl - Default] = hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=BE&userid=bccd3380-2ec4-4444-85ab-5de3c033aa45&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms} [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl - Default] = hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=BE&userid=bccd3380-2ec4-4444-85ab-5de3c033aa45&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms} [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Default_Page_URL] = hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067 [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067 [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Default_Page_URL] = hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067 [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.qvo6.com/?utm_source=b&utm_medium=cor&from=cor&uid=TOSHIBAXMK6465GSX_60C1S2ERSXX60C1S2ERS&ts=1374922067 -\\ Opera v [Onmogelijk de versie te verkrijgen] File : C:\Users\Mike\AppData\Roaming\Opera\Opera\operaprefs.ini [OK] De file bevat geen enkele ongeoorloofde invoer. ************************* AdwCleaner[R1].txt - [9975 octets] - [27/07/2013 14:46:19] ########## EOF - C:\AdwCleaner[R1].txt - [10035 octets] ##########
- 23 augustus 2013
- 14 antwoorden
delta-homes.com startpagina

geiteke reageerde op geiteke's topic in Archief Bestrijding malware & virussen

Bij opstarten geen delta-home startpagina meer Het adw logje ben ik kwijtgeraakt, kan ik dat nog ergens terugvinden? Hijackthislogje: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:13:32, on 23/08/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16660) Boot mode: Normal Running processes: C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe C:\Program Files (x86)\Samsung\Kies\Kies.exe C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon O4 - HKLM\..\Run: [iJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'Default user') O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user') O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: c:\progra~2\zoomex\sprote~1.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing) O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 12085 bytes Bedankt voor de moeite kape.
- 23 augustus 2013
- 14 antwoorden
delta-homes.com startpagina

geiteke plaatste een topic in Archief Bestrijding malware & virussen

Zit met de delta-homes.com startpagina die zichzelf steeds weer installeert... hieronder hijackthis logje: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:28:10, on 22/08/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16660) Boot mode: Normal Running processes: C:\Program Files (x86)\Samsung\Kies\Kies.exe C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Delta Homes R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Delta Homes R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon O4 - HKLM\..\Run: [iJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'Default user') O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user') O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: c:\progra~2\zoomex\sprote~1.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing) O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Wsys Service (WsysSvc) - Wsys Co., Ltd. - C:\ProgramData\eSafe\eGdpSvc.exe -- End of file - 12757 bytes Alvast bedankt voor jullie hulp.
- 22 augustus 2013
- 14 antwoorden

Inloggen

geiteke

Items

Registratiedatum

Laatst bezocht

Inhoudstype

Profielen

Forums

Store

Alles dat geplaatst werd door geiteke

Slakkengang bij opstarten laptop

Slakkengang bij opstarten laptop

Slakkengang bij opstarten laptop

Slakkengang bij opstarten laptop

Slakkengang bij opstarten laptop

Slakkengang bij opstarten laptop

Slakkengang bij opstarten laptop

Slakkengang bij opstarten laptop

Slakkengang bij opstarten laptop

delta-homes.com startpagina

delta-homes.com startpagina

delta-homes.com startpagina

delta-homes.com startpagina

delta-homes.com startpagina

delta-homes.com startpagina

delta-homes.com startpagina

delta-homes.com startpagina

OVER ONS

SITEMAP

Home

Info

Handleidingen & Tips

Activiteit

Belangrijke informatie