Ga naar inhoud

Tim123

Lid
  • Items

    7
  • Registratiedatum

  • Laatst bezocht

Berichten die geplaatst zijn door Tim123

  1. Results of screen317's Security Check version 0.99.79

    Windows 7 Service Pack 1 x64 (UAC is enabled)

    Internet Explorer 11

    ``````````````Antivirus/Firewall Check:``````````````

    Windows Firewall Enabled!

    Avira Desktop

    Antivirus up to date! (On Access scanning disabled!)

    `````````Anti-malware/Other Utilities Check:`````````

    McAfee SiteAdvisor

    TuneUp Utilities 2014

    TuneUp Utilities 2014 (en-US)

    TuneUp Utilities 2014

    Java 7 Update 45

    Java version out of Date!

    Adobe Flash Player 12.0.0.43 Flash Player out of Date!

    Google Chrome 32.0.1700.102

    Google Chrome 32.0.1700.107

    ````````Process Check: objlist.exe by Laurent````````

    Avira Antivir avgnt.exe

    Avira Antivir avguard.exe

    `````````````````System Health check`````````````````

    Total Fragmentation on Drive C: 2%

    ````````````````````End of Log``````````````````````

  2. Zoek.exe v5.0.0.0 Updated 31-January-2014

    Tool run by Tim on do 06-02-2014 at 0:36:43,57.

    Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

    Running in: Normal Mode Internet Access Detected

    Launched: C:\Users\Tim\Downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used]

    ==== Older Logs ======================

    C:\zoek-results2014-02-03-182659.log 35124 bytes

    ==== Deleting CLSID Registry Keys ======================

    ==== Deleting CLSID Registry Values ======================

    ==== Deleting Services ======================

    ==== Registry Fix Code x64 ======================

    Windows Registry Editor Version 5.00

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

    "NextLive"=-

    [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

    "mobilegeni daemon"=-

    ==== Deleting Files \ Folders ======================

    C:\Program Files (x86)\Mobogenie not found

    C:\Users\Tim\AppData\Roaming\newnext.me not found

    ==== Files Recently Created / Modified ======================

    ====== C:\Windows ====

    ====== C:\Users\Tim\AppData\Local\Temp ====

    ====== Java Cache =====

    ====== C:\Windows\SysWOW64 =====

    ====== C:\Windows\SysWOW64\drivers =====

    ====== C:\Windows\Sysnative =====

    ====== C:\Windows\Sysnative\drivers =====

    2014-01-15 15:30:40 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys

    2014-01-15 15:30:40 DD253AFC3BC6CBA412342DE60C3647F3 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys

    2014-01-15 15:30:40 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys

    2014-01-15 15:30:40 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys

    2014-01-15 15:30:40 765A92D428A8DB88B960DA5A8D6089DC 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys

    2014-01-15 15:30:40 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys

    2014-01-15 15:30:40 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys

    2014-01-15 15:30:34 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\Sysnative\drivers\netio.sys

    ====== C:\Windows\Tasks ======

    2014-01-21 14:50:24 D64548B1D2BE2FD37DD18EFDDD5DFC87 830 ----a-w- C:\Windows\Tasks\Adobe Flash Player Updater.job

    2014-01-21 14:50:24 98B27109538D00FA516C24085695935F 3768 ----a-w- C:\Windows\Sysnative\Tasks\Adobe Flash Player Updater

    ====== C:\Windows\Temp ======

    ======= C:\Program Files =====

    2014-02-04 16:32:08 -------- d-----w- C:\Program Files\trend micro

    ======= C:\PROGRA~2 =====

    ======= C: =====

    ====== C:\Users\Tim\AppData\Roaming ======

    2014-02-03 18:15:29 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp

    2014-02-03 18:15:29 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp

    2014-02-03 18:15:29 -------- d-----w- C:\Users\Tim\AppData\Local\Temp

    2014-02-03 18:15:29 -------- d-----w- C:\Users\Default\AppData\Local\Temp

    2014-02-03 18:15:29 -------- d-----w- C:\Users\Default User\AppData\Local\Temp

    ====== C:\Users\Tim ======

    2014-02-04 16:30:07 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Tim\Desktop\RSITx64.exe

    2014-02-03 17:56:41 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\Users\Tim\Downloads\adwcleaner.exe

    2014-01-29 15:50:06 075B0DA82E23780FA2DD7F2EA0464FD4 258 --sha-r- C:\ProgramData\ntuser.pol

    ====== C: exe-files ==

    2014-02-04 17:09:46 BA7524A2D91F895CE7502C78B6A4CBAF 732888 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\32.0.1700.107\32.0.1700.107_32.0.1700.102_chrome_updater.exe

    2014-02-04 16:32:10 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Tim.exe

    2014-02-04 16:30:07 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Tim\Desktop\RSITx64.exe

    2014-02-03 17:56:41 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\Users\Tim\Downloads\adwcleaner.exe

    === C: other files ==

    ==== Startup Registry Enabled ======================

    [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

    "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

    [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

    "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

    "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 /build:7601"

    [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

    "mctadmin"="C:\Windows\System32\mctadmin.exe"

    [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

    "mctadmin"="C:\Windows\System32\mctadmin.exe"

    [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]

    "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 /build:7601"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    "avgnt"="C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe /min"

    "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    ==== Task Scheduler Jobs ======================

    C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [05-02-2014 18:38]

    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [16-09-2013 11:03]

    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [16-09-2013 11:03]

    ==== Other Scheduled Tasks ======================

    "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

    "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

    "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

    "C:\Windows\SysNative\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe]

    ==== Firefox Extensions Registry ======================

    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

    "{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files (x86)\McAfee\SiteAdvisor" [10-01-2014 13:16]

    ==== Chrome Look ======================

    HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

    fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[21-11-2013 11:07]

    TBR map - Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjhafehbmkllpjdoamjdojagpecajeil

    Last updated at time on date - Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb

    Tribal Wars Time Extension - Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckolnemglnnaaaeopconbampbdejaika

    Media Player - Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnghmockmcjlcebapnmekaompcelifbf

    GM FA-Filter - Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdckkjfmkjdhcgkgfjecobdhmnlcljb

    Google Wallet - Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

    ==== Chrome Fix ======================

    C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnghmockmcjlcebapnmekaompcelifbf deleted successfully

    ==== Set IE to Default ======================

    Old Values:

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

    "Start Page"="http://www.google.com"

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

    No DefaultScope Set For HKCU

    New Values:

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

    "Start Page"="http://www.google.com"

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

    "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

    ==== All HKCU SearchScopes ======================

    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

    {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"

    {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

    ==== Empty IE Cache ======================

    C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Users\Tim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

    C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Users\Tim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5237XEEI will be deleted at reboot

    C:\Users\Tim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B3HE11JL will be deleted at reboot

    C:\Users\Tim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WG3UE7Q3 will be deleted at reboot

    ==== Empty FireFox Cache ======================

    No FireFox Profiles found

    ==== Empty Chrome Cache ======================

    C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

    ==== Empty All Flash Cache ======================

    Flash Cache Emptied Successfully

    ==== Empty All Java Cache ======================

    Java Cache cleared successfully

    ==== C:\zoek_backup content ======================

    C:\zoek_backup (files=1884 folders=311 210700542 bytes)

    ==== Empty Temp Folders ======================

    C:\Users\Default\AppData\Local\Temp emptied successfully

    C:\Users\Default User\AppData\Local\Temp emptied successfully

    C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

    C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

    C:\Users\Tim\AppData\Local\Temp will be emptied at reboot

    C:\Windows\Temp will be emptied at reboot

    ==== After Reboot ======================

    ==== Empty Temp Folders ======================

    C:\Windows\Temp successfully emptied

    C:\Users\Tim\AppData\Local\Temp successfully emptied

    ==== Empty Recycle Bin ======================

    C:\$RECYCLE.BIN successfully emptied

    ==== Deleting Files / Folders ======================

    "C:\Users\Tim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5237XEEI" not found

    "C:\Users\Tim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B3HE11JL" not found

    "C:\Users\Tim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WG3UE7Q3" not found

    ==== EOF on do 06-02-2014 at 0:58:47,29 ======================

  3. Het volgende logje kreeg ik:

    Logfile of random's system information tool 1.09 (written by random/random)

    Run by Tim at 2014-02-04 17:32:08

    Microsoft Windows 7 Home Premium Service Pack 1

    System drive C: has 197 GB (83%) free of 238 GB

    Total RAM: 4058 MB (55% free)

    Logfile of Trend Micro HijackThis v2.0.4

    Scan saved at 17:32:17, on 4-2-2014

    Platform: Windows 7 SP1 (WinNT 6.00.3505)

    MSIE: Internet Explorer v11.0 (11.00.9600.16428)

    Boot mode: Normal

    Running processes:

    C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    C:\Program Files\trend micro\Tim.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

    F2 - REG:system.ini: UserInit=userinit.exe

    O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

    O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

    O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

    O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

    O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe

    O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Tim\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l

    O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

    O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

    O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')

    O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')

    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

    O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

    O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

    O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

    O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

    O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe

    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

    O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe

    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

    O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

    O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe

    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

    --

    End of file - 8084 bytes

    ======Listing Processes======

    \SystemRoot\System32\smss.exe

    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

    wininit.exe

    %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

    C:\Windows\system32\services.exe

    winlogon.exe

    C:\Windows\system32\lsass.exe

    C:\Windows\system32\lsm.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    C:\Windows\system32\svchost.exe -k RPCSS

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\svchost.exe -k netsvcs

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Windows\System32\spoolsv.exe

    "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"

    c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe

    C:\Windows\system32\svchost.exe -k imgsvc

    "C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"

    "C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait

    "C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait

    "C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait

    "C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe"

    "taskhost.exe"

    "C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe" /TUStart /pid:1820

    "C:\Windows\system32\Dwm.exe"

    C:\Windows\Explorer.EXE

    "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

    "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    "C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000538

    "C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe"

    C:\Windows\system32\SearchIndexer.exe /Embedding

    "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-548b80af-e448-4945-bb99-212332689451 -SystemEventPortName:HostProcess-d4828f80-de12-4421-93a3-b54750078856 -IoCancelEventPortName:HostProcess-4ab81d26-5b83-4fdf-bd56-97e544fa7a4b -NonStateChangingEventPortName:HostProcess-fb39b9e0-ab23-428b-b922-a48b23d74083 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a345c33b-3fb1-451c-9540-5144631dcf06 -DeviceGroupId:WpdFsGroup

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    "C:\Program Files\Windows Media Player\wmpnetwk.exe"

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3372.0.619306671\777085772" --disable-image-transport-surface --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,5,13,23 --gpu-vendor-id=0x8086 --gpu-device-id=0x2a42 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.1749 --ignored=" --type=renderer " /prefetch:822062411

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/AutomaticProfileReset/Enabled4/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group7 pct:10g stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_91/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --extension-process --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --enable-software-compositing --channel="3372.2.323182534\1941885672" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/AutomaticProfileReset/Enabled4/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group7 pct:10g stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ManagedModeLaunch/Active/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_91/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --extension-process --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --enable-software-compositing --channel="3372.3.1888987779\1747811861" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/AutomaticProfileReset/Enabled4/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group7 pct:10g stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ManagedModeLaunch/Active/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_91/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --enable-software-compositing --channel="3372.6.2049950040\79049747" /prefetch:673131151

    "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3372.7.1176766527\2012887704" --ppapi-flash-args --lang=nl --ignored=" --type=renderer " /prefetch:-632637702

    C:\Windows\system32\sppsvc.exe

    "C:\Windows\system32\wuauclt.exe"

    C:\Windows\servicing\TrustedInstaller.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    taskhost.exe $(Arg0)

    "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

    "C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516

    "C:\Users\Tim\Desktop\RSITx64.exe"

    ======Scheduled tasks folder======

    C:\Windows\tasks\Adobe Flash Player Updater.job

    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]

    McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2013-11-21 299336]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

    Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-01-06 462760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]

    McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2013-11-21 250896]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

    Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-01-06 171944]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

    {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2013-11-21 299336]

    [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

    {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2013-11-21 250896]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

    "NextLive"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544]

    [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

    "avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-12-17 684600]

    "mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe []

    "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

    WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

    "SecurityProviders"=credssp.dll

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

    "ConsentPromptBehaviorAdmin"=5

    "ConsentPromptBehaviorUser"=3

    "EnableUIADesktopToggle"=0

    "dontdisplaylastusername"=0

    "legalnoticecaption"=

    "legalnoticetext"=

    "shutdownwithoutlogon"=1

    "undockwithoutlogon"=1

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

    "NoActiveDesktop"=1

    "NoActiveDesktopChanges"=1

    "ForceActiveDesktopOn"=0

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

    "vidc.mrle"=msrle32.dll

    "vidc.msvc"=msvidc32.dll

    "msacm.imaadpcm"=imaadp32.acm

    "msacm.msg711"=msg711.acm

    "msacm.msgsm610"=msgsm32.acm

    "msacm.msadpcm"=msadp32.acm

    "midimapper"=midimap.dll

    "wavemapper"=msacm32.drv

    "vidc.uyvy"=msyuv.dll

    "vidc.yuy2"=msyuv.dll

    "vidc.yvyu"=msyuv.dll

    "vidc.iyuv"=iyuv_32.dll

    "vidc.i420"=iyuv_32.dll

    "vidc.yvu9"=tsbyuv.dll

    "msacm.l3acm"=C:\Windows\System32\l3codeca.acm

    "wave"=wdmaud.drv

    "midi"=wdmaud.drv

    "mixer"=wdmaud.drv

    "aux"=wdmaud.drv

    ======File associations======

    .js - edit - C:\Windows\System32\Notepad.exe %1

    .js - open - C:\Windows\System32\WScript.exe "%1" %*

    ======List of files/folders created in the last 1 month======

    2014-02-04 17:32:08 ----D---- C:\rsit

    2014-02-04 17:32:08 ----D---- C:\Program Files\trend micro

    2014-02-03 19:27:05 ----SHD---- C:\$RECYCLE.BIN

    2014-02-03 19:15:29 ----D---- C:\Windows\Temp

    2014-02-03 19:15:29 ----A---- C:\Windows\zoek-delete.exe

    2014-02-03 18:56:59 ----D---- C:\AdwCleaner

    2014-02-03 18:46:55 ----D---- C:\zoek_backup

    2014-01-21 15:50:22 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

    2014-01-21 15:50:20 ----D---- C:\Windows\SYSWOW64\Macromed

    2014-01-21 15:50:18 ----D---- C:\Windows\system32\Macromed

    2014-01-15 16:30:40 ----A---- C:\Windows\system32\drivers\usbuhci.sys

    2014-01-15 16:30:40 ----A---- C:\Windows\system32\drivers\usbport.sys

    2014-01-15 16:30:40 ----A---- C:\Windows\system32\drivers\usbohci.sys

    2014-01-15 16:30:40 ----A---- C:\Windows\system32\drivers\usbhub.sys

    2014-01-15 16:30:40 ----A---- C:\Windows\system32\drivers\usbehci.sys

    2014-01-15 16:30:40 ----A---- C:\Windows\system32\drivers\usbd.sys

    2014-01-15 16:30:40 ----A---- C:\Windows\system32\drivers\usbccgp.sys

    2014-01-15 16:30:37 ----A---- C:\Windows\system32\win32k.sys

    2014-01-15 16:30:34 ----A---- C:\Windows\system32\drivers\netio.sys

    2014-01-06 17:58:45 ----D---- C:\ProgramData\Sun

    2014-01-06 17:58:36 ----A---- C:\Windows\SYSWOW64\javaws.exe

    2014-01-06 17:58:29 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll

    2014-01-06 17:58:29 ----A---- C:\Windows\SYSWOW64\javaw.exe

    2014-01-06 17:58:29 ----A---- C:\Windows\SYSWOW64\java.exe

    2014-01-06 17:58:08 ----D---- C:\Program Files (x86)\Java

    ======List of files/folders modified in the last 1 month======

    2014-02-04 17:32:08 ----RD---- C:\Program Files

    2014-02-04 17:28:09 ----D---- C:\Windows\system32\config

    2014-02-03 21:09:20 ----D---- C:\Users\Tim\AppData\Roaming\Skype

    2014-02-03 19:17:05 ----RD---- C:\Program Files (x86)

    2014-02-03 19:17:05 ----D---- C:\Windows

    2014-02-03 19:07:46 ----SHD---- C:\Windows\Installer

    2014-02-03 19:07:36 ----D---- C:\Windows\Tasks

    2014-02-03 19:07:36 ----D---- C:\Windows\system32\Tasks

    2014-02-03 19:07:35 ----HD---- C:\ProgramData

    2014-02-03 18:50:48 ----SHD---- C:\System Volume Information

    2014-02-03 18:46:59 ----D---- C:\Windows\SysWOW64

    2014-02-02 06:51:01 ----D---- C:\Windows\System32

    2014-02-02 06:48:10 ----D---- C:\Windows\system32\drivers

    2014-01-29 20:37:04 ----D---- C:\Windows\system32\NDF

    2014-01-29 16:50:05 ----HD---- C:\Windows\system32\GroupPolicy

    2014-01-29 16:50:05 ----D---- C:\Windows\SYSWOW64\GroupPolicy

    2014-01-28 22:16:10 ----D---- C:\Windows\Minidump

    2014-01-20 10:42:58 ----D---- C:\Windows\rescache

    2014-01-16 11:46:53 ----D---- C:\Windows\winsxs

    2014-01-16 11:45:39 ----D---- C:\Windows\system32\catroot2

    2014-01-16 11:42:55 ----D---- C:\Windows\system32\DriverStore

    2014-01-15 16:30:21 ----D---- C:\Windows\system32\catroot

    2014-01-10 13:17:08 ----D---- C:\Program Files (x86)\McAfee

    2014-01-06 17:58:45 ----D---- C:\Program Files (x86)\Common Files

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

    R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-12-17 131576]

    R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-10-11 28600]

    R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

    R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-12-17 108440]

    R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2013-12-17 84720]

    R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]

    R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]

    R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [2013-08-21 14112]

    S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

    S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]

    S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]

    S3 WinUsb;WinUsb Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-12-17 440376]

    R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-11-26 440376]

    R2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2013-12-17 1011768]

    R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [2014-01-07 123384]

    R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]

    R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2013-08-29 2100024]

    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

    S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-16 116648]

    S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]

    S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-21 257928]

    S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-16 116648]

    S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]

    S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-10-02 1255736]

    -----------------EOF-----------------

  4. Hallo,

    Ik ben door een vriend van mij doorverwezen naar deze site, omdat ik problemen heb met mijn laptop.

    Ik heb sinds kort malware gekregen na het downloaden van dit programma: Removewat 2.2.7__4499_il1111.exe

    Nadat ik dit programma had gedownload, werd mijn google chrome afgesloten en toen ik hem weer opstartte was mijn startpagina veranderd naar: Nation Zoom

    Ik kreeg toen ook allemaal malware advertentie pop ups (die al zijn verdwenen na wat dingen verwijderen), maar heb nog steeds normale malware advertenties terwijl mijn adblocker wel aan staat. Als ik op een site ben staan er ook willekeurige woorden onderstreept en in andere kleur, en als ik mijn muis erop houd dan opent er ook een advertentie.

    Bij mijn extensies staat nu ook het programma: Media Player 1.1, en deze kan ik ook niet uitschakelen of verwijderen. Er staat bij dat het geïnstalleerd is door bedrijfsbeleid. Ik vermoed dat deze extensie de malware bevat, want er staat ook vaak onder de advertenties in kleine lettertjes, ads by media player.

    De vriend die mij heeft doorverwezen naar deze site, heeft al via het programma: zoek.exe het probleem gezocht en daarna met het programma: adwcleaner het probleem vernietigt, maar het lukte hem niet omdat mijn laptop daar geen toegang tot gaf. Dit heeft waarschijnlijk te maken met een ander veel groter probleem dat op mijn laptop zit. Ik heb een keer een nieuwe hardeschijf gekregen, omdat mijn oude kapot was, maar moest die zelf installeren en daar zijn volgens mij wat dingen fout gegaan waardoor mijn laptop niet meer goed functioneert.

    Ik ga nu niet het hele andere probleem uitleggen, omdat ik denk dat dit niet nodig is om de malware te verwijderen. Als het toch nodig is, of iemand wilt mij nu al helpen met het andere probleem, dan zal ik eens uitgebreid uitleggen wat het probleem is.

    Ik hoop dus dat iemand mij kan helpen met mijn malware probleem, en later ook met mijn andere problemen.

    Mvg,

    Tim

    - - - Updated - - -

    Hier zie je een print screen van mijn post waarin je kan zien dat bepaalde willekeurige woorden zijn onderstreept, en zoals je ziet komt er een kleine advertentie als ik mijn muis erop houd.

    post-47427-1417705664,2554_thumb.jpg

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.