misteragga

Kan dit nog beandwoord kunnen worde?

Kan iemand dit nog beanwoorde?

zou ik niet een nieuwe herstel punt moeten maken? dit is de het resultaat van de scan.

zou ik niet een nieuwe herstel punt moeten maken? dit is de het resultaat van de scan. - - - Updated - - - wat heeft de zoek.exe log precies gedaan?

oke alles is verwijderd en wat nu?

oke alles is verwijderd en wat nu?

zoek.exe log Zoek.exe Version 4.0.0.2 Updated 15-May-2013 Tool run by Rajni on vr 17-05-2013 at 21:04:20,71. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Adobe AIR Adobe Flash Player 11 ActiveX Adobe Reader XI (11.0.02) Adobe Shockwave Player 12.0 AM-DeadLink 4.6 CameraHelperMsi CCleaner CutePDF Writer 3.0 D3DX10 Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition erLT Fences Free YouTube Download version 3.1.42.1212 Google Chrome Google Update Helper Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678) Java 7 Update 21 Java 7 Update 21 (64-bit) Java Auto Updater Junk Mail filter update Logitech-webcamsoftware Logitech Vid HD LWS Facebook LWS Gallery LWS Help_main LWS Launcher LWS Motion Detection LWS Pictures And Video LWS Video Mask Maker LWS VideoEffects LWS Webcam Software LWS WLM Plugin LWS YouTube Plugin McAfee Total Protection Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile NLD Language Pack Microsoft Access MUI (Dutch) 2013 Microsoft Application Error Reporting Microsoft DCF MUI (Dutch) 2013 Microsoft Excel MUI (Dutch) 2013 Microsoft Groove MUI (Dutch) 2013 Microsoft InfoPath MUI (Dutch) 2013 Microsoft Lync MUI (Dutch) 2013 Microsoft Office 32-bit Components 2013 Microsoft Office Korrekturhilfen 2013 - Deutsch Microsoft Office OSM MUI (Dutch) 2013 Microsoft Office OSM UX MUI (Dutch) 2013 Microsoft Office Professional Plus 2013 Microsoft Office Proofing (Dutch) 2013 Microsoft Office Proofing Tools 2013 - English Microsoft Office Proofing Tools 2013 - Nederlands Microsoft Office Shared 32-bit MUI (Dutch) 2013 Microsoft Office Shared MUI (Dutch) 2013 Microsoft OneNote MUI (Dutch) 2013 Microsoft Outlook MUI (Dutch) 2013 Microsoft PowerPoint MUI (Dutch) 2013 Microsoft Publisher MUI (Dutch) 2013 Microsoft Silverlight Microsoft Word MUI (Dutch) 2013 MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 Outils de v‚rification linguistique 2013 de Microsoft Officeÿ- Fran‡ais Photo Common Realtek High Definition Audio Driver Samsung Kies SAMSUNG USB Driver for Mobile Phones Security Update for CAPICOM (KB931906) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576) Shared C Run-time for x64 SkypeT 6.3 Soluto swMSM Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD Tango TeamViewer 8 Temp File Cleaner UltraISO Premium V9.53 Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft Access 2013 (KB2760350) 64-Bit Edition Update for Microsoft Excel 2013 (KB2760339) 64-Bit Edition Update for Microsoft Lync 2013 (KB2768004) 64-Bit Edition Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition Update for Microsoft Office 2013 (KB2726961) 64-Bit Edition Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition Update for Microsoft Office 2013 (KB2737954) 64-Bit Edition Update for Microsoft Office 2013 (KB2752025) 64-Bit Edition Update for Microsoft Office 2013 (KB2752094) 64-Bit Edition Update for Microsoft Office 2013 (KB2752101) 64-Bit Edition Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition Update for Microsoft Office 2013 (KB2760343) 64-Bit Edition Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition Update for Microsoft Office 2013 (KB2767860) 64-Bit Edition Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition Update for Microsoft Office 2013 (KB2768333) 64-Bit Edition Update for Microsoft Office 2013 (KB2768349) 64-Bit Edition Update for Microsoft Office 2013 (KB2768355) 64-Bit Edition Update for Microsoft Office 2013 (KB2810010) 64-Bit Edition Update for Microsoft OneNote 2013 (KB2760334) 64-Bit Edition Update for Microsoft OneNote 2013 (KB2768011) 64-Bit Edition Update for Microsoft Outlook 2013 (KB2810015) 64-Bit Edition Update for Microsoft PowerPoint 2013 (KB2726947) 64-Bit Edition Update for Microsoft PowerPoint 2013 (KB2727013) 64-Bit Edition Update for Microsoft SkyDrive Pro (KB2810019) 64-Bit Edition Update for Microsoft Visio 2013 (KB2810008) 64-Bit Edition Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition Update for Microsoft Word 2013 (KB2752073) 64-Bit Edition Update for Microsoft Word 2013 (KB2768007) 64-Bit Edition Update for Microsoft Word 2013 (KB2768337) 64-Bit Edition VLC media player 2.0.6 WD SmartWare Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live Messenger Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinRAR 4.20 (64-bit) ==== Deleting Files \ Folders ====================== "C:\Program Files (x86)\Common Files\DVDVideoSoft\bin" deleted "C:\Windows\SysWow64\AI_RecycleBin" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-05-14 22:17:35 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2013-05-14 22:17:35 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2013-05-14 22:17:35 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2013-05-14 22:17:35 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2013-05-14 22:17:35 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe ====== C:\Users\Rajni\AppData\Local\Temp ==== 2013-05-16 20:47:15 5C8BF1592A4582BC4B4ADA1803646ADA 7672792 ----a-w- C:\Users\Rajni\AppData\Local\Temp\Foxit Updater.exe 2013-05-16 20:32:14 5C8BF1592A4582BC4B4ADA1803646ADA 7672792 ----a-w- C:\Users\Rajni\AppData\Local\Temp\Foxit Reader Updater.exe ====== C:\Windows\SysWOW64 ===== 2013-05-14 22:52:38 49834B94A8E8383B700EDDEF46C2AE6A 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2013-05-14 22:52:38 28AEB03752D716BF149DBC93A9ACC17E 391168 ----a-w- C:\Windows\SysWOW64\ieui.dll 2013-05-14 22:52:36 DFDBC397D0DDBD1AFA3CB400D4C003A9 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2013-05-14 22:52:36 5915AA67DECA289F7B4AFB686CDB09E9 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-05-14 22:52:36 52AA8A8DA4175580F365D275EB53DBE3 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2013-05-14 22:52:36 3CC9825BFFE7B7429C8B79B0395ACDA8 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2013-05-14 22:52:36 366D8EA2ADCBA228C9487BC6D2427DDC 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2013-05-14 22:52:35 F59A16A9418044C1D505C53DA370B099 2046976 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2013-05-14 22:52:34 65C95886E1B17001ADDF163AC18C5525 1130496 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2013-05-14 22:52:33 C9A062F32FF600C96795B43CD9A53151 2877440 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2013-05-14 22:52:33 0142341520F0A0F2B0E312335B96705B 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll 2013-05-14 22:52:32 5ABB3F36AF17007F33FA275E96A2C95E 1767424 ----a-w- C:\Windows\SysWOW64\wininet.dll 2013-05-14 22:52:32 03180AFD271BFD88813F428421BC4A1A 39424 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2013-05-14 22:52:29 7A468BC721C1D34E60389D3F2F87BBEA 14323712 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2013-05-14 22:52:26 D5E5A86F49ACC11768D8339094C3AFD8 13760512 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2013-05-14 18:19:09 565D78187494FB5F08B5A52DEB2AEA7A 12872704 ----a-w- C:\Windows\SysWOW64\shell32.dll 2013-05-14 18:19:08 E904178851A6A44BFA97E064EF779E9D 1796096 ----a-w- C:\Windows\SysWOW64\authui.dll 2013-05-14 18:19:08 1F05F5A16881CD928C82D53CEFCF4477 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-05-14 22:52:38 9B2BB51ED6D28860A48CFF46FD6D3DC1 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2013-05-14 22:52:37 FE6CB2001A8C2A85B617CD3FC85D8242 526336 ----a-w- C:\Windows\Sysnative\ieui.dll 2013-05-14 22:52:37 42758AF68D3C4912C8D8A18088AD2555 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2013-05-14 22:52:36 EC6E8273B6CB79CA5B7B00CA82D1FCEE 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2013-05-14 22:52:36 A197763AA7487807279AB61CD6835CEF 89600 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe 2013-05-14 22:52:36 97588F2871E1FE8E3EB57B17B98DF03B 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll 2013-05-14 22:52:36 168602AB16D30D5D6E091CA609FC7E75 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll 2013-05-14 22:52:35 9D6B9124B582F0FBF275B434CE5A672C 2647552 ----a-w- C:\Windows\Sysnative\iertutil.dll 2013-05-14 22:52:35 7DAA72F6C30D81EE31EC2BDC90054326 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2013-05-14 22:52:34 E34F0440799F9A0F9DC4265F4ADA75C1 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll 2013-05-14 22:52:33 772EC073332D1BA2DBEC32C6D063811A 855552 ----a-w- C:\Windows\Sysnative\jscript.dll 2013-05-14 22:52:33 2C96C695B6015042AC867EA419A45C20 3958784 ----a-w- C:\Windows\Sysnative\jscript9.dll 2013-05-14 22:52:32 254502230F2259D255D4149C235173B1 53248 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2013-05-14 22:52:31 27A9000C534AA9BADC9EE74940F50C6D 2242048 ----a-w- C:\Windows\Sysnative\wininet.dll 2013-05-14 22:52:28 C56EF4C50A1FEED0CC9B7AE068CBBBBB 19231232 ----a-w- C:\Windows\Sysnative\mshtml.dll 2013-05-14 22:52:26 7F4F74880E0B586EB7A9E225C34B1296 15404032 ----a-w- C:\Windows\Sysnative\ieframe.dll 2013-05-14 18:19:22 943F527DF79E6B400104341AA7023C75 144384 ----a-w- C:\Windows\Sysnative\cdd.dll 2013-05-14 18:19:10 3EF480BFED1B5947A32585E30A58D4ED 1930752 ----a-w- C:\Windows\Sysnative\authui.dll 2013-05-14 18:19:10 1BFC94665BCA35F9001ADC7BFB167C63 14172672 ----a-w- C:\Windows\Sysnative\shell32.dll 2013-05-14 18:19:09 22A0AE97360C1B146FDD9AA55AC0E989 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll 2013-05-14 18:19:08 E948D1D42DC68923ABD75EEB5BCCD1D3 111448 ----a-w- C:\Windows\Sysnative\consent.exe 2013-05-14 18:19:08 9D2A2369AB4B08A4905FE72DB104498F 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll 2013-05-14 18:18:39 FE90B750AB808FB9DD8FBB428B5FF83B 230400 ----a-w- C:\Windows\Sysnative\wwansvc.dll 2013-05-14 18:18:39 30B1489F2DCD8DC1AB6BB60CA6093615 48640 ----a-w- C:\Windows\Sysnative\wwanprotdim.dll 2013-05-14 18:18:37 A11523523B31086DD760C0189C763359 3153920 ----a-w- C:\Windows\Sysnative\win32k.sys ====== C:\Windows\Sysnative\drivers ===== 2013-05-14 18:19:22 AF2E16242AA723F68F461B6EAE2EAD3D 983400 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys 2013-05-14 18:19:22 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys 2013-04-24 12:30:54 B98F8C6E31CD07B2E6F71F7F648E38C0 1656680 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys 2013-04-23 00:23:28 F9369327409492097B0BB7CE86BD29DE 54728 ----a-w- C:\Windows\Sysnative\drivers\Soluto.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-05-14 01:17:05 -------- d-----w- C:\Program Files\Common Files\DESIGNER 2013-05-14 01:16:06 -------- d-----w- C:\Program Files\Microsoft.NET 2013-05-14 01:12:15 -------- d-----w- C:\Program Files\Microsoft SQL Server 2013-05-14 01:06:16 -------- d-----w- C:\Program Files\Microsoft Analysis Services 2013-05-14 00:17:26 -------- d-----w- C:\Program Files\Microsoft Office 2013-04-23 00:23:21 -------- d-----w- C:\Program Files\Soluto ======= C:\Program Files (x86) ===== 2013-05-16 20:42:00 -------- d-----w- C:\Program Files (x86)\Temp File Cleaner 2013-05-15 23:22:31 -------- d-----w- C:\Program Files (x86)\Common Files\EZB Systems 2013-05-15 23:22:29 -------- d-----w- C:\Program Files (x86)\UltraISO 2013-05-14 01:16:07 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server 2013-05-14 01:06:16 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services 2013-05-14 01:06:03 -------- d-----w- C:\Program Files (x86)\Microsoft Office 2013-05-01 22:49:18 -------- d-----w- C:\Program Files (x86)\GPLGS 2013-05-01 22:48:24 -------- d-----w- C:\Program Files (x86)\Acro Software 2013-04-25 17:35:10 -------- d-----w- C:\Program Files (x86)\VideoLAN ======= C: ===== ====== C:\Users\Rajni\AppData\Roaming ====== 2013-05-16 20:42:01 -------- d-----w- C:\users\Rajni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Temp File Cleaner 2013-05-16 00:20:10 -------- d-----w- C:\users\Rajni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-05-14 22:47:41 -------- d-----w- C:\users\Public\AppData\Local\temp 2013-05-14 22:47:41 -------- d-----w- C:\users\Default\AppData\Local\temp 2013-05-14 22:47:41 -------- d-----w- C:\users\Default User\AppData\Local\temp 2013-05-14 02:25:46 -------- d-----w- C:\users\Default\AppData\Local\Microsoft Help 2013-05-14 02:25:46 -------- d-----w- C:\users\Default User\AppData\Local\Microsoft Help 2013-05-14 00:34:03 -------- d-----w- C:\users\Rajni\AppData\Local\Microsoft Toolkit 2013-05-14 00:17:29 -------- d-----w- C:\users\Rajni\AppData\Local\Microsoft Help 2013-05-01 22:50:53 -------- d-----w- C:\users\Rajni\AppData\Local\CutePDF Writer 2013-04-25 13:54:59 -------- d-----w- C:\users\Rajni\AppData\Locallow\Adobe ====== C:\Users\Rajni ====== 2013-05-16 00:20:10 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-05-15 23:22:37 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO 2013-05-14 01:18:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2013-05-14 01:15:23 -------- d-----w- C:\ProgramData\regid.1991-06.com.microsoft 2013-05-14 00:17:24 -------- d-----w- C:\ProgramData\Microsoft Help 2013-05-01 22:48:27 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF 2013-04-23 00:23:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soluto ====== C: exe-files == 2013-05-16 22:55:23 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\SkypeAppControl_ee6e0ab8-9e0d-4073-8e86-99c21cf26c73\PCGAppControlPluginLoader.exe 2013-05-16 22:55:21 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\DropboxAppControl_2a3e3170-e4cd-4d63-9b6e-527bc2e44b44\PCGAppControlPluginLoader.exe 2013-05-16 20:47:15 5C8BF1592A4582BC4B4ADA1803646ADA 7672792 ----a-w- C:\Users\Rajni\AppData\Local\Temp\Foxit Updater.exe 2013-05-16 20:42:28 A272556D6B18FBCF658EE4732434421A 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-721232407-3770601494-4236025715-1000\$IUTLWZF.exe 2013-05-16 20:42:00 12504C9A61BFACBB62C3B13581439C8C 75679 ----a-w- C:\Program Files (x86)\Temp File Cleaner\uninstall.exe 2013-05-16 20:41:35 45595C57996A48917A8933BD5ED1B6D1 1792697 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-721232407-3770601494-4236025715-1000\$RUTLWZF.exe 2013-05-16 20:32:14 5C8BF1592A4582BC4B4ADA1803646ADA 7672792 ----a-w- C:\Users\Rajni\AppData\Local\Temp\Foxit Reader Updater.exe 2013-05-16 20:22:16 0A90C8A3F94564E7EAF541981EAFA52A 632031 ----a-w- C:\Users\Rajni\Desktop\adwcleaner.exe 2013-05-16 00:19:44 E1B5CD5FA83D68A113F5E6DC7A025C1B 135168 ----a-w- C:\Program Files\WinRAR\Uninstall.exe 2013-05-16 00:19:44 B7780A54CA2EF7048D2291B1C9856FDB 287744 ----a-w- C:\Program Files\WinRAR\UnRAR.exe 2013-05-16 00:19:44 4C2A76CEEE9BECFEFFE78265166182BA 426496 ----a-w- C:\Program Files\WinRAR\Rar.exe 2013-05-16 00:19:44 27798085262CD1C91824CE283EDE088B 1230848 ----a-w- C:\Program Files\WinRAR\WinRAR.exe 2013-05-16 00:19:43 10FB3DF2521C7F351121A07AD1263FBE 55296 ----a-w- C:\Program Files\WinRAR\Formats\ace32loader.exe 2013-05-15 23:22:31 08A118C646922ED9526BFD7D77A42418 15360 ----a-w- C:\Program Files (x86)\UltraISO\drivers\bootpart.exe 2013-05-15 23:22:30 66F5341A29E602C25637E83EA31DDF32 20880 ----a-w- C:\Program Files (x86)\UltraISO\drivers\IsoCmd.exe 2013-05-15 23:22:29 E9A81B8A7686E52A6F225317C417F49B 786184 ----a-w- C:\Program Files (x86)\UltraISO\unins000.exe 2013-05-15 23:22:29 3F64EC73DC1D8257A7B466FCA8E3BD36 1339904 ----a-w- C:\Program Files (x86)\UltraISO\UltraISO.exe 2013-05-15 22:55:17 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\SkypeAppControl_c557358a-b513-4285-aaf3-4b34172b883b\PCGAppControlPluginLoader.exe 2013-05-15 22:55:16 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\DropboxAppControl_bb3d283e-61bd-4dd6-a471-9c2472892996\PCGAppControlPluginLoader.exe 2013-05-14 22:54:18 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\SkypeAppControl_d6c0df88-ab66-42bf-81a1-375b0b614adf\PCGAppControlPluginLoader.exe 2013-05-14 22:54:16 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\DropboxAppControl_0f565941-732c-4d77-af9f-5db8de5a0bea\PCGAppControlPluginLoader.exe 2013-05-14 22:52:37 42758AF68D3C4912C8D8A18088AD2555 51712 ----a-w- C:\Windows\System32\ie4uinit.exe 2013-05-14 22:52:36 A197763AA7487807279AB61CD6835CEF 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-05-14 22:52:36 5915AA67DECA289F7B4AFB686CDB09E9 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-05-14 22:52:35 AAD90795E84E710543C6C7C2F7048E30 770608 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2013-05-14 22:52:34 CEA304830B4770BDA3572B87D0841848 775232 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2013-05-14 22:17:35 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2013-05-14 22:17:35 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2013-05-14 22:17:35 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2013-05-14 22:17:35 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2013-05-14 22:17:35 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe 2013-05-14 18:19:08 E948D1D42DC68923ABD75EEB5BCCD1D3 111448 ----a-w- C:\Windows\System32\consent.exe 2013-05-14 01:50:52 4C75C1E0BBE64A223544BDB7C2B4A08E 277504 ----a-w- C:\Windows\KMSServerService\KMS Server Service.exe 2013-05-13 22:50:00 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\SkypeAppControl_56a774e3-b392-4e33-b482-0495aedb668d\PCGAppControlPluginLoader.exe 2013-05-13 22:49:58 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\DropboxAppControl_84071049-b2d9-4864-babb-844741ac0889\PCGAppControlPluginLoader.exe 2013-05-12 22:36:50 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\SkypeAppControl_6c4520ef-ed4d-4c48-bd44-ef8e157aab73\PCGAppControlPluginLoader.exe 2013-05-12 22:36:49 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\DropboxAppControl_c0deb51b-af62-4319-a5c7-db027cae069b\PCGAppControlPluginLoader.exe 2013-05-11 22:14:27 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\SkypeAppControl_3386c447-fa8e-4d01-bc52-23ebed4711f9\PCGAppControlPluginLoader.exe 2013-05-11 22:14:25 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\DropboxAppControl_073691b0-fc9b-4481-bf16-1a17ef894c94\PCGAppControlPluginLoader.exe 2013-05-10 22:14:34 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\SkypeAppControl_b786a958-687a-4f46-828c-b004cdab0985\PCGAppControlPluginLoader.exe 2013-05-10 22:14:33 1606E7955B7872EADD76E2B816EAC91F 49216 ----a-w- C:\ProgramData\Soluto\Temp\DropboxAppControl_009e23eb-0d49-4f5b-915d-f152d01e8036\PCGAppControlPluginLoader.exe === C: other files == 2013-05-15 23:22:30 C66B64213CC4306D4A4BDF886C5D52BE 25032 ----a-w- C:\Program Files (x86)\UltraISO\drivers\bootpart.sys 2013-05-15 23:22:30 9C6F3F69163133FB8E56AC4A6E163452 115600 ----a-w- C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys 2013-05-15 23:22:30 70769BD8443550D6E1B6C7D391F041DE 33224 ----a-w- C:\Program Files (x86)\UltraISO\drivers\bootpt64.sys 2013-05-15 23:22:30 2F03CEB28307983F3B36216D35FFA5AA 82320 ----a-w- C:\Program Files (x86)\UltraISO\drivers\ISODrive.sys 2013-05-14 18:19:22 AF2E16242AA723F68F461B6EAE2EAD3D 983400 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2013-05-14 18:19:22 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2013-05-14 18:18:37 A11523523B31086DD760C0189C763359 3153920 ----a-w- C:\Windows\System32\win32k.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-721232407-3770601494-4236025715-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "ccleaner"="C:\Program Files\CCleaner\CCleaner64.exe /AUTO" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "ccleaner"="C:\Program Files\CCleaner\CCleaner64.exe /AUTO" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Soluto"="c:\program files\soluto\soluto.exe /init" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Lync] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Lync" "hkey"="HKCU" "command"="\"C:\\Program Files\\Microsoft Office\\Office15\\lync.exe\" /fromrunkey" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mcpltui_exe] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mcpltui_exe" "hkey"="HKLM" "command"="\"C:\\Program Files\\McAfee.com\\Agent\\mcagent.exe\" /runkey" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Rajni^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Verzenden naar OneNote.lnk] "item"="Verzenden naar OneNote" "path"="C:\\Users\\Rajni\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Verzenden naar OneNote.lnk" "backup"="C:\\Windows\\pss\\Verzenden naar OneNote.lnk.Startup" "backupExtension"=".Startup" "command"="C:\\PROGRA~1\\MICROS~3\\Office15\\ONENOTEM.EXE" ==== Startup Folders ====================== 2013-01-16 21:16:29 1318 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk 2013-01-16 21:16:29 1373 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDSmartWare.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [09-04-2013 23:28] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08-04-2013 21:41] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [undertermined Task] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[04-12-2012 10:47] Google Docs - Rajni - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Rajni - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Rajni - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Facebook - Rajni - Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm Last updated at time on date - Rajni - Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Google Search - Rajni - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf SiteAdvisor - Rajni - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho AdBlock - Rajni - Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Windows Media Player Extension for HTML5 - Rajni - Default\Extensions\hokdglbhghcebcopdbanieangmcamaak Evernote Web - Rajni - Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol Google Maps - Rajni - Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh Hello Kitty - Rajni - Default\Extensions\mioiobnjjjgemkflahplehgpkbjcojld Background Tab - Rajni - Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic Gmail - Rajni - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.nl/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.nl/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {E3540FFD-6D7B-4278-8DC9-A7F3C1CA374A} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}" ==== Reset Google Chrome ====================== C:\users\Rajni\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\users\Rajni\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Rajni\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Rajni\AppData\Local\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\users\Rajni\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Rajni\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on vr 17-05-2013 at 21:14:17,55 ======================

wat heeft dit nou precies gedaan? zoek.exe log. Zoek.exe Version 4.0.0.2 Updated 15-May-2013 Tool run by Brian on vr 17-05-2013 at 20:08:52,63. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Adobe AIR Adobe Flash Player 11 ActiveX Adobe Reader XI (11.0.02) - Nederlands Adobe Shockwave Player 12.0 AM-DeadLink 4.6 CameraHelperMsi Canon MP Navigator EX 1.0 Canon MP210 series Canon My Printer Canon Utilities Solution Menu CCleaner CutePDF Writer 3.0 D3DX10 Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition erLT Fences Free YouTube Download version 3.1.42.1212 Google Chrome Google Earth Google Update Helper Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678) HP Product Detection Java 7 Update 21 Java 7 Update 21 (64-bit) Java Auto Updater Junk Mail filter update Logitech-webcamsoftware Logitech Vid HD LWS Facebook LWS Gallery LWS Help_main LWS Launcher LWS Motion Detection LWS Pictures And Video LWS Video Mask Maker LWS VideoEffects LWS Webcam Software LWS WLM Plugin LWS YouTube Plugin McAfee Total Protection McAfee Virtual Technician Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile NLD Language Pack Microsoft Access MUI (Dutch) 2013 Microsoft Application Error Reporting Microsoft DCF MUI (Dutch) 2013 Microsoft Excel MUI (Dutch) 2013 Microsoft Groove MUI (Dutch) 2013 Microsoft InfoPath MUI (Dutch) 2013 Microsoft Lync MUI (Dutch) 2013 Microsoft Office 32-bit Components 2013 Microsoft Office Korrekturhilfen 2013 - Deutsch Microsoft Office OSM MUI (Dutch) 2013 Microsoft Office OSM UX MUI (Dutch) 2013 Microsoft Office Professional Plus 2013 Microsoft Office Proofing (Dutch) 2013 Microsoft Office Proofing Tools 2013 - English Microsoft Office Proofing Tools 2013 - Nederlands Microsoft Office Shared 32-bit MUI (Dutch) 2013 Microsoft Office Shared MUI (Dutch) 2013 Microsoft OneNote MUI (Dutch) 2013 Microsoft Outlook MUI (Dutch) 2013 Microsoft PowerPoint MUI (Dutch) 2013 Microsoft Publisher MUI (Dutch) 2013 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Microsoft Word MUI (Dutch) 2013 Movie Maker MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 Oracle VM VirtualBox 4.2.10 Outils de vérification linguistique 2013 de Microsoft Office - Français Photo Common Photo Gallery Realtek High Definition Audio Driver Samsung AllShare Security Update for CAPICOM (KB931906) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576) SES Driver Shared C Run-time for x64 Skype™ 6.3 Soluto swMSM Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD Tango TeamViewer 8 Temp File Cleaner The Royal Marines Commando (1.0) TrueCrypt Ultra ISO UltraISO Premium UltraISO Premium V9.53 Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft Access 2013 (KB2760350) 64-Bit Edition Update for Microsoft Excel 2013 (KB2760339) 64-Bit Edition Update for Microsoft Lync 2013 (KB2768004) 64-Bit Edition Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition Update for Microsoft Office 2013 (KB2726961) 64-Bit Edition Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition Update for Microsoft Office 2013 (KB2737954) 64-Bit Edition Update for Microsoft Office 2013 (KB2752025) 64-Bit Edition Update for Microsoft Office 2013 (KB2752094) 64-Bit Edition Update for Microsoft Office 2013 (KB2752101) 64-Bit Edition Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition Update for Microsoft Office 2013 (KB2760343) 64-Bit Edition Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition Update for Microsoft Office 2013 (KB2767860) 64-Bit Edition Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition Update for Microsoft Office 2013 (KB2768333) 64-Bit Edition Update for Microsoft Office 2013 (KB2768349) 64-Bit Edition Update for Microsoft Office 2013 (KB2768355) 64-Bit Edition Update for Microsoft Office 2013 (KB2810010) 64-Bit Edition Update for Microsoft OneNote 2013 (KB2760334) 64-Bit Edition Update for Microsoft OneNote 2013 (KB2768011) 64-Bit Edition Update for Microsoft Outlook 2013 (KB2810015) 64-Bit Edition Update for Microsoft PowerPoint 2013 (KB2726947) 64-Bit Edition Update for Microsoft PowerPoint 2013 (KB2727013) 64-Bit Edition Update for Microsoft SkyDrive Pro (KB2810019) 64-Bit Edition Update for Microsoft Visio 2013 (KB2810008) 64-Bit Edition Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition Update for Microsoft Word 2013 (KB2752073) 64-Bit Edition Update for Microsoft Word 2013 (KB2768007) 64-Bit Edition Update for Microsoft Word 2013 (KB2768337) 64-Bit Edition VirusTotal Uploader 2.0 VLC media player 2.0.6 VSO ConvertXtoDVD 5 WD SmartWare Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM (01/19/2011 1.0.0009.0) Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live Messenger Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinRAR 4.20 (64-bit) ==== Deleting Files \ Folders ====================== "C:\Program Files (x86)\Common Files\DVDVideoSoft\bin" deleted "C:\Program Files (x86)\GoforFiles" deleted "C:\Users\Brian\AppData\Roaming\GoforFiles" deleted "C:\Windows\SysWow64\AI_RecycleBin" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-05-14 22:10:13 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2013-05-14 22:10:13 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2013-05-14 22:10:13 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2013-05-14 22:10:13 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2013-05-14 22:10:13 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe ====== C:\Users\Brian\AppData\Local\Temp ==== ====== C:\Windows\SysWOW64 ===== 2013-05-15 22:26:28 49834B94A8E8383B700EDDEF46C2AE6A 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2013-05-15 22:26:28 28AEB03752D716BF149DBC93A9ACC17E 391168 ----a-w- C:\Windows\SysWOW64\ieui.dll 2013-05-15 22:26:27 DFDBC397D0DDBD1AFA3CB400D4C003A9 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2013-05-15 22:26:27 3CC9825BFFE7B7429C8B79B0395ACDA8 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2013-05-15 22:26:26 F59A16A9418044C1D505C53DA370B099 2046976 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2013-05-15 22:26:26 5915AA67DECA289F7B4AFB686CDB09E9 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-05-15 22:26:26 52AA8A8DA4175580F365D275EB53DBE3 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2013-05-15 22:26:26 366D8EA2ADCBA228C9487BC6D2427DDC 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2013-05-15 22:26:25 65C95886E1B17001ADDF163AC18C5525 1130496 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2013-05-15 22:26:24 C9A062F32FF600C96795B43CD9A53151 2877440 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2013-05-15 22:26:24 0142341520F0A0F2B0E312335B96705B 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll 2013-05-15 22:26:23 5ABB3F36AF17007F33FA275E96A2C95E 1767424 ----a-w- C:\Windows\SysWOW64\wininet.dll 2013-05-15 22:26:23 03180AFD271BFD88813F428421BC4A1A 39424 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2013-05-15 22:26:21 7A468BC721C1D34E60389D3F2F87BBEA 14323712 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2013-05-15 22:26:19 D5E5A86F49ACC11768D8339094C3AFD8 13760512 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2013-05-15 22:22:29 E904178851A6A44BFA97E064EF779E9D 1796096 ----a-w- C:\Windows\SysWOW64\authui.dll 2013-05-15 22:22:29 565D78187494FB5F08B5A52DEB2AEA7A 12872704 ----a-w- C:\Windows\SysWOW64\shell32.dll 2013-05-15 22:22:28 1F05F5A16881CD928C82D53CEFCF4477 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll 2013-05-10 22:49:24 CB4CC3D4EA7C94A35F1D81C3D750BC8D 626688 ----a-w- C:\Windows\SysWOW64\vp7vfw.dll 2013-05-10 22:49:24 6D22E6E5F03CDA4EEBED1E68CCAA1695 1184984 ----a-w- C:\Windows\SysWOW64\wvc1dmod.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-05-15 22:26:28 9B2BB51ED6D28860A48CFF46FD6D3DC1 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2013-05-15 22:26:27 FE6CB2001A8C2A85B617CD3FC85D8242 526336 ----a-w- C:\Windows\Sysnative\ieui.dll 2013-05-15 22:26:27 97588F2871E1FE8E3EB57B17B98DF03B 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll 2013-05-15 22:26:27 42758AF68D3C4912C8D8A18088AD2555 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2013-05-15 22:26:27 168602AB16D30D5D6E091CA609FC7E75 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll 2013-05-15 22:26:26 EC6E8273B6CB79CA5B7B00CA82D1FCEE 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2013-05-15 22:26:26 A197763AA7487807279AB61CD6835CEF 89600 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe 2013-05-15 22:26:26 9D6B9124B582F0FBF275B434CE5A672C 2647552 ----a-w- C:\Windows\Sysnative\iertutil.dll 2013-05-15 22:26:26 7DAA72F6C30D81EE31EC2BDC90054326 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2013-05-15 22:26:25 E34F0440799F9A0F9DC4265F4ADA75C1 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll 2013-05-15 22:26:24 772EC073332D1BA2DBEC32C6D063811A 855552 ----a-w- C:\Windows\Sysnative\jscript.dll 2013-05-15 22:26:24 2C96C695B6015042AC867EA419A45C20 3958784 ----a-w- C:\Windows\Sysnative\jscript9.dll 2013-05-15 22:26:23 254502230F2259D255D4149C235173B1 53248 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2013-05-15 22:26:22 27A9000C534AA9BADC9EE74940F50C6D 2242048 ----a-w- C:\Windows\Sysnative\wininet.dll 2013-05-15 22:26:20 C56EF4C50A1FEED0CC9B7AE068CBBBBB 19231232 ----a-w- C:\Windows\Sysnative\mshtml.dll 2013-05-15 22:26:19 7F4F74880E0B586EB7A9E225C34B1296 15404032 ----a-w- C:\Windows\Sysnative\ieframe.dll 2013-05-15 22:22:46 943F527DF79E6B400104341AA7023C75 144384 ----a-w- C:\Windows\Sysnative\cdd.dll 2013-05-15 22:22:30 3EF480BFED1B5947A32585E30A58D4ED 1930752 ----a-w- C:\Windows\Sysnative\authui.dll 2013-05-15 22:22:30 1BFC94665BCA35F9001ADC7BFB167C63 14172672 ----a-w- C:\Windows\Sysnative\shell32.dll 2013-05-15 22:22:29 E948D1D42DC68923ABD75EEB5BCCD1D3 111448 ----a-w- C:\Windows\Sysnative\consent.exe 2013-05-15 22:22:29 22A0AE97360C1B146FDD9AA55AC0E989 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll 2013-05-15 22:22:28 9D2A2369AB4B08A4905FE72DB104498F 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll 2013-05-15 22:22:11 FE90B750AB808FB9DD8FBB428B5FF83B 230400 ----a-w- C:\Windows\Sysnative\wwansvc.dll 2013-05-15 22:22:10 30B1489F2DCD8DC1AB6BB60CA6093615 48640 ----a-w- C:\Windows\Sysnative\wwanprotdim.dll 2013-05-15 22:22:09 A11523523B31086DD760C0189C763359 3153920 ----a-w- C:\Windows\Sysnative\win32k.sys ====== C:\Windows\Sysnative\drivers ===== 2013-05-15 22:22:47 AF2E16242AA723F68F461B6EAE2EAD3D 983400 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys 2013-05-15 22:22:46 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys 2013-05-04 00:47:31 F9369327409492097B0BB7CE86BD29DE 54728 ----a-w- C:\Windows\Sysnative\drivers\Soluto.sys 2013-04-28 00:35:00 77BFCA72B55C8C1C0C8EDF1FB52652A2 2641 ----a-w- C:\Windows\Sysnative\drivers\mfencrk.inf 2013-04-28 00:34:58 C16150366CEE541DE9E09E0267041B92 2946 ----a-w- C:\Windows\Sysnative\drivers\mfencbdc.inf 2013-04-28 00:34:46 852681A14AFEE00C0C3179429A08C868 197264 ----a-w- C:\Windows\Sysnative\drivers\HipShieldK.sys 2013-04-24 13:27:58 B98F8C6E31CD07B2E6F71F7F648E38C0 1656680 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-05-13 01:47:58 -------- d-----w- C:\Program Files\Soluto 2013-05-08 01:55:46 -------- d-----w- C:\Program Files\Common Files\DESIGNER 2013-05-08 01:55:29 -------- d-----w- C:\Program Files\Microsoft.NET 2013-05-08 01:54:28 -------- d-----w- C:\Program Files\Microsoft SQL Server ======= C:\Program Files (x86) ===== 2013-05-10 22:49:21 -------- d-----w- C:\Program Files (x86)\VSO 2013-05-08 01:55:29 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server 2013-05-08 01:22:09 -------- d-----w- C:\Program Files (x86)\Common Files\EZB Systems 2013-05-08 01:22:07 -------- d-----w- C:\Program Files (x86)\UltraISO 2013-05-01 22:56:22 -------- d-----w- C:\Program Files (x86)\GPLGS 2013-05-01 22:55:48 -------- d-----w- C:\Program Files (x86)\Acro Software 2013-04-23 23:02:40 -------- d-----w- C:\Program Files (x86)\Ultra ISO UltraISO Premium 2013-04-23 22:23:17 -------- d-----w- C:\Program Files (x86)\FreeTime 2013-04-23 00:50:03 -------- d-----w- C:\Program Files (x86)\WinRAR ======= C: ===== 2013-05-16 20:08:47 F3D91D1C4762A94B45A5DE0D1A905884 1011 ----a-w- C:\AdwCleaner[s1].txt 2013-05-16 20:08:17 BCEA0D18612D601A1401D104857F8E69 1569 ----a-w- C:\AdwCleaner[R1].txt ====== C:\Users\Brian\AppData\Roaming ====== 2013-05-14 22:17:44 -------- d-----w- C:\users\Public\AppData\Local\temp 2013-05-14 22:17:44 -------- d-----w- C:\users\Default\AppData\Local\temp 2013-05-14 22:17:44 -------- d-----w- C:\users\Default User\AppData\Local\temp 2013-05-14 18:49:42 -------- d-----w- C:\users\Brian\AppData\Roaming\vlc 2013-05-13 01:45:50 -------- d-----w- C:\users\Brian\AppData\Local\Evernote 2013-05-13 01:45:34 -------- d-----w- C:\users\Brian\AppData\Locallow\Evernote 2013-05-12 01:44:27 44535FED9EC8C634443214F81E89C35C 886208 ----a-w- C:\users\Brian\AppData\Local\census.cache 2013-05-12 01:43:53 89D280C722C87287C9EA99C42263F6CF 112542 ----a-w- C:\users\Brian\AppData\Local\ars.cache 2013-05-12 01:34:42 29CBC916CB9EB3ED5B74CE087E13443E 36 ----a-w- C:\users\Brian\AppData\Local\housecall.guid.cache 2013-05-10 22:49:46 AF7CE12C4F3DC8CB2B07685C916BBCFE 82816 ----a-w- C:\users\Brian\AppData\Roaming\pcouffin.sys 2013-05-10 22:49:46 7F13C6D2AE5F9D8B41E9D7D6CAD16EAA 1167 ----a-w- C:\users\Brian\AppData\Roaming\pcouffin.inf 2013-05-10 22:49:46 1E7BDB2AC98BCE13AE85C0F6DB1ECCB8 7859 ----a-w- C:\users\Brian\AppData\Roaming\pcouffin.cat 2013-05-10 22:49:45 -------- d-----w- C:\users\Brian\AppData\Roaming\Vso 2013-05-08 02:55:44 -------- d-----w- C:\users\Brian\AppData\Local\Stardock_Corporation 2013-05-08 02:37:53 -------- d-----w- C:\users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-05-08 02:03:34 -------- d-----w- C:\users\Brian\AppData\Local\Microsoft Toolkit 2013-05-01 22:57:08 -------- d-----w- C:\users\Brian\AppData\Local\CutePDF Writer 2013-04-23 23:02:40 -------- d-----w- C:\users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ultra ISO UltraISO Premium ====== C:\Users\Brian ====== 2013-05-14 18:44:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2013-05-13 01:47:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soluto 2013-05-12 00:36:36 -------- dc-h--w- C:\ProgramData\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6} 2013-05-12 00:36:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock 2013-05-11 23:46:45 -------- d--h--w- C:\ProgramData\Common Files 2013-05-10 23:20:07 -------- d-----w- C:\ProgramData\vsosdk 2013-05-10 22:49:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO 2013-05-10 22:49:21 -------- d-----w- C:\ProgramData\VSO 2013-05-08 02:56:51 -------- d-----w- C:\ProgramData\Stardock 2013-05-08 02:37:53 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-05-08 01:56:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2013-05-08 01:22:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO 2013-05-01 22:55:50 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF 2013-04-30 22:36:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth 2013-04-23 00:51:22 -------- d-----w- C:\ProgramData\Webroot ====== C: exe-files == 2013-05-16 22:31:16 3D733BC348BBC06D930CDB3B9FE69F1B 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2391213282-3725655521-2080561922-1000\$ILFLJHA.exe 2013-05-16 21:18:01 D72D08898E2BA14B8FD6E9533C714385 307712 ----a-w- C:\Users\Brian\Desktop\UpdateChecker.exe 2013-05-16 20:07:45 0A90C8A3F94564E7EAF541981EAFA52A 632031 ----a-w- C:\Users\Brian\Desktop\adwcleaner.exe 2013-05-16 20:01:56 16E51F8B9F2935003AE46258C8BA933F 49216 ----a-w- C:\ProgramData\Soluto\Temp\SkypeAppControl_2d1fe7f0-2ac2-4c9d-be63-7f18e1abc9ec\PCGAppControlPluginLoader.exe 2013-05-16 20:01:54 16E51F8B9F2935003AE46258C8BA933F 49216 ----a-w- C:\ProgramData\Soluto\Temp\DropboxAppControl_6b91fa34-944e-4595-a38a-eeb76b91ff43\PCGAppControlPluginLoader.exe 2013-05-16 00:53:22 45595C57996A48917A8933BD5ED1B6D1 1792697 ----a-w- C:\Users\Brian\Desktop\voorkamer pc\TempFileCleaner_3.1.1b_Setup.exe 2013-05-16 00:31:57 7784ACAC132C27E20B7A59688D6114FA 1886165 ----a-w- C:\Users\Brian\Desktop\Op Nas schijf zetten\WinRAR 4.20 32bits.64bits + Crack\Winrar 64 Bit 32 Bit nl\wrar420nl.exe 2013-05-16 00:31:50 8B265CCA436DF81B113B9A43A215E4D9 2023116 ----a-w- C:\Users\Brian\Desktop\Op Nas schijf zetten\WinRAR 4.20 32bits.64bits + Crack\Winrar 64 Bit 32 Bit nl\winrar-x64-420nl.exe 2013-05-15 22:26:27 42758AF68D3C4912C8D8A18088AD2555 51712 ----a-w- C:\Windows\System32\ie4uinit.exe 2013-05-15 22:26:26 A197763AA7487807279AB61CD6835CEF 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-05-15 22:26:26 5915AA67DECA289F7B4AFB686CDB09E9 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-05-15 22:26:25 CEA304830B4770BDA3572B87D0841848 775232 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2013-05-15 22:26:25 AAD90795E84E710543C6C7C2F7048E30 770608 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2013-05-15 22:22:29 E948D1D42DC68923ABD75EEB5BCCD1D3 111448 ----a-w- C:\Windows\System32\consent.exe 2013-05-15 17:47:05 16E51F8B9F2935003AE46258C8BA933F 49216 ----a-w- C:\ProgramData\Soluto\Temp\SkypeAppControl_11b038e7-192f-4895-987f-2dbd909e49cb\PCGAppControlPluginLoader.exe 2013-05-15 17:47:04 16E51F8B9F2935003AE46258C8BA933F 49216 ----a-w- C:\ProgramData\Soluto\Temp\DropboxAppControl_b153076b-e7d2-4dd1-9043-976e5c200d61\PCGAppControlPluginLoader.exe 2013-05-14 22:10:13 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2013-05-14 22:10:13 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2013-05-14 22:10:13 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2013-05-14 22:10:13 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2013-05-14 22:10:13 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe 2013-05-14 18:44:42 8BB93B720F82C8621FF28B16F2581292 224388 ----a-w- C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe 2013-05-14 17:01:44 8F11F0321ED84B1533FC1384AC71AC8D 59784 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdateBroker.exe 2013-05-14 17:01:44 00F714CA28A01FACB709486D6DA306A8 59784 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdateOnDemand.exe 2013-05-14 17:01:41 C26BB2535C1B20DEAFAEB12634BF4DC9 781592 ----a-w- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdateSetup.exe 2013-05-14 17:01:37 76B35CB0F3A4E69D6DFF27F542B9F856 216968 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe 2013-05-14 17:01:37 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdate.exe 2013-05-14 17:01:37 4E252E85E5DC31BD645E809222AFAF27 287624 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe 2013-05-14 17:01:36 C26BB2535C1B20DEAFAEB12634BF4DC9 781592 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.145\GoogleUpdateSetup.exe 2013-05-13 22:51:40 16E51F8B9F2935003AE46258C8BA933F 49216 ----a-w- C:\ProgramData\Soluto\Temp\SkypeAppControl_56bdea89-a2d4-402b-8a7c-3ce27847a0fe\PCGAppControlPluginLoader.exe 2013-05-13 22:51:35 16E51F8B9F2935003AE46258C8BA933F 49216 ----a-w- C:\ProgramData\Soluto\Temp\DropboxAppControl_c1e00c09-7f56-47c8-81ed-12ca0c50d499\PCGAppControlPluginLoader.exe 2013-05-12 00:36:36 7587E45629A5A42138F17695991E3E4B 3349784 -c--a-w- C:\ProgramData\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6}\Fences.exe 2013-05-12 00:27:27 34B194AD7DC60EED8CCCA6CBCD620BAE 3891712 ----a-w- C:\Program Files (x86)\Stardock\Fences\Fences.exe 2013-05-10 22:49:39 26EB37E6B602420B1C4AF1B019D8103A 4154128 ----a-w- C:\ProgramData\VSO\ConvertXToDVD\5\Lang\EditLoc_online.exe 2013-05-10 22:49:24 9338A77C9FA83B346D3C32B0CE76DB52 2279464 ----a-w- C:\Program Files (x86)\VSO\pcsetup\PcSetup.exe 2013-05-10 22:49:21 BD74997525BA93129B6021EA171ABF00 1188613 ----a-w- C:\Program Files (x86)\VSO\ConvertX\5\unins000.exe 2013-05-10 22:49:21 5D98F38A7F451B76DEDBA02E964D2BE3 14891928 ----a-w- C:\Program Files (x86)\VSO\ConvertX\5\ConvertXtoDvd.exe === C: other files == 2013-05-15 22:22:47 AF2E16242AA723F68F461B6EAE2EAD3D 983400 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2013-05-15 22:22:46 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2013-05-15 22:22:09 A11523523B31086DD760C0189C763359 3153920 ----a-w- C:\Windows\System32\win32k.sys 2013-05-14 22:10:50 3887C4363A3C39126145B8BB2F01ED88 5854 ----a-w- C:\Qoobox\BackEnv\SetPath.bat 2013-05-13 01:48:03 F9369327409492097B0BB7CE86BD29DE 54728 -c--a-w- C:\Windows\System32\DRVSTORE\Soluto_93592E1767B385F5C00F947192FF633934D8A80B\Soluto.sys 2013-05-10 22:49:46 AF7CE12C4F3DC8CB2B07685C916BBCFE 82816 ----a-w- C:\Users\Brian\AppData\Roaming\pcouffin.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-2391213282-3725655521-2080561922-1000\Software\Microsoft\Windows\CurrentVersion\Run] "ccleaner"="C:\Program Files\CCleaner\CCleaner64.exe /AUTO" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "mcpltui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ccleaner"="C:\Program Files\CCleaner\CCleaner64.exe /AUTO" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Soluto"="c:\program files\soluto\soluto.exe /init" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AllShareAgent] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AllShareAgent" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Samsung\\AllShare\\AllShareAgent.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msnmsgr" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Windows Live\\Messenger\\msnmsgr.exe\" /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate] ==== Startup Folders ====================== 2013-01-16 23:23:48 1318 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk 2013-01-16 23:23:48 1373 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDSmartWare.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [27-04-2013 00:11] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19-01-2013 00:50] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [undertermined Task] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[04-12-2012 10:47] TV - Brian - Default\Extensions\beobeededemalmllhkmnkinmfembdimh YouTube - Brian - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Facebook - Brian - Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm Last updated at time on date - Brian - Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Tetris - Brian - Default\Extensions\cfpkpcnigdggonhlcmbekffepnaflofk Google Search - Brian - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf NS Reisplanner - Brian - Default\Extensions\fffdkieelgoekdbgncjjhaaocoglbeoi SiteAdvisor - Brian - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho AdBlock - Brian - Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Evernote Web - Brian - Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol Google Maps - Brian - Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh Teletekst - Brian - Default\Extensions\noblnklnhglbnfomoipgcidnbpdjfbom Background Tab - Brian - Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic Yann Arthus-Bertrand - Brian - Default\Extensions\plaekpceeonanmjojailaojkconcgofc ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.nl/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.nl/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {05A8F272-D5B3-429A-9A9D-AA2610F0C434} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Reset Google Chrome ====================== C:\users\Brian\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\users\Brian\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Brian\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\users\Brian\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Brian\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on vr 17-05-2013 at 20:16:37,27 ======================

adware log. [ATTACH]25909[/ATTACH] AdwCleaner[S1].txt

adware cleaner log. [ATTACH]25908[/ATTACH] AdwCleaner[S1].txt

dit zit er in de map.

oke wat kan ik nu doen dan?

combofixlog.ComboFix 13-05-14.01 - Rajni 15-05-2013 0:18.4.2 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3839.1989 [GMT 2:00] Gestart vanuit: c:\users\Rajni\Desktop\ComboFix.exe AV: McAfee Antivirus en antispyware *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892} FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9} SP: McAfee Antivirus en antispyware *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Rajni\AppData\Roaming\Microsoft\Network\Connections\Pbk\_hiddenPbk c:\users\Rajni\AppData\Roaming\Microsoft\Network\Connections\Pbk\_hiddenPbk\rasphone.pbk . . (((((((((((((((((((( Bestanden Gemaakt van 2013-04-14 to 2013-05-14 )))))))))))))))))))))))))))))) . . 2013-05-14 22:29 . 2013-05-14 22:29 -------- d-----w- c:\users\Public\AppData\Local\temp 2013-05-14 22:29 . 2013-05-14 22:29 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-05-14 02:25 . 2013-05-14 02:25 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help 2013-05-14 01:50 . 2013-05-14 01:50 -------- d-----w- c:\windows\KMSServerService 2013-05-14 01:17 . 2013-05-14 01:17 -------- d-----w- c:\program files\Common Files\DESIGNER 2013-05-14 01:16 . 2013-05-14 01:16 -------- d-----w- c:\program files (x86)\Microsoft SQL Server 2013-05-14 01:16 . 2013-05-14 01:16 -------- d-----w- c:\program files\Microsoft.NET 2013-05-14 01:15 . 2013-05-14 01:15 -------- d-----w- c:\programdata\regid.1991-06.com.microsoft 2013-05-14 01:12 . 2013-05-14 01:16 -------- d-----w- c:\program files\Microsoft SQL Server 2013-05-14 01:06 . 2013-05-14 01:06 -------- d-----w- c:\program files\Microsoft Analysis Services 2013-05-14 01:06 . 2013-05-14 01:06 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services 2013-05-14 01:05 . 2013-05-14 01:05 -------- d-----r- C:\MSOCache 2013-05-14 00:34 . 2013-05-14 00:41 -------- d-----w- c:\users\Rajni\AppData\Local\Microsoft Toolkit 2013-05-14 00:17 . 2013-05-14 00:17 -------- d-----w- c:\users\Rajni\AppData\Local\Microsoft Help 2013-05-14 00:17 . 2013-05-14 01:12 -------- d-----w- c:\program files\Microsoft Office 2013-05-14 00:17 . 2013-05-14 02:31 -------- d-----w- c:\programdata\Microsoft Help 2013-05-01 22:50 . 2013-05-01 22:51 -------- d-----w- c:\users\Rajni\AppData\Local\CutePDF Writer 2013-05-01 22:49 . 2013-05-01 22:49 -------- d-----w- c:\program files (x86)\GPLGS 2013-05-01 22:48 . 2012-10-04 17:49 87152 ----a-w- c:\windows\system32\cpwmon64.dll 2013-05-01 22:48 . 2013-05-01 22:48 -------- d-----w- c:\program files (x86)\Acro Software 2013-04-27 23:36 . 2013-04-04 03:35 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2013-04-25 17:35 . 2013-04-27 23:37 -------- d-----w- c:\program files (x86)\VideoLAN 2013-04-24 12:30 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys 2013-04-23 00:27 . 2013-04-23 00:27 971680 ----a-w- c:\windows\system32\deployJava1.dll 2013-04-23 00:27 . 2013-04-23 00:27 311200 ----a-w- c:\windows\system32\javaws.exe 2013-04-23 00:27 . 2013-04-23 00:27 1092512 ----a-w- c:\windows\system32\npDeployJava1.dll 2013-04-23 00:27 . 2013-04-23 00:27 188832 ----a-w- c:\windows\system32\javaw.exe 2013-04-23 00:27 . 2013-04-23 00:27 188320 ----a-w- c:\windows\system32\java.exe 2013-04-23 00:27 . 2013-04-23 00:27 108448 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll 2013-04-23 00:27 . 2013-04-23 00:27 -------- d-----w- c:\program files\Java 2013-04-23 00:23 . 2013-04-21 12:15 54728 ----a-w- c:\windows\system32\drivers\Soluto.sys 2013-04-23 00:23 . 2013-04-23 00:23 -------- d-----w- c:\program files\Soluto . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-05-14 17:56 . 2012-07-17 13:37 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-04-09 21:28 . 2013-01-16 00:08 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-04-09 21:28 . 2013-01-16 00:08 691592 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-04-09 20:58 . 2013-01-16 00:35 72702784 ----a-w- c:\windows\system32\MRT.exe 2013-03-19 06:04 . 2013-04-09 20:50 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-03-19 05:46 . 2013-04-09 20:50 43520 ----a-w- c:\windows\system32\csrsrv.dll 2013-03-19 05:04 . 2013-04-09 20:50 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe 2013-03-19 05:04 . 2013-04-09 20:50 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe 2013-03-19 04:47 . 2013-04-09 20:50 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll 2013-03-19 03:06 . 2013-04-09 20:50 112640 ----a-w- c:\windows\system32\smss.exe 2013-03-13 20:26 . 2013-03-13 20:26 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2013-03-13 20:26 . 2013-03-13 20:26 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll 2013-03-13 20:26 . 2013-03-13 20:26 61952 ----a-w- c:\windows\SysWow64\tdc.ocx 2013-03-13 20:26 . 2013-03-13 20:26 523264 ----a-w- c:\windows\SysWow64\vbscript.dll 2013-03-13 20:26 . 2013-03-13 20:26 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2013-03-13 20:26 . 2013-03-13 20:26 38400 ----a-w- c:\windows\SysWow64\imgutil.dll 2013-03-13 20:26 . 2013-03-13 20:26 361984 ----a-w- c:\windows\SysWow64\html.iec 2013-03-13 20:26 . 2013-03-13 20:26 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll 2013-03-13 20:26 . 2013-03-13 20:26 226304 ----a-w- c:\windows\system32\elshyph.dll 2013-03-13 20:26 . 2013-03-13 20:26 185344 ----a-w- c:\windows\SysWow64\elshyph.dll 2013-03-13 20:26 . 2013-03-13 20:26 158720 ----a-w- c:\windows\SysWow64\msls31.dll 2013-03-13 20:26 . 2013-03-13 20:26 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2013-03-13 20:26 . 2013-03-13 20:26 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2013-03-13 20:26 . 2013-03-13 20:26 138752 ----a-w- c:\windows\SysWow64\wextract.exe 2013-03-13 20:26 . 2013-03-13 20:26 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2013-03-13 20:26 . 2013-03-13 20:26 12800 ----a-w- c:\windows\SysWow64\mshta.exe 2013-03-13 20:26 . 2013-03-13 20:26 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2013-03-13 20:26 . 2013-03-13 20:26 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe 2013-03-13 20:26 . 2013-03-13 20:26 97280 ----a-w- c:\windows\system32\mshtmled.dll 2013-03-13 20:26 . 2013-03-13 20:26 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2013-03-13 20:26 . 2013-03-13 20:26 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll 2013-03-13 20:26 . 2013-03-13 20:26 81408 ----a-w- c:\windows\system32\icardie.dll 2013-03-13 20:26 . 2013-03-13 20:26 77312 ----a-w- c:\windows\system32\tdc.ocx 2013-03-13 20:26 . 2013-03-13 20:26 762368 ----a-w- c:\windows\system32\ieapfltr.dll 2013-03-13 20:26 . 2013-03-13 20:26 62976 ----a-w- c:\windows\system32\pngfilt.dll 2013-03-13 20:26 . 2013-03-13 20:26 599552 ----a-w- c:\windows\system32\vbscript.dll 2013-03-13 20:26 . 2013-03-13 20:26 52224 ----a-w- c:\windows\system32\msfeedsbs.dll 2013-03-13 20:26 . 2013-03-13 20:26 51200 ----a-w- c:\windows\system32\imgutil.dll 2013-03-13 20:26 . 2013-03-13 20:26 48640 ----a-w- c:\windows\system32\mshtmler.dll 2013-03-13 20:26 . 2013-03-13 20:26 452096 ----a-w- c:\windows\system32\dxtmsft.dll 2013-03-13 20:26 . 2013-03-13 20:26 441856 ----a-w- c:\windows\system32\html.iec 2013-03-13 20:26 . 2013-03-13 20:26 281600 ----a-w- c:\windows\system32\dxtrans.dll 2013-03-13 20:26 . 2013-03-13 20:26 27648 ----a-w- c:\windows\system32\licmgr10.dll 2013-03-13 20:26 . 2013-03-13 20:26 270848 ----a-w- c:\windows\system32\iedkcs32.dll 2013-03-13 20:26 . 2013-03-13 20:26 247296 ----a-w- c:\windows\system32\webcheck.dll 2013-03-13 20:26 . 2013-03-13 20:26 235008 ----a-w- c:\windows\system32\url.dll 2013-03-13 20:26 . 2013-03-13 20:26 216064 ----a-w- c:\windows\system32\msls31.dll 2013-03-13 20:26 . 2013-03-13 20:26 197120 ----a-w- c:\windows\system32\msrating.dll 2013-03-13 20:26 . 2013-03-13 20:26 173568 ----a-w- c:\windows\system32\ieUnatt.exe 2013-03-13 20:26 . 2013-03-13 20:26 167424 ----a-w- c:\windows\system32\iexpress.exe 2013-03-13 20:26 . 2013-03-13 20:26 1509376 ----a-w- c:\windows\system32\inetcpl.cpl 2013-03-13 20:26 . 2013-03-13 20:26 149504 ----a-w- c:\windows\system32\occache.dll 2013-03-13 20:26 . 2013-03-13 20:26 144896 ----a-w- c:\windows\system32\wextract.exe 2013-03-13 20:26 . 2013-03-13 20:26 1400416 ----a-w- c:\windows\system32\ieapfltr.dat 2013-03-13 20:26 . 2013-03-13 20:26 13824 ----a-w- c:\windows\system32\mshta.exe 2013-03-13 20:26 . 2013-03-13 20:26 136192 ----a-w- c:\windows\system32\iepeers.dll 2013-03-13 20:26 . 2013-03-13 20:26 135680 ----a-w- c:\windows\system32\IEAdvpack.dll 2013-03-13 20:26 . 2013-03-13 20:26 12800 ----a-w- c:\windows\system32\msfeedssync.exe 2013-03-13 20:26 . 2013-03-13 20:26 102912 ----a-w- c:\windows\system32\inseng.dll 2013-03-13 20:19 . 2013-01-17 16:56 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll 2013-03-13 20:19 . 2013-01-17 16:56 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll 2013-03-01 03:36 . 2013-04-09 20:51 3153408 ----a-w- c:\windows\system32\win32k.sys 2013-02-21 10:30 . 2013-04-09 20:56 1766912 ----a-w- c:\windows\SysWow64\wininet.dll 2013-02-21 10:29 . 2013-04-09 20:56 2877440 ----a-w- c:\windows\SysWow64\jscript9.dll 2013-02-21 10:29 . 2013-04-09 20:57 61440 ----a-w- c:\windows\SysWow64\iesetup.dll 2013-02-21 10:29 . 2013-04-09 20:57 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll 2013-02-21 10:15 . 2013-04-09 20:57 51712 ----a-w- c:\windows\system32\ie4uinit.exe 2013-02-21 10:15 . 2013-04-09 20:56 2240512 ----a-w- c:\windows\system32\wininet.dll 2013-02-21 10:14 . 2013-04-09 20:56 1365504 ----a-w- c:\windows\system32\urlmon.dll 2013-02-21 10:14 . 2013-04-09 20:56 19230208 ----a-w- c:\windows\system32\mshtml.dll 2013-02-21 10:14 . 2013-04-09 20:56 603136 ----a-w- c:\windows\system32\msfeeds.dll 2013-02-21 10:14 . 2013-04-09 20:56 3958784 ----a-w- c:\windows\system32\jscript9.dll 2013-02-21 10:14 . 2013-04-09 20:56 53248 ----a-w- c:\windows\system32\jsproxy.dll 2013-02-21 10:14 . 2013-04-09 20:56 855552 ----a-w- c:\windows\system32\jscript.dll 2013-02-21 10:14 . 2013-04-09 20:57 526336 ----a-w- c:\windows\system32\ieui.dll 2013-02-21 10:14 . 2013-04-09 20:57 67072 ----a-w- c:\windows\system32\iesetup.dll 2013-02-21 10:14 . 2013-04-09 20:56 136704 ----a-w- c:\windows\system32\iesysprep.dll 2013-02-21 10:14 . 2013-04-09 20:56 2647040 ----a-w- c:\windows\system32\iertutil.dll 2013-02-21 10:14 . 2013-04-09 20:57 39936 ----a-w- c:\windows\system32\iernonce.dll 2013-02-21 10:14 . 2013-04-09 20:56 15404544 ----a-w- c:\windows\system32\ieframe.dll 2013-02-19 12:01 . 2013-04-09 20:57 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb 2013-02-19 11:42 . 2013-04-09 20:57 2706432 ----a-w- c:\windows\system32\mshtml.tlb 2013-02-19 11:10 . 2013-04-09 20:57 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe 2013-02-19 10:51 . 2013-04-09 20:57 89600 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)] @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}" [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}] 2013-02-22 16:05 1722976 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)] @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}" [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}] 2013-02-22 16:05 1722976 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)] @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}" [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}] 2013-02-22 16:05 1722976 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584] "ccleaner"="c:\program files\CCleaner\CCleaner64.exe" [2013-04-23 6070040] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2010-1-21 2119488] WDSmartWare.lnk - c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe [2010-1-21 9136960] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) "UacDisableNotify"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc] @="" . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 KMSServerService;KMS Server Service;c:\windows\KMSServerService\KMS Server Service.exe DefaultPort DefaultKMSPID KillProcessOnPort [x] R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2012-06-27 36328] R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x] R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-09-20 102368] R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [2012-05-28 197264] R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys [2010-05-14 271712] R3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304] R3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\DRIVERS\mfencrk.sys [2012-11-02 97208] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-01 178824] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456] R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384] R3 SolutoRemoteService;Soluto Remote Service;c:\program files\Soluto\SolutoRemoteService.exe [2013-04-21 1245248] R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2012-06-27 157672] R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2012-06-27 16872] R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2012-06-27 177640] R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [2012-06-27 146920] R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-09-20 203104] R3 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-04-23 3574624] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] R3 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-01-18 450848] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-01-16 1255736] R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464] S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-12-26 339776] S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [2013-04-21 54728] S1 A2DDA;A2 Direct Disk Access Support Driver;c:\users\RAJNI\DESKTOP\EMSISOFT\RUN\a2ddax64.sys [2013-05-06 26176] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-02-02 202752] S2 HomeNetSvc;McAfee Home Network;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-03-05 221296] S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\progra~2\mcafee\SITEAD~1\mcsacore.exe [2012-12-04 103472] S2 McMPFSvc;McAfee Personal Firewall;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-03-05 221296] S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-03-05 221296] S2 mcpltsvc;McAfee Platform Services;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-03-05 221296] S2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [2012-10-06 1007288] S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-12-26 218320] S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-12-26 182312] S2 SolutoLauncherService;Soluto Launcher Service;c:\program files\Soluto\SolutoLauncherService.exe [2013-04-21 182848] S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2013-04-21 721472] S2 WDDMService;WD SmartWare Drive Manager Service;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2010-01-21 130048] S2 WDSmartWareBackgroundService;WD SmartWare Background Service;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [2009-06-16 20480] S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-12-26 69672] S3 cpuz136;cpuz136;c:\windows\TEMP\cpuz136\cpuz136_x64.sys [x] S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2012-01-18 351136] S3 LVUVC64;Logitech HD Webcam C310(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [2012-01-18 4865568] S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-12-26 515528] S3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\DRIVERS\mfencbdc.sys [2012-11-02 328976] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144] . . --- Andere Services/Drivers In Geheugen --- . *Deregistered* - mfeavfk01 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-04-12 22:47 1642448 ----a-w- c:\program files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe . Inhoud van de 'Gedeelde Taken' map . 2013-04-12 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-16 21:28] . 2013-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-08 19:41] . 2013-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-08 19:41] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)] @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}" [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}] 2013-02-22 15:59 2325624 ----a-w- c:\progra~1\MICROS~3\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)] @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}" [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}] 2013-02-22 15:59 2325624 ----a-w- c:\progra~1\MICROS~3\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)] @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}" [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}] 2013-02-22 15:59 2325624 ----a-w- c:\progra~1\MICROS~3\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Soluto"="c:\program files\soluto\soluto.exe" [2013-04-21 1285184] . [hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler] "{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files (x86)\Stardock\Fences\FencesMenu64.dll" [2010-06-22 253288] . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService FontCache . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://google.nl/ mLocal Page = c:\windows\SysWOW64\blank.htm IE: &Verzenden naar OneNote - c:\progra~1\MICROS~3\Office15\ONBttnIE.dll/105 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office15\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\S-1-5-21-721232407-3770601494-4236025715-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice] @Denied: (2) (LocalSystem) "Progid"="WindowsLiveMail.Email.1" . [HKEY_USERS\S-1-5-21-721232407-3770601494-4236025715-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="WindowsLiveMail.VCard.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee] "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2013-05-15 00:47:17 ComboFix-quarantined-files.txt 2013-05-14 22:47 ComboFix2.txt 2013-05-12 01:35 . Pre-Run: 274.122.752.000 bytes beschikbaar Post-Run: 274.127.060.992 bytes beschikbaar . - - End Of File - - 1FF955AC82BC5D6BA7D653D22F469883

combofixlog. ComboFix 13-05-14.01 - Brian 15-05-2013 0:11.6.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3959.2136 [GMT 2:00] Gestart vanuit: c:\users\Brian\Desktop\ComboFix.exe AV: McAfee Antivirus en antispyware *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892} FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9} SP: McAfee Antivirus en antispyware *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Brian\AppData\Roaming\Microsoft\Network\Connections\Pbk\_hiddenPbk c:\users\Brian\AppData\Roaming\Microsoft\Network\Connections\Pbk\_hiddenPbk\rasphone.pbk . . (((((((((((((((((((( Bestanden Gemaakt van 2013-04-14 to 2013-05-14 )))))))))))))))))))))))))))))) . . 2013-05-14 22:16 . 2013-05-14 22:16 -------- d-----w- c:\users\Public\AppData\Local\temp 2013-05-14 22:16 . 2013-05-14 22:16 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-05-14 18:49 . 2013-05-14 20:05 -------- d-----w- c:\users\Brian\AppData\Roaming\vlc 2013-05-13 01:47 . 2013-05-13 01:48 -------- d-----w- c:\program files\Soluto 2013-05-13 01:45 . 2013-05-13 01:45 -------- d-----w- c:\users\Brian\AppData\Local\Evernote 2013-05-13 01:45 . 2013-05-13 01:45 -------- d-----w- c:\program files (x86)\Evernote 2013-05-12 00:36 . 2013-05-12 00:36 -------- dc-h--w- c:\programdata\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6} 2013-05-11 23:46 . 2013-05-11 23:46 -------- d--h--w- c:\programdata\Common Files 2013-05-10 23:20 . 2013-05-10 23:20 -------- d-----w- c:\programdata\vsosdk 2013-05-10 22:49 . 2013-05-10 22:49 82816 ----a-w- c:\users\Brian\AppData\Roaming\pcouffin.sys 2013-05-10 22:49 . 2013-05-11 18:21 -------- d-----w- c:\users\Brian\AppData\Roaming\Vso 2013-05-10 22:49 . 2012-06-25 09:54 626688 ----a-w- c:\windows\SysWow64\vp7vfw.dll 2013-05-10 22:49 . 2012-06-25 09:54 1184984 ----a-w- c:\windows\SysWow64\wvc1dmod.dll 2013-05-10 22:49 . 2013-05-11 18:21 -------- d-----w- c:\programdata\VSO 2013-05-10 22:49 . 2013-05-10 22:49 -------- d-----w- c:\program files (x86)\VSO 2013-05-08 02:56 . 2013-05-08 13:00 -------- d-----w- c:\programdata\Stardock 2013-05-08 02:55 . 2013-05-08 02:55 -------- d-----w- c:\users\Brian\AppData\Local\Stardock_Corporation 2013-05-08 02:03 . 2013-05-08 02:05 -------- d-----w- c:\users\Brian\AppData\Local\Microsoft Toolkit 2013-05-08 01:55 . 2013-05-08 01:55 -------- d-----w- c:\program files\Common Files\DESIGNER 2013-05-08 01:55 . 2013-05-08 01:55 -------- d-----w- c:\program files\Microsoft.NET 2013-05-08 01:55 . 2013-05-08 01:55 -------- d-----w- c:\program files (x86)\Microsoft SQL Server 2013-05-08 01:54 . 2013-05-08 01:55 -------- d-----w- c:\program files\Microsoft SQL Server 2013-05-08 01:22 . 2013-05-08 01:22 -------- d-----w- c:\program files (x86)\Common Files\EZB Systems 2013-05-08 01:22 . 2013-05-08 01:22 -------- d-----w- c:\program files (x86)\UltraISO 2013-05-04 00:47 . 2013-05-07 16:20 54728 ----a-w- c:\windows\system32\drivers\Soluto.sys 2013-05-01 22:57 . 2013-05-08 13:22 -------- d-----w- c:\users\Brian\AppData\Local\CutePDF Writer 2013-05-01 22:56 . 2013-05-01 22:56 -------- d-----w- c:\program files (x86)\GPLGS 2013-05-01 22:55 . 2012-10-04 17:49 87152 ----a-w- c:\windows\system32\cpwmon64.dll 2013-05-01 22:55 . 2013-05-01 22:55 -------- d-----w- c:\program files (x86)\Acro Software 2013-04-30 23:53 . 2013-04-30 23:53 -------- d-----w- c:\users\Brian\Synology 2013-04-28 00:34 . 2012-05-28 08:28 197264 ----a-w- c:\windows\system32\drivers\HipShieldK.sys 2013-04-28 00:34 . 2013-04-28 00:34 -------- d-----w- c:\program files (x86)\McAfee.com 2013-04-28 00:34 . 2013-04-28 00:34 -------- d-----w- c:\program files (x86)\Common Files\McAfee 2013-04-28 00:33 . 2013-04-28 00:34 -------- d-----w- c:\program files\McAfee 2013-04-28 00:06 . 2012-12-26 07:52 182312 ----a-w- c:\windows\system32\mfevtps.exe 2013-04-28 00:06 . 2013-04-28 00:34 -------- d-----w- c:\program files\Common Files\McAfee 2013-04-27 23:59 . 2013-04-17 04:31 9317456 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E093EE89-9CA2-412A-B6D4-A14C11F773F7}\mpengine.dll 2013-04-26 12:30 . 2013-04-26 12:30 -------- d-----w- c:\program files (x86)\Common Files\Java 2013-04-26 12:29 . 2013-04-26 12:29 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2013-04-26 12:29 . 2013-04-26 12:29 -------- d-----w- c:\program files (x86)\Java 2013-04-24 13:27 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys 2013-04-23 23:02 . 2013-04-24 02:38 -------- d-----w- c:\program files (x86)\Ultra ISO UltraISO Premium 2013-04-23 22:25 . 2013-04-23 22:25 -------- d-----w- C:\FFOutput 2013-04-23 22:23 . 2013-04-23 23:08 -------- d-----w- c:\program files (x86)\FreeTime 2013-04-23 00:51 . 2013-04-23 00:56 -------- d-----w- c:\programdata\Webroot 2013-04-23 00:46 . 2013-05-14 02:53 -------- d-----w- c:\program files (x86)\GoforFiles 2013-04-23 00:46 . 2013-04-23 00:46 -------- d-----w- c:\users\Brian\AppData\Roaming\GoforFiles 2013-04-23 00:32 . 2013-04-23 00:31 311200 ----a-w- c:\windows\system32\javaws.exe 2013-04-23 00:32 . 2013-04-23 00:31 108448 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll 2013-04-23 00:32 . 2013-04-23 00:31 188832 ----a-w- c:\windows\system32\javaw.exe 2013-04-23 00:32 . 2013-04-23 00:31 188320 ----a-w- c:\windows\system32\java.exe 2013-04-18 01:21 . 2012-06-09 17:21 178688 ----a-w- c:\windows\SysWow64\unrar.dll 2013-04-17 18:24 . 2013-04-17 18:24 -------- d-----w- c:\windows\system32\wbem\Logs 2013-04-16 22:37 . 2013-04-16 22:37 -------- d-----w- c:\program files (x86)\Temp File Cleaner . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-05-12 00:15 . 2012-07-17 13:37 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-04-26 22:11 . 2013-01-16 23:44 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-04-26 22:11 . 2013-01-16 23:44 691592 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-04-26 12:29 . 2013-01-18 21:09 866720 ----a-w- c:\windows\SysWow64\npDeployJava1.dll 2013-04-26 12:29 . 2013-01-18 21:09 788896 ----a-w- c:\windows\SysWow64\deployJava1.dll 2013-04-23 00:31 . 2013-02-03 21:42 971680 ----a-w- c:\windows\system32\deployJava1.dll 2013-04-23 00:31 . 2013-02-03 21:42 1092512 ----a-w- c:\windows\system32\npDeployJava1.dll 2013-04-11 00:53 . 2013-01-16 20:37 72702784 ----a-w- c:\windows\system32\MRT.exe 2013-04-06 20:09 . 2013-04-06 20:09 231376 ----a-w- c:\windows\system32\drivers\truecrypt.sys 2013-03-19 06:04 . 2013-04-10 23:40 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-03-19 05:46 . 2013-04-10 23:40 43520 ----a-w- c:\windows\system32\csrsrv.dll 2013-03-19 05:04 . 2013-04-10 23:40 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe 2013-03-19 05:04 . 2013-04-10 23:40 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe 2013-03-19 04:47 . 2013-04-10 23:40 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll 2013-03-19 03:06 . 2013-04-10 23:40 112640 ----a-w- c:\windows\system32\smss.exe 2013-03-15 17:14 . 2013-04-05 02:21 237840 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys 2013-03-15 17:14 . 2013-03-15 17:14 131856 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys 2013-03-15 17:13 . 2013-04-05 02:20 120080 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys 2013-03-15 17:13 . 2013-03-15 17:13 146704 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys 2013-03-15 17:13 . 2013-03-15 17:13 204048 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll 2013-03-13 20:14 . 2013-03-13 20:14 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll 2013-03-13 20:14 . 2013-03-13 20:14 226304 ----a-w- c:\windows\system32\elshyph.dll 2013-03-13 20:14 . 2013-03-13 20:14 185344 ----a-w- c:\windows\SysWow64\elshyph.dll 2013-03-13 20:14 . 2013-03-13 20:14 158720 ----a-w- c:\windows\SysWow64\msls31.dll 2013-03-13 20:14 . 2013-03-13 20:14 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe 2013-03-13 20:14 . 2013-03-13 20:14 523264 ----a-w- c:\windows\SysWow64\vbscript.dll 2013-03-13 20:14 . 2013-03-13 20:14 38400 ----a-w- c:\windows\SysWow64\imgutil.dll 2013-03-13 20:14 . 2013-03-13 20:14 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2013-03-13 20:14 . 2013-03-13 20:14 138752 ----a-w- c:\windows\SysWow64\wextract.exe 2013-03-13 20:14 . 2013-03-13 20:14 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2013-03-13 20:14 . 2013-03-13 20:14 12800 ----a-w- c:\windows\SysWow64\mshta.exe 2013-03-13 20:14 . 2013-03-13 20:14 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2013-03-13 20:14 . 2013-03-13 20:14 61952 ----a-w- c:\windows\SysWow64\tdc.ocx 2013-03-13 20:14 . 2013-03-13 20:14 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2013-03-13 20:14 . 2013-03-13 20:14 361984 ----a-w- c:\windows\SysWow64\html.iec 2013-03-13 20:14 . 2013-03-13 20:14 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2013-03-13 20:14 . 2013-03-13 20:14 762368 ----a-w- c:\windows\system32\ieapfltr.dll 2013-03-13 20:14 . 2013-03-13 20:14 452096 ----a-w- c:\windows\system32\dxtmsft.dll 2013-03-13 20:14 . 2013-03-13 20:14 441856 ----a-w- c:\windows\system32\html.iec 2013-03-13 20:14 . 2013-03-13 20:14 281600 ----a-w- c:\windows\system32\dxtrans.dll 2013-03-13 20:14 . 2013-03-13 20:14 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll 2013-03-13 20:14 . 2013-03-13 20:14 216064 ----a-w- c:\windows\system32\msls31.dll 2013-03-13 20:14 . 2013-03-13 20:14 197120 ----a-w- c:\windows\system32\msrating.dll 2013-03-13 20:14 . 2013-03-13 20:14 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2013-03-13 20:14 . 2013-03-13 20:14 1400416 ----a-w- c:\windows\system32\ieapfltr.dat 2013-03-13 20:14 . 2013-03-13 20:14 97280 ----a-w- c:\windows\system32\mshtmled.dll 2013-03-13 20:14 . 2013-03-13 20:14 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll 2013-03-13 20:14 . 2013-03-13 20:14 81408 ----a-w- c:\windows\system32\icardie.dll 2013-03-13 20:14 . 2013-03-13 20:14 27648 ----a-w- c:\windows\system32\licmgr10.dll 2013-03-13 20:14 . 2013-03-13 20:14 270848 ----a-w- c:\windows\system32\iedkcs32.dll 2013-03-13 20:14 . 2013-03-13 20:14 247296 ----a-w- c:\windows\system32\webcheck.dll 2013-03-13 20:14 . 2013-03-13 20:14 235008 ----a-w- c:\windows\system32\url.dll 2013-03-13 20:14 . 2013-03-13 20:14 1509376 ----a-w- c:\windows\system32\inetcpl.cpl 2013-03-13 20:14 . 2013-03-13 20:14 144896 ----a-w- c:\windows\system32\wextract.exe 2013-03-13 20:14 . 2013-03-13 20:14 102912 ----a-w- c:\windows\system32\inseng.dll 2013-03-13 20:14 . 2013-03-13 20:14 62976 ----a-w- c:\windows\system32\pngfilt.dll 2013-03-13 20:14 . 2013-03-13 20:14 599552 ----a-w- c:\windows\system32\vbscript.dll 2013-03-13 20:14 . 2013-03-13 20:14 52224 ----a-w- c:\windows\system32\msfeedsbs.dll 2013-03-13 20:14 . 2013-03-13 20:14 51200 ----a-w- c:\windows\system32\imgutil.dll 2013-03-13 20:14 . 2013-03-13 20:14 173568 ----a-w- c:\windows\system32\ieUnatt.exe 2013-03-13 20:14 . 2013-03-13 20:14 167424 ----a-w- c:\windows\system32\iexpress.exe 2013-03-13 20:14 . 2013-03-13 20:14 149504 ----a-w- c:\windows\system32\occache.dll 2013-03-13 20:14 . 2013-03-13 20:14 13824 ----a-w- c:\windows\system32\mshta.exe 2013-03-13 20:14 . 2013-03-13 20:14 136192 ----a-w- c:\windows\system32\iepeers.dll 2013-03-13 20:14 . 2013-03-13 20:14 135680 ----a-w- c:\windows\system32\IEAdvpack.dll 2013-03-13 20:14 . 2013-03-13 20:14 12800 ----a-w- c:\windows\system32\msfeedssync.exe 2013-03-13 20:14 . 2013-03-13 20:14 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2013-03-13 20:14 . 2013-03-13 20:14 77312 ----a-w- c:\windows\system32\tdc.ocx 2013-03-13 20:14 . 2013-03-13 20:14 48640 ----a-w- c:\windows\system32\mshtmler.dll 2013-03-11 23:10 . 2013-01-15 21:51 282744 ------w- c:\windows\system32\MpSigStub.exe 2013-03-01 03:36 . 2013-04-10 23:41 3153408 ----a-w- c:\windows\system32\win32k.sys 2013-02-28 00:14 . 2013-02-28 00:14 773968 ----a-w- c:\windows\SysWow64\msvcr100.dll 2013-02-28 00:14 . 2013-02-28 00:14 421200 ----a-w- c:\windows\SysWow64\msvcp100.dll 2013-02-21 10:30 . 2013-04-11 00:52 1766912 ----a-w- c:\windows\SysWow64\wininet.dll 2013-02-21 10:29 . 2013-04-11 00:52 2877440 ----a-w- c:\windows\SysWow64\jscript9.dll 2013-02-21 10:29 . 2013-04-11 00:52 61440 ----a-w- c:\windows\SysWow64\iesetup.dll 2013-02-21 10:29 . 2013-04-11 00:52 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll 2013-02-21 10:15 . 2013-04-11 00:52 51712 ----a-w- c:\windows\system32\ie4uinit.exe 2013-02-21 10:15 . 2013-04-11 00:52 2240512 ----a-w- c:\windows\system32\wininet.dll 2013-02-21 10:14 . 2013-04-11 00:52 1365504 ----a-w- c:\windows\system32\urlmon.dll 2013-02-21 10:14 . 2013-04-11 00:52 19230208 ----a-w- c:\windows\system32\mshtml.dll 2013-02-21 10:14 . 2013-04-11 00:52 603136 ----a-w- c:\windows\system32\msfeeds.dll 2013-02-21 10:14 . 2013-04-11 00:52 3958784 ----a-w- c:\windows\system32\jscript9.dll 2013-02-21 10:14 . 2013-04-11 00:52 53248 ----a-w- c:\windows\system32\jsproxy.dll 2013-02-21 10:14 . 2013-04-11 00:52 855552 ----a-w- c:\windows\system32\jscript.dll 2013-02-21 10:14 . 2013-04-11 00:52 526336 ----a-w- c:\windows\system32\ieui.dll 2013-02-21 10:14 . 2013-04-11 00:52 67072 ----a-w- c:\windows\system32\iesetup.dll 2013-02-21 10:14 . 2013-04-11 00:52 136704 ----a-w- c:\windows\system32\iesysprep.dll 2013-02-21 10:14 . 2013-04-11 00:52 2647040 ----a-w- c:\windows\system32\iertutil.dll 2013-02-21 10:14 . 2013-04-11 00:52 39936 ----a-w- c:\windows\system32\iernonce.dll 2013-02-21 10:14 . 2013-04-11 00:52 15404544 ----a-w- c:\windows\system32\ieframe.dll 2013-02-19 12:01 . 2013-04-11 00:52 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb 2013-02-19 11:42 . 2013-04-11 00:52 2706432 ----a-w- c:\windows\system32\mshtml.tlb 2013-02-19 11:10 . 2013-04-11 00:52 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe 2013-02-19 10:51 . 2013-04-11 00:52 89600 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)] @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}" [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}] 2013-02-22 16:05 1722976 ----a-w- c:\progra~2\MICROS~3\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)] @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}" [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}] 2013-02-22 16:05 1722976 ----a-w- c:\progra~2\MICROS~3\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)] @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}" [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}] 2013-02-22 16:05 1722976 ----a-w- c:\progra~2\MICROS~3\Office15\GROOVEEX.DLL . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584] "ccleaner"="c:\program files\CCleaner\CCleaner64.exe" [2013-04-23 6070040] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "mcpltui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2013-02-28 454600] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2010-1-21 2119488] WDSmartWare.lnk - c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe [2010-1-21 9136960] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) "UacDisableNotify"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux2"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc] @="" . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R3 BthAvrcp;Bluetooth AVRCP-profiel;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 29184] R3 BVRPMPR5a64;BVRPMPR5a64 NDIS Protocol Driver;c:\windows\system32\drivers\BVRPMPR5a64.SYS [2010-09-27 35840] R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x] R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [2012-05-28 197264] R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys [2010-05-14 271712] R3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304] R3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\DRIVERS\mfencrk.sys [2012-11-01 97208] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-01 178824] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456] R3 SimpleSlideShowServer;SimpleSlideShowServer;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe [2012-03-02 27584] R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384] R3 SolutoRemoteService;Soluto Remote Service;c:\program files\Soluto\SolutoRemoteService.exe [2013-05-07 1671168] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2013-03-15 131856] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-01-16 1255736] R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464] S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-12-26 339776] S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [2013-05-07 54728] S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2013-03-15 237840] S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2013-03-15 120080] S2 HomeNetSvc;McAfee Home Network;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-03-05 221296] S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\progra~2\mcafee\SITEAD~1\mcsacore.exe [2012-12-04 103472] S2 McMPFSvc;McAfee Personal Firewall;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-03-05 221296] S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-03-05 221296] S2 mcpltsvc;McAfee Platform Services;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-03-05 221296] S2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [2012-10-06 1007288] S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-12-26 218320] S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-12-26 182312] S2 SamsungAllShareV2.0;Samsung AllShare PC;c:\program files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [2012-03-02 25504] S2 SolutoLauncherService;Soluto Launcher Service;c:\program files\Soluto\SolutoLauncherService.exe [2013-05-07 182848] S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2013-05-07 727616] S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-04-23 3574624] S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-01-18 450848] S2 WDDMService;WD SmartWare Drive Manager Service;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2010-01-21 130048] S2 WDSmartWareBackgroundService;WD SmartWare Background Service;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [2009-06-16 20480] S3 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-11-23 203264] S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2010-09-24 116752] S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-12-26 69672] S3 cpuz136;cpuz136;c:\windows\TEMP\cpuz136\cpuz136_x64.sys [x] S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2012-01-18 351136] S3 LVUVC64;Logitech HD Webcam C310(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [2012-01-18 4865568] S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-12-26 515528] S3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\DRIVERS\mfencbdc.sys [2012-11-01 328976] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-07-04 349800] S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2013-03-15 146704] . . --- Andere Services/Drivers In Geheugen --- . *Deregistered* - mfeavfk01 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-04-11 20:01 1642448 ----a-w- c:\program files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe . Inhoud van de 'Gedeelde Taken' map . 2013-04-27 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-16 22:11] . 2013-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-18 22:50] . 2013-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-18 22:50] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)] @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}" [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}] 2013-02-22 15:59 2325624 ----a-w- c:\progra~1\MICROS~3\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)] @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}" [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}] 2013-02-22 15:59 2325624 ----a-w- c:\progra~1\MICROS~3\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)] @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}" [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}] 2013-02-22 15:59 2325624 ----a-w- c:\progra~1\MICROS~3\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Soluto"="c:\program files\soluto\soluto.exe" [2013-05-07 1239104] . [hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler] "{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files (x86)\Stardock\Fences\FencesMenu64.dll" [2010-06-22 253288] . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService FontCache . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://google.nl/ mLocal Page = c:\windows\SysWOW64\blank.htm IE: &Verzenden naar OneNote - c:\progra~1\MICROS~3\Office15\ONBttnIE.dll/105 IE: Afbeelding knippen - c:\program files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office15\EXCEL.EXE/3000 IE: Kopieer selectie - c:\program files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 IE: Kopieer URL - c:\program files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 IE: Nieuwe notitie - c:\program files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html IE: Pagina opemen - c:\program files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 TCP: DhcpNameServer = 192.168.1.1 Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\S-1-5-21-2391213282-3725655521-2080561922-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice] @Denied: (2) (LocalSystem) "Progid"="WindowsLiveMail.Email.1" . [HKEY_USERS\S-1-5-21-2391213282-3725655521-2080561922-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="WindowsLiveMail.VCard.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee] "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2013-05-15 00:17:42 ComboFix-quarantined-files.txt 2013-05-14 22:17 . Pre-Run: 1.439.556.800.512 bytes beschikbaar Post-Run: 1.439.576.608.768 bytes beschikbaar . - - End Of File - - 48253DC7E9358F752516C94B232DF98B

ik heb het als administrator uitgevoerd maar als nog lukt het niet.

het lijkt er op dat de lijntjes niet verwijderd worden zie hier de logje. hijackthislog. Logfile of Trend Micro HijackThis v2.0.5 Scan saved at 13:39:04, on 14-5-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16537) Boot mode: Normal Running processes: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Users\Brian\Desktop\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office15\URLREDIR.DLL O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO O4 - Global Startup: WDDMStatus.lnk = C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe O4 - Global Startup: WDSmartWare.lnk = C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~3\Office15\ONBttnIE.dll/105 O8 - Extra context menu item: Afbeelding knippen - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Kopieer selectie - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 O8 - Extra context menu item: Kopieer URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 O8 - Extra context menu item: Nieuwe notitie - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html O8 - Extra context menu item: Pagina opemen - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 O9 - Extra button: (no name) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file) O9 - Extra button: (no name) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - (no file) O9 - Extra button: (no name) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - (no file) O9 - Extra button: (no name) - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - (no file) O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe O23 - Service: McAfee Personal Firewall (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Samsung AllShare PC (SamsungAllShareV2.0) - Samsung Electronics Co., Ltd. - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe O23 - Service: SimpleSlideShowServer - Samsung Electronics Co., Ltd. - C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: Soluto Launcher Service (SolutoLauncherService) - Soluto - C:\Program Files\Soluto\SolutoLauncherService.exe O23 - Service: Soluto Remote Service (SolutoRemoteService) - GlavSoft LLC. - C:\Program Files\Soluto\SolutoRemoteService.exe O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - C:\Program Files\Soluto\SolutoService.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: WD SmartWare Drive Manager Service (WDDMService) - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 12216 bytes

bij de eerste computer met surfen op internet en de tweede computer het opstarten van de pc en het surfen op internet

bij deze computer is het zelfde probleem. [ATTACH]25868[/ATTACH] hijackthis.log

hallo ik stuur bij deze een hijackthislog om dat mij pc traag is. [ATTACH]25867[/ATTACH] hijackthis.log

oke is dan hier mee alles opgelost na deze nieuwe installatie van windows neem ik aan?

ik heb mij windows helemaal opnieuw geinstaleerd ik had wel een vraag bij windows update staat er u ontvangt updates Alleen voor windows is dat goed genoeg want als ik updates voor anderen microsoft-producten downloaden klik met als eind tekst meer informatie dan kan ik iets downloaden op de microsoft site (Klik)

ik heb geen combofixlog kunnen maken want ik kreeg een bluescreen melding zie hier het resultaat met de hijackthislog bluescreen melding. •bug check string:IRQL_NOT_LESS_OR_EQUAL •bug check code:0x0000000a •caused by driver:hal.dll •de 4 parameters:fffff800`03a0eb07 [ATTACH]23567[/ATTACH] hijackthislog 2.txt

hier bij stuurd ik dan de twee logjes SysLog .txt SysError.txt

dit zijn de twee meldingen.

hoe moet ik dit opzoeken ctredr15.sys.