Ga naar inhoud

angeke

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    86

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door angeke

  1. angeke
    Hallo iEscape , er is geen instelling in de standaard mail app voor mails op te slaan mijn email account is gesynchroniseerd met de computer ,maar vind geen instellingen om die email adressen niet op te slaan. waar kan ik dat ergens vinden ? op de computer gebruik ik windows live mail. heb mijn account op S4 eens verwijderd en terug gezet ,en dan waren die adressen weg .maar nu staan er weeral adressen bij.
  2. angeke
    ik heb versie 5.0.1 ,en gebruik de standaad email app
  3. angeke
    hallo , als ik een email wil sturen ,komt er een lijst met email adressen die niet in mijn contacten staat , het zijn adressen van ontvangen emails en verstuurde emails ,maar ik zou die graag verwijderen ,want die staan niet tussen mijn contacten weet er iemand raad ,alle hulp is welkom dank u.
  4. angeke
    ja via de herstel cd, heb de sfc /scannow test geprobeerd ,maar die geeft dan dat ik terug moet opstarten en de test opnieuw moet uitvoeren .
  5. angeke
    ik heb geen opstart scherm ,dus kan de test niet uitvoeren
  6. angeke
    ja ,op de c schijf windows en een back up op de andere schijf.
  7. angeke
    via de herstel cd-rom ,dan opdrachtprompt ,notepad intikken en dan bestand openen ,zo zag ik de 2schijven
  8. angeke
    de test met de usb seatool is niet gelukt ,scherm blijf hangen op Free dos ,doet verder niks. heb de pagina van hp ook geprobeerd ,niks is gelukt. en neen kan de laptop niet opstarten in veilige modus.
  9. angeke
    heb via opdrachtprompt de c schijf kunnen bekijken alsook de backup op 2 de schijf. windows staat in beiden schijven. kan ik van daaruit windows herstellen ? hdd test met seatool gaat nog steeds niet. herstel cd gaat ook nog niet.
  10. angeke
    de seatool cd start op ,krijg dat een reeks witte woorden op het scherm gaat zeer snel ,en dan direct die gele paarse en dan niks meer het blijf zo staan.
  11. angeke
    dit krijg ik te zien
  12. angeke
    krijg een paar groene letters te zien en ,er onder paarse letters die ik niet kan lezen
  13. angeke
    hallo , mijn laptop is uitgevallen en wil niet meer opstarten. als ik hem opstart krijg ik dit beeld te zien heb dan de herstel cd geprobeerd maar het lukte niet kreeg dan dit beeld te zien weet er iemand hoe ik windows terug kan krijgen met dank.
  14. angeke
    hi veng, inderdaad ,heb eens geprobeerd en ja de flexkabel zat totaal los ,en ts gelukt de toetsen doen het weer. dank je voor de goeie raad.
  15. angeke
    ik kan niet in de bios ,de F2 toets werkt niet. alleen de toets g werkt goed ,alle andere niet.
  16. angeke
    hallo , het toetsenbord van mijn acer aspire 1410 werkt niet meer. ik kan alleen het toetsenbord gebruiken die op het scherm komt weet er iemand raad zodat ik het gewoon toetsenbord weer kan gebruiken met dank.
  17. angeke
    heb nu de app van ezcast op men telefoon gezet ,bij wifi instellingen zag ik dat ik geen ip adres krijg.
  18. angeke
    dank je fcbbrugge ,die heb ik ook gelezen en alles goed gedaan ,maar geen internet verbinding
  19. angeke
    hallo, heb een ezcast aangesloten op men tv en ook de app voor op de laptop maar krijg geen internet verbinding via de app voor op de tv. vind geen oplossing voor de verbinding met internet weet iemand soms hoe ik dit kan oplossen met dank.
  20. angeke
    probleem werd opgelost in topic spyware
  21. angeke
    delfix en ccleaner laten scannen alles ok. dank u wel kape voor u hulp en de grote schoonmaak. tot ziens
  22. angeke
    ja kape ,wist niet wat een rommel ik allemaal had staan..men laptop loopt nu als een trein en ik Kan weer downloaden.. # AdwCleaner v3.015 - Report created 15/12/2013 at 10:01:35 # Updated 10/12/2013 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : PB - LAPTOP # Running from : C:\Users\PB\Desktop\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\NCH Software Folder Deleted : C:\Program Files (x86)\NCH Software Folder Deleted : C:\Users\PB\AppData\Roaming\NCH Software File Deleted : C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\0\user.js File Deleted : C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js File Deleted : C:\Windows\System32\Tasks\NCH Software ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_youtube-downloader_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_youtube-downloader_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_all2wav-recorder_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_all2wav-recorder_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_audio-recorder_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_audio-recorder_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_free-sound-recorder_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_free-sound-recorder_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_line_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_line_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_nav4all_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_nav4all_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_photo-frames-effects_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_photo-frames-effects_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_photo-pos-pro_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_photo-pos-pro_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_phoxo_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_phoxo_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_proposter_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_proposter_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_vobsub_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_vobsub_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_whatsapp-messenger_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_whatsapp-messenger_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_windows-essentials-codec-pack_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_windows-essentials-codec-pack_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_zoner-photo-studio_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_zoner-photo-studio_RASMANCS Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AFB904C4-C255-4540-B97E-A75A34F1FFB0} Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}] Key Deleted : HKCU\Software\APN PIP Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\ilivid Key Deleted : HKCU\Software\NCH Software Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\AppDataLow\Software\Conduit Key Deleted : HKCU\Software\AppDataLow\Software\FreeHDSport TV Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\FreeHDSport TV Key Deleted : HKLM\Software\NCH Software Key Deleted : HKLM\Software\PIP Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16750 -\\ Mozilla Firefox v [ File : C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\0\prefs.js ] [ File : C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js ] ************************* AdwCleaner[R0].txt - [7096 octets] - [15/12/2013 09:59:29] AdwCleaner[s0].txt - [6975 octets] - [15/12/2013 10:01:35] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [7035 octets] ##########
  23. angeke
    Zoek.exe Version 4.0.0.5 Updated 14-December-2013 Tool run by PB on za 14/12/2013 at 23:02:46.32. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\PB\Desktop\Nieuwe map\zoek.exe [script inserted] [Checkboxes used] ==== System Restore Info ====================== 14/12/2013 23:06:08 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\MSXML 4.0 deleted successfully C:\PROGRA~2\Samsung deleted successfully C:\PROGRA~2\WinRAR deleted successfully C:\PROGRA~2\COMMON~1\Software Update Utility deleted successfully C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully C:\ProgramData\Oracle deleted successfully C:\Users\PB\AppData\Roaming\AccurateRip deleted successfully C:\Users\PB\AppData\Roaming\Media Player Classic deleted successfully C:\Users\PB\AppData\Local\CrashDumps deleted successfully C:\Users\PB\AppData\Local\DriverTuner deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully HKEY_CLASSES_ROOT\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== Deleted from C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\0\prefs.js: Added to C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\0\prefs.js: user_pref("browser.startup.homepage", "Google"); user_pref("browser.search.defaulturl", "Google="); user_pref("browser.newtab.url", "Google"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.defaultenginename", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.search.order.1", "Google"); user_pref("keyword.URL", "Google="); user_pref("browser.search.suggest.enabled", true); user_pref("browser.search.useDBForOrder", true); Deleted from C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js: Added to C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js: user_pref("browser.startup.homepage", "Google"); user_pref("browser.search.defaulturl", "Google="); user_pref("browser.newtab.url", "Google"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.defaultenginename", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.search.order.1", "Google"); user_pref("keyword.URL", "Google="); user_pref("browser.search.suggest.enabled", true); user_pref("browser.search.useDBForOrder", true); ProfilePath: C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\0 ---- FireFox user.js and prefs.js backups ---- user_20131412_2315_.backup prefs_20131412_2315_.backup ProfilePath: C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\extensions ---- FireFox user.js and prefs.js backups ---- user_20131412_2315_.backup prefs_20131412_2315_.backup ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Conduit deleted C:\PROGRA~2\COMMON~1\Wondershare deleted C:\Users\PB\AppData\Roaming\Wondershare deleted C:\Users\PB\AppData\Roaming\iWin deleted C:\ProgramData\APN deleted C:\Users\PB\AppData\Local\Ilivid Player deleted C:\Users\PB\AppData\Local\Wondershare deleted C:\Users\PB\AppData\LocalLow\PriceGong deleted C:\Users\PB\AppData\LocalLow\Conduit deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\Application Updater deleted C:\Windows\wininit.ini deleted "C:\Windows\tasks\Driver Booster Update.job" deleted "C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\torntv@torntv.com.xpi" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\PB\AppData\Local\Temp ==== 2013-12-14 15:54:07 662C39FC1E27131551D557862CEC47F0 935175 ------r- C:\Users\PB\AppData\Local\Temp\WPDNSE\{0176012E-0172-0177-2201-310152013801}\RSITx64.exe ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2013-12-11 10:42:34 6C4B2E1A25841077084EB9F76FF6FFA7 11410432 ----a-w- C:\Windows\SysWOW64\wmp.dll 2013-12-11 10:42:34 02DF0628BE8B64B84D50FBE53549AA3B 12625408 ----a-w- C:\Windows\SysWOW64\wmploc.DLL 2013-12-11 10:40:50 24CAD3C0F4068F20C2523092B12CB69E 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2013-12-11 10:40:49 5246654E85F936D81C10EB916EAA3515 391168 ----a-w- C:\Windows\SysWOW64\ieui.dll 2013-12-11 10:40:48 C6E4E4CB12035C7E957B040E9928D183 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-12-11 10:40:48 4F166DEA45D9A1AE1CD404A29D7A661D 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2013-12-11 10:40:48 4A777002A3E36FD7263B1454F3238AF2 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2013-12-11 10:40:48 3BAAA7B99BE74A1A93549772751D6504 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2013-12-11 10:40:47 AED28606A69169DF3D1142680AE8865A 2049024 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2013-12-11 10:40:46 E88AA25060A1A9940298ED0A279D3D46 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2013-12-11 10:40:45 B5F3BF5CFCB13282ACD790D5CBE52B80 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll 2013-12-11 10:40:44 EC9B165452E1F9F021913868EEB729F2 2877952 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2013-12-11 10:40:43 D9DFD27BCCE44BEE511B744E3E7ADF45 1140736 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2013-12-11 10:40:41 801D950902141C7C0B08CCC309D2680C 39424 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2013-12-11 10:40:41 3AA6FD9B534F17CBD5D311DDC077973C 1767936 ----a-w- C:\Windows\SysWOW64\wininet.dll 2013-12-11 10:40:40 AAB1AAC2A837F11C23187FFE0F5D314E 13761536 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2013-12-11 10:40:37 B8FAAC62ED026D87B3E743B339C92786 14356992 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2013-12-11 09:13:36 AFA53BD631FB0509A91A99391209BB70 301568 ----a-w- C:\Windows\SysWOW64\msieftp.dll 2013-12-11 09:13:33 E9504E484076585F6DA3C59F0E20E122 417792 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll 2013-12-11 09:13:32 E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 159232 ----a-w- C:\Windows\SysWOW64\imagehlp.dll 2013-12-11 09:13:31 A3B1D1312602280839A4A2AFBDFD066E 163840 ----a-w- C:\Windows\SysWOW64\scrrun.dll 2013-12-11 09:13:31 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\SysWOW64\cscript.exe 2013-12-11 09:13:31 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\SysWOW64\wscript.exe 2013-12-11 09:13:31 09F65975C1C9793B923BB52A7FA83453 121856 ----a-w- C:\Windows\SysWOW64\wshom.ocx 2013-12-11 09:13:26 4EC2C3B15B9EC41AD0D6CD918D20376E 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-12-11 10:42:35 AB272BBFB05A8585C3405EFA9F605774 12625920 ----a-w- C:\Windows\Sysnative\wmploc.DLL 2013-12-11 10:42:33 8CBBB27369F9F07BC5E874E750EAF9D0 14631424 ----a-w- C:\Windows\Sysnative\wmp.dll 2013-12-11 10:40:50 5E98D5E962D956A34029A3AF0E36638F 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2013-12-11 10:40:49 3C9B08BD73569E0122BF61A886B884E4 526336 ----a-w- C:\Windows\Sysnative\ieui.dll 2013-12-11 10:40:48 EE6BD8058D618C3660DEB992E6B463E4 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2013-12-11 10:40:48 EAF607F40E6370B888CA185B60F97AF0 89600 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe 2013-12-11 10:40:48 E8B56AF041CA4E9F5DFBAC315CA4EEA5 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll 2013-12-11 10:40:48 69066C0F7E2BDF63462388390A5DFB2C 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2013-12-11 10:40:48 04C800FF6BD1200E9524DB68A204ED89 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll 2013-12-11 10:40:47 7A94C5BB4A430394B3C3800281CBD3D0 2648576 ----a-w- C:\Windows\Sysnative\iertutil.dll 2013-12-11 10:40:46 4398619B257439867B80E7F5239479F1 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2013-12-11 10:40:45 C1AD905DCD475A88802FA8C4A5283AA6 855552 ----a-w- C:\Windows\Sysnative\jscript.dll 2013-12-11 10:40:45 422EF1C2294F03C56F9639BAF837A4B4 3959808 ----a-w- C:\Windows\Sysnative\jscript9.dll 2013-12-11 10:40:43 2DA75D0CC0A3CE775C7F823E6C2355DA 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll 2013-12-11 10:40:41 E7099336BF7531B6FCC920DCB5101259 2241536 ----a-w- C:\Windows\Sysnative\wininet.dll 2013-12-11 10:40:41 1184173F9E1961E1A0735E1F969055DD 53248 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2013-12-11 10:40:38 62608962D83846E12529032E56D97AC2 15404032 ----a-w- C:\Windows\Sysnative\ieframe.dll 2013-12-11 10:40:35 F164B9D9EB6AA4FED10AC2DA8CB4A89A 19271168 ----a-w- C:\Windows\Sysnative\mshtml.dll 2013-12-11 09:13:36 AC38EC8D0C1B4C783CA6A24D239A71B7 335360 ----a-w- C:\Windows\Sysnative\msieftp.dll 2013-12-11 09:13:34 97D50B0CABF18A6D40F8883D02DDB519 3155968 ----a-w- C:\Windows\Sysnative\win32k.sys 2013-12-11 09:13:33 B4F29F65AD3114051F01E9403346047F 81408 ----a-w- C:\Windows\Sysnative\imagehlp.dll 2013-12-11 09:13:33 4EDF8812713291DBBFDA67CE6215F236 465920 ----a-w- C:\Windows\Sysnative\WMPhoto.dll 2013-12-11 09:13:31 ECB021CA3370582F0C7244B0CF06732C 156160 ----a-w- C:\Windows\Sysnative\cscript.exe 2013-12-11 09:13:31 731131A477F69476F2D739B0DB6A9281 202752 ----a-w- C:\Windows\Sysnative\scrrun.dll 2013-12-11 09:13:31 05D80FF3483BD8F268B01703C859198A 150016 ----a-w- C:\Windows\Sysnative\wshom.ocx 2013-12-11 09:13:31 045451FA238A75305CC26AC982472367 168960 ----a-w- C:\Windows\Sysnative\wscript.exe 2013-12-11 09:13:26 5FD67F205773EC80674DBBD609DB5315 2048 ----a-w- C:\Windows\Sysnative\tzres.dll ====== C:\Windows\Sysnative\drivers ===== 2013-12-11 09:13:30 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys 2013-12-11 09:13:30 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys ====== C:\Windows\Tasks ====== 2013-11-29 16:37:29 -------- d-----w- C:\Windows\Sysnative\Tasks\NCH Software ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-12-14 15:55:35 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2013-11-29 16:37:15 -------- d-----w- C:\PROGRA~2\NCH Software 2013-11-18 11:24:58 -------- d-----w- C:\PROGRA~2\COMMON~1\Bcgsoft 2013-11-18 11:24:06 -------- d-----w- C:\PROGRA~2\Picture Collage Maker Pro ======= C: ===== ====== C:\Users\PB\AppData\Roaming ====== 2013-11-29 16:37:07 -------- d-----w- C:\Users\PB\AppData\Roaming\NCH Software 2013-11-18 11:24:43 -------- d-----w- C:\Users\PB\AppData\Roaming\PearlMountain ====== C:\Users\PB ====== 2013-12-14 15:53:59 662C39FC1E27131551D557862CEC47F0 935175 ------w- C:\Users\PB\Desktop\RSITx64.exe 2013-11-29 16:37:29 -------- d-----w- C:\ProgramData\NCH Software 2013-11-18 11:24:43 -------- d-----w- C:\ProgramData\PearlMountain 2013-11-18 11:24:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Collage Maker Pro ====== C: exe-files == 2013-12-14 15:55:35 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\PB.exe 2013-12-14 15:54:07 662C39FC1E27131551D557862CEC47F0 935175 ------r- C:\Users\PB\AppData\Local\Temp\WPDNSE\{0176012E-0172-0177-2201-310152013801}\RSITx64.exe 2013-12-14 15:53:59 662C39FC1E27131551D557862CEC47F0 935175 ------w- C:\Users\PB\Desktop\RSITx64.exe 2013-12-11 10:42:36 D21DD7BFC81C8623DE48EBB17133D59C 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe 2013-12-11 10:42:36 9AED8E824CF5FAAB67957EDBC5512060 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe 2013-12-11 10:40:48 EAF607F40E6370B888CA185B60F97AF0 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-12-11 10:40:48 C6E4E4CB12035C7E957B040E9928D183 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-12-11 10:40:48 A48AA87D52D2CC1D5E017A08D2409386 484352 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2013-12-11 10:40:48 69066C0F7E2BDF63462388390A5DFB2C 51712 ----a-w- C:\Windows\System32\ie4uinit.exe 2013-12-11 10:40:48 407A04BA1AC87A2F40F592191B62F3D0 469504 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2013-12-11 10:40:46 9ED469260687108F5F8FD544D56ABC54 770736 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2013-12-11 10:40:46 8E6225096C44271A88FD201C7188BDFC 775344 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2013-12-11 09:13:31 ECB021CA3370582F0C7244B0CF06732C 156160 ----a-w- C:\Windows\System32\cscript.exe 2013-12-11 09:13:31 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\SysWOW64\cscript.exe 2013-12-11 09:13:31 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\SysWOW64\wscript.exe 2013-12-11 09:13:31 045451FA238A75305CC26AC982472367 168960 ----a-w- C:\Windows\System32\wscript.exe === C: other files == 2013-12-11 09:13:34 97D50B0CABF18A6D40F8883D02DDB519 3155968 ----a-w- C:\Windows\System32\win32k.sys 2013-12-11 09:13:30 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys 2013-12-11 09:13:30 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BackupManagerTray"="C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe -h -k" "avgnt"="C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe /min" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Acer ePower Management"="C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AmIcoSinglun64] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AmIcoSinglun64" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\AmIcoSingLun\\AmIcoSinglun64.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BlueStacks Agent] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BlueStacks Agent" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\BlueStacks\\HD-Agent.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PLFSetI] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="PLFSetI" "hkey"="HKLM" "command"="C:\\Windows\\PLFSetI.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\StartCCC] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="StartCCC" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe\" MSRun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SynTPEnh] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SynTPEnh" "hkey"="HKLM" "command"="%ProgramFiles%\\Synaptics\\SynTP\\SynTPEnh.exe" ==== Startup Folders ====================== 2011-04-17 11:00:29 956 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [16/04/2013 08:57] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [16/04/2013 08:57] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\0" [c:\program files (x86)\internet explorer\iexplore.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\Driver Booster Scan" [C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] ==== Firefox Extensions ====================== ExtDir: C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\extensions - FreeHDSport TV 3 - %ExtDir%\fhdp3@freehdsp.tv.xpi ==== Firefox Plugins ====================== ==== Deleted Firefox Extensions ====================== C:\Users\PB\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\fhdp3@freehdsp.tv.xpi deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions jbpkiefagocgkmemidfngdkamloieekf - C:\Program Files (x86)\TornTV.com\torn11.crx[] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Skynet.be - LE portail belge - DE Belgische portaalsite!" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Skynet.be - LE portail belge - DE Belgische portaalsite!" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{DB51B70E-984B-47AB-A1AA-FB8DE1A53E80}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" {DB51B70E-984B-47AB-A1AA-FB8DE1A53E80} Google Url="{searchTerms - Google zoeken}" ==== Reset Google Chrome ====================== C:\Users\PB\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\PB\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2862025471-2898805017-301206441-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\PB\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\PB\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\PB\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Users\PB\AppData\Local\Temp will be emptied at reboot C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\PB\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on za 14/12/2013 at 23:28:48.71 ======================
  24. angeke
    Logfile of random's system information tool 1.09 (written by random/random) Run by PB at 2013-12-14 16:55:34 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 154 GB (68%) free of 225 GB Total RAM: 5886 MB (62% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:55:46, on 14/12/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16750) Boot mode: Normal Running processes: C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files\trend micro\PB.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Skynet.be - LE portail belge - DE Belgische portaalsite! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" -h -k O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: Bluetooth Manager.lnk = ? O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - http://www.sibelius.com/download/software/win/ActiveXPlugin.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nlssrv32.exe O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Updater Service - Acer Group - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 9505 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe winlogon.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup atieclxx C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe" C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe" "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe" "C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe" "C:\Program Files (x86)\Launch Manager\dsiwmis.exe" "C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe" C:\Windows\SysWOW64\nlssrv32.exe "C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe" "C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe" "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" "C:\Program Files (x86)\BlueStacks\HD-Service.exe" BstHdAndroidSvc Android WLIDSvcM.exe 1452 "C:\Program Files (x86)\BlueStacks\HD-Network.exe" \??\C:\Windows\system32\conhost.exe "-479814369537510279-139714753810076688054433983262924130520694429901819477288 "C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe" \??\C:\Windows\system32\conhost.exe "1209543056202828913045572264319992148541902379046600403463307351675-450833093 "C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe" \??\C:\Windows\system32\conhost.exe "-380751852-18544442931705157065808652636403658710386252080-1544070297-166478631 "C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000714 "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe" "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s C:\Windows\system32\wbem\unsecapp.exe -Embedding "C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe" "C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" -h -k "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosA2dp.exe" "C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHid.exe" "C:\Program Files\Windows Media Player\wmpnetwk.exe" "C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHsp.exe" "C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe" "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c C:\Windows\system32\svchost.exe -k HPService C:\Windows\System32\svchost.exe -k secsvcs "C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\SeaPort.exe" "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:676 CREDAT:1840439 /prefetch:2 "C:\Windows\System32\MsSpellCheckingFacility.exe" -Embedding "C:\Program Files (x86)\Windows Live\Mail\wlmail.exe" "C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe" -Embedding "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:676 CREDAT:2758026 /prefetch:2 C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe -Embedding "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7ea9ab4e-09d1-4b54-8c8b-e61cc47ee6c8 -SystemEventPortName:HostProcess-258e80e4-c37e-47eb-a165-2c2217559c00 -IoCancelEventPortName:HostProcess-b27b649d-63cb-4e3b-939d-b9fce3562a58 -NonStateChangingEventPortName:HostProcess-e01f3acf-7694-43ca-b4b0-d5d6300e3002 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:f737ff6e-cff0-4e80-a216-b72dd0a526f7 -DeviceGroupId: "C:\Users\PB\Desktop\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe ======Scheduled tasks folder====== C:\Windows\tasks\Driver Booster Update.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}] Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll [2013-07-23 1451680] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll [2013-07-23 1451680] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Acer ePower Management"=C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [2010-06-11 861216] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-11-14 13513288] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2010-06-10 324608] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe [2013-05-13 601928] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetI] C:\Windows\PLFSetI.exe [2010-06-10 206208] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-04-27 102400] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-09-18 1842472] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "BackupManagerTray"=C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe [2010-06-28 263936] "avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-11-19 683576] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Bluetooth Manager.lnk - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=l3codeca.acm "MSVideo8"=VfWWDM32.dll "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "msacm.l3codecp"=l3codecp.acm "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* .scr - open - .scr - install - .scr - config - ======List of files/folders created in the last 1 month====== 2013-12-14 16:55:35 ----D---- C:\Program Files\trend micro 2013-12-14 16:55:34 ----D---- C:\rsit 2013-12-11 11:42:35 ----A---- C:\Windows\system32\wmploc.DLL 2013-12-11 11:42:34 ----A---- C:\Windows\SYSWOW64\wmploc.DLL 2013-12-11 11:42:34 ----A---- C:\Windows\SYSWOW64\wmp.dll 2013-12-11 11:42:33 ----A---- C:\Windows\system32\wmp.dll 2013-12-11 11:40:49 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-12-11 11:40:49 ----A---- C:\Windows\system32\ieui.dll 2013-12-11 11:40:48 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe 2013-12-11 11:40:48 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2013-12-11 11:40:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2013-12-11 11:40:48 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2013-12-11 11:40:48 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-12-11 11:40:48 ----A---- C:\Windows\system32\iesysprep.dll 2013-12-11 11:40:48 ----A---- C:\Windows\system32\iesetup.dll 2013-12-11 11:40:48 ----A---- C:\Windows\system32\iernonce.dll 2013-12-11 11:40:48 ----A---- C:\Windows\system32\ie4uinit.exe 2013-12-11 11:40:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-12-11 11:40:47 ----A---- C:\Windows\system32\iertutil.dll 2013-12-11 11:40:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-12-11 11:40:46 ----A---- C:\Windows\system32\msfeeds.dll 2013-12-11 11:40:45 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-12-11 11:40:45 ----A---- C:\Windows\system32\jscript9.dll 2013-12-11 11:40:45 ----A---- C:\Windows\system32\jscript.dll 2013-12-11 11:40:44 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-12-11 11:40:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-12-11 11:40:43 ----A---- C:\Windows\system32\urlmon.dll 2013-12-11 11:40:41 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-12-11 11:40:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-12-11 11:40:41 ----A---- C:\Windows\system32\wininet.dll 2013-12-11 11:40:41 ----A---- C:\Windows\system32\jsproxy.dll 2013-12-11 11:40:40 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-12-11 11:40:38 ----A---- C:\Windows\system32\ieframe.dll 2013-12-11 11:40:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-12-11 11:40:35 ----A---- C:\Windows\system32\mshtml.dll 2013-12-11 10:13:36 ----A---- C:\Windows\SYSWOW64\msieftp.dll 2013-12-11 10:13:36 ----A---- C:\Windows\system32\msieftp.dll 2013-12-11 10:13:34 ----A---- C:\Windows\system32\win32k.sys 2013-12-11 10:13:33 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll 2013-12-11 10:13:33 ----A---- C:\Windows\system32\WMPhoto.dll 2013-12-11 10:13:33 ----A---- C:\Windows\system32\imagehlp.dll 2013-12-11 10:13:32 ----A---- C:\Windows\SYSWOW64\imagehlp.dll 2013-12-11 10:13:31 ----A---- C:\Windows\SYSWOW64\wscript.exe 2013-12-11 10:13:31 ----A---- C:\Windows\SYSWOW64\scrrun.dll 2013-12-11 10:13:31 ----A---- C:\Windows\SYSWOW64\cscript.exe 2013-12-11 10:13:31 ----A---- C:\Windows\system32\wscript.exe 2013-12-11 10:13:31 ----A---- C:\Windows\system32\scrrun.dll 2013-12-11 10:13:31 ----A---- C:\Windows\system32\cscript.exe 2013-12-11 10:13:30 ----A---- C:\Windows\system32\drivers\portcls.sys 2013-12-11 10:13:30 ----A---- C:\Windows\system32\drivers\drmk.sys 2013-12-11 10:13:26 ----A---- C:\Windows\SYSWOW64\tzres.dll 2013-12-11 10:13:26 ----A---- C:\Windows\system32\tzres.dll 2013-11-29 17:37:29 ----D---- C:\ProgramData\NCH Software 2013-11-29 17:37:15 ----D---- C:\Program Files (x86)\NCH Software 2013-11-29 17:37:07 ----D---- C:\Users\PB\AppData\Roaming\NCH Software 2013-11-27 15:41:50 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI 2013-11-27 15:39:30 ----D---- C:\Windows\Migration 2013-11-18 12:24:43 ----D---- C:\Users\PB\AppData\Roaming\PearlMountain 2013-11-18 12:24:43 ----D---- C:\ProgramData\PearlMountain 2013-11-18 12:24:06 ----D---- C:\Program Files (x86)\Picture Collage Maker Pro 2013-11-15 11:50:52 ----D---- C:\Windows\system32\drivers\en-US ======List of files/folders modified in the last 1 month====== 2013-12-14 16:55:38 ----D---- C:\Windows\Temp 2013-12-14 16:55:35 ----RD---- C:\Program Files 2013-12-14 15:34:10 ----D---- C:\Windows\System32 2013-12-14 15:34:10 ----D---- C:\Windows\inf 2013-12-14 15:34:10 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-12-14 15:16:05 ----D---- C:\Windows\SysWOW64 2013-12-14 15:13:56 ----D---- C:\Windows\system32\config 2013-12-14 15:05:13 ----D---- C:\Windows\system32\catroot2 2013-12-14 12:53:52 ----AD---- C:\Windows 2013-12-13 13:11:10 ----AD---- C:\ProgramData\Temp 2013-12-12 11:42:47 ----D---- C:\ProgramData\Spybot - Search & Destroy 2013-12-12 09:08:27 ----D---- C:\Windows\system32\NDF 2013-12-11 22:25:56 ----SHD---- C:\System Volume Information 2013-12-11 19:48:20 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2013-12-11 15:20:44 ----D---- C:\Windows\Panther 2013-12-11 15:20:41 ----D---- C:\Windows\debug 2013-12-11 14:33:03 ----D---- C:\Windows\rescache 2013-12-11 12:03:53 ----D---- C:\Windows\winsxs 2013-12-11 12:02:53 ----D---- C:\Windows\Prefetch 2013-12-11 11:58:57 ----D---- C:\Program Files\Windows Media Player 2013-12-11 11:58:57 ----D---- C:\Program Files (x86)\Windows Media Player 2013-12-11 11:58:57 ----D---- C:\Program Files (x86)\Internet Explorer 2013-12-11 11:58:56 ----D---- C:\Windows\SYSWOW64\nl-NL 2013-12-11 11:58:56 ----D---- C:\Program Files\Internet Explorer 2013-12-11 11:58:55 ----D---- C:\Windows\system32\nl-NL 2013-12-11 11:58:54 ----D---- C:\Windows\system32\DriverStore 2013-12-11 11:58:53 ----D---- C:\Windows\system32\drivers 2013-12-11 11:42:56 ----D---- C:\Windows\system32\catroot 2013-12-11 11:40:08 ----D---- C:\Windows\system32\MRT 2013-12-11 11:38:23 ----A---- C:\Windows\system32\MRT.exe 2013-12-09 18:36:42 ----D---- C:\Windows\Tasks 2013-12-09 18:36:42 ----D---- C:\Windows\system32\wfp 2013-12-09 18:36:42 ----D---- C:\Windows\system32\wbem 2013-12-09 18:36:41 ----D---- C:\Windows\AppCompat 2013-12-09 18:36:40 ----D---- C:\Windows\registration 2013-12-02 10:27:31 ----SHD---- C:\Windows\Installer 2013-12-02 10:27:26 ----D---- C:\Program Files (x86) 2013-11-29 17:37:29 ----HD---- C:\ProgramData 2013-11-29 17:37:29 ----D---- C:\Windows\system32\Tasks 2013-11-28 00:17:49 ----D---- C:\Program Files\CCleaner 2013-11-27 18:34:34 ----D---- C:\Windows\Microsoft.NET 2013-11-27 18:34:32 ----RSD---- C:\Windows\assembly 2013-11-27 17:15:32 ----D---- C:\Program Files (x86)\Common Files 2013-11-27 15:39:38 ----D---- C:\Windows\SYSWOW64\en-US 2013-11-27 15:39:38 ----D---- C:\Windows\system32\en-US 2013-11-27 15:39:30 ----SD---- C:\ProgramData\Microsoft 2013-11-26 00:30:16 ----SD---- C:\Users\PB\AppData\Roaming\Microsoft 2013-11-18 22:46:20 ----D---- C:\Users\PB\AppData\Roaming\Skype 2013-11-17 05:44:47 ----D---- C:\Windows\SYSWOW64\wbem 2013-11-17 05:44:18 ----D---- C:\Windows\SYSWOW64\RTCOM 2013-11-17 05:44:17 ----D---- C:\Windows\system32\CodeIntegrity 2013-11-17 05:44:14 ----D---- C:\Windows\security 2013-11-17 05:44:14 ----D---- C:\Windows\schemas 2013-11-17 05:44:12 ----D---- C:\ProgramData\Skype 2013-11-17 05:44:10 ----D---- C:\ProgramData\IObit 2013-11-17 05:44:09 ----D---- C:\Program Files\Recuva 2013-11-17 05:44:08 ----RD---- C:\Program Files (x86)\Skype 2013-11-17 05:44:08 ----D---- C:\Program Files\Common Files\Microsoft Shared 2013-11-17 05:40:47 ----D---- C:\Users\PB\AppData\Roaming\IObit 2013-11-17 01:12:30 ----D---- C:\Windows\SYSWOW64\migration 2013-11-17 01:12:29 ----D---- C:\Windows\system32\migration 2013-11-17 01:12:29 ----D---- C:\Windows\PolicyDefinitions ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-08-24 16440] R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2008-06-16 55024] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-11-19 132600] R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-10-07 28600] R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2005-08-01 102016] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-12-03 107416] R2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [2013-05-13 70984] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-04-27 6659072] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-04-27 195584] R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-05-12 2229608] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-11-14 3379272] R3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2013-11-14 435512] R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432] R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-09-18 292912] R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2006-10-11 50688] R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896] R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456] R3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984] S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2010-06-10 40448] S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-04-08 124944] S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232] S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984] S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384] S3 DigiartyVirtualCDBus;Digiarty Virtual Driver; C:\Windows\system32\drivers\DigiartyVirtualCDBus.sys [2013-10-08 276256] S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416] S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720] S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488] S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944] S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280] S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2010-06-14 16448] S3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2006-11-30 142592] S3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2006-11-20 44672] S3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2006-10-05 137984] S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-07-12 28160] S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2006-11-22 55296] S3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2006-10-27 69760] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496] S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S3 WsAudioDevice_383S(1);WsAudioDevice_383S(1); C:\Windows\system32\drivers\WsAudioDevice_383S(1).sys [2010-12-24 29288] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8; c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312] R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-04-27 202752] R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-11-19 440376] R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-11-19 440376] R2 BstHdAndroidSvc;BlueStacks Android Service; C:\Program Files (x86)\BlueStacks\HD-Service.exe [2013-05-13 393032] R2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [2013-05-13 384840] R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-08-11 321104] R2 ePowerSvc;Acer ePower Service; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2010-06-11 868896] R2 GREGService;GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [2010-01-08 23584] R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\SysWOW64\nlssrv32.exe [2012-10-26 66560] R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [2010-06-28 255744] R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2006-10-31 123904] R2 Updater Service;Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2010-01-29 243232] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096] R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\SeaPort.exe [2013-07-23 240288] S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BBSvc.exe [2013-07-23 193696] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-16 136176] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-03-03 867080] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-16 136176] S3 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2010-01-15 935208] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-03-04 1255736] S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------
  25. angeke
    hallo, kan niets meer downloaden op mijn laptop. krijg steeds een melding van (kan dit bestand niet downloaden) heb al laten scannen met spybot ,antimalware en Avira ,maar niets gevonden weet er iemand raad bij dit probleem ? hier een logje van hijackthis Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:36:28, on 14/12/2013 Platform: Unknown Windows (WinNT 6.01.3505 SP1) MSIE: Internet Explorer v10.0 (10.00.9200.16750) Boot mode: Normal Running processes: C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE F:\documenten 26 april\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.skynet.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" -h -k O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - Global Startup: Bluetooth Manager.lnk = ? O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O13 - Gopher Prefix: O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - http://www.sibelius.com/download/software/win/ActiveXPlugin.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nlssrv32.exe O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Updater Service - Acer Group - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 8943 bytes hijackthis.log
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.