thermoske
-
Items
275 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door thermoske
-
dat betwijfel ik om dat het gisteren ook niet lukte zijn er andere mogelijk heden
-
hey dasle heb dit direct proberen te downloaden met die laptop die de driver nog mist en met mijn pc met windows 7 en bij alle twee lukt het niet pagina kan niet worden weer gegeven
-
ok heb dit juist gedaan en dit staat er ACPI\MTC0301 ik hoop dat het just is
-
ik download de drivers met mijn pc daar staat windows 7 op maar is al vrij goed gelukt nu heb ik bij apparaat beheer nog maar één geel uit roep teken en dat heet onbekend apparaat en ik lees iets van intel lpc intreface controller als ik die driver nog zou kunnen vinden iemand die weet wat dat juist is
-
ok maar kan jij zeggen met welke ik gebruik nu ie 11 geloof ik want daar ken ik ni veel van
-
dasle dat had ik ook gevonden maar heb proberen die vga driver te downloaden en die pagina gaat niet open
-
ik heb hier een laptop van een kennis heb er windows xp op gezet nu mis ik nog een paar drivers is er iemand die kan helpen waar ik ze moet vinden laptop specs benq joybook s73 series alvast bedankt
-
ik heb een reserve pc met windows 7 ben nu een schijf aan het repareren met hdd regenerator is dit een goei programma of weet jij iets anders gr thermos
-
hallo ik heb hier zo een tien harde schijven liggen die ik eerst grondig wil testen zonder dat er een besturing systeem op staat dus gewoon een partitie ntfs is er iemand die mij wat info kan geven mischien met een boot cd of weet ik veel gr thermoske
-
ok kape ga ik zo doen dan en nog is bedankt voor de hulp
-
ok kape alvast bedankt voor u hulp nog een laatste vraagje welke programmas raden jullie mij aan om mijn pc zo goed en optimaal te laten draaien
-
ESETSmartInstaller@High as CAB hook log: OnlineScanner.ocx - registred OK # version=8 # iexplore.exe=10.00.9200.16521 (win8_gdr_soc_ie.130216-2100) # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=3e4accc3ea901c419ee4d023cda38214 # engine=16592 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2014-01-09 08:42:45 # local_time=2014-01-09 09:42:45 (+0100, Romance (standaardtijd)) # country="Belgium" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5893 16776573 100 94 1681877 140931356 0 0 # compatibility_mode=8209 16776701 100 97 27604566 139309515 0 0 # scanned=94954 # found=1 # cleaned=1 # scan_time=2734 # nod_component=V3 Build:0x30000000 sh=0D1089BEA8D0609C0828DCDE203C912B3A9B2294 ft=0 fh=0000000000000000 vn="Win32/MyPCBackup.A application (deleted - quarantined)" ac=C fn="C:\Windows\Installer\3efa6.msi" # version=8 # iexplore.exe=10.00.9200.16521 (win8_gdr_soc_ie.130216-2100) # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=3e4accc3ea901c419ee4d023cda38214 # engine=16616 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2014-01-11 02:22:14 # local_time=2014-01-11 03:22:14 (+0100, Romance (standaardtijd)) # country="Belgium" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5893 16776573 100 94 1835446 141081325 0 0 # compatibility_mode=8209 16776701 100 97 27758135 139459484 0 0 # scanned=97508 # found=0 # cleaned=0 # scan_time=2623 # nod_component=V3 Build:0x30000000
-
gaat heel goed kape heb gezien in die log combofix dat er één ding was giinficteerd is dat nu verwijderd ook voor de rest loopt alles ok alvast bedankt
-
ComboFix 14-01-08.03 - paul 11/01/2014 9:48.1.4 - x86 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.32.1043.18.3318.2161 [GMT 1:00] Gestart vanuit: c:\users\paul\Desktop\ComboFix.exe AV: Emsisoft Anti-Malware *Enabled/Updated* {8504DEEF-CC04-1F76-2137-F1A5F4A659DA} AV: ESET Smart Security 5.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1} FW: ESET Persoonlijke firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA} SP: Emsisoft Anti-Malware *Enabled/Updated* {3E653F0B-EA3E-10F8-1B87-CAD78F211367} SP: ESET Smart Security 5.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C} SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Aanwezig AV is actief . . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\system32\sysdir c:\windows\system32\sysdir\sycd6.dll . c:\windows\ehome\ehrecvr.exe . . . is geïnfecteerd!! . . (((((((((((((((((((( Bestanden Gemaakt van 2013-12-11 to 2014-01-11 )))))))))))))))))))))))))))))) . . 2014-01-10 17:21 . 2014-01-10 17:22 -------- d-----w- C:\rsit 2014-01-10 17:21 . 2014-01-10 17:22 -------- d-----w- c:\program files\trend micro 2014-01-09 17:35 . 2014-01-11 08:41 -------- d-----w- c:\program files\Emsisoft Anti-Malware 2013-12-29 10:26 . 2013-12-29 10:26 -------- d-----w- c:\users\paul\AppData\Roaming\SUPERAntiSpyware.com 2013-12-29 10:26 . 2013-12-29 10:26 -------- d-----w- c:\programdata\SUPERAntiSpyware.com 2013-12-29 10:26 . 2013-12-29 10:26 -------- d-----w- c:\program files\SUPERAntiSpyware 2013-12-28 12:54 . 2013-12-28 12:54 -------- d-----w- c:\program files\MarkAny 2013-12-28 12:50 . 2013-12-28 12:50 -------- d-----w- c:\users\paul\AppData\Local\Samsung 2013-12-28 12:44 . 2013-04-18 18:08 4659712 ----a-w- c:\windows\system32\Redemption.dll 2013-12-28 12:44 . 2013-04-18 18:06 821824 ----a-w- c:\windows\system32\dgderapi.dll 2013-12-28 12:43 . 2013-12-28 12:45 -------- d-----w- c:\programdata\Samsung 2013-12-28 10:31 . 2013-12-28 12:52 -------- d-----w- c:\users\paul\AppData\Roaming\Samsung 2013-12-28 10:29 . 2013-12-28 12:46 -------- d-----w- c:\program files\Samsung 2013-12-27 09:55 . 2013-12-27 09:55 -------- d-----w- c:\users\paul\AppData\Roaming\Ashampoo 2013-12-27 09:54 . 2013-12-27 09:55 -------- d-----w- c:\users\paul\AppData\Local\ashampoo 2013-12-26 11:59 . 2013-12-26 11:59 -------- d-----w- c:\program files\MP3Gain 2013-12-24 15:37 . 2013-12-27 09:54 -------- d-----w- c:\programdata\Ashampoo 2013-12-24 15:37 . 2013-12-29 08:46 -------- d-----w- c:\program files\Ashampoo 2013-12-24 07:28 . 2013-12-24 07:29 -------- d-----w- c:\programdata\jopsoft 2013-12-24 07:28 . 2013-12-24 07:40 -------- d-----w- c:\program files\jopsoft 2013-12-24 07:27 . 2013-12-24 07:27 796672 ----a-w- c:\windows\GPInstall.exe 2013-12-21 18:26 . 2013-12-21 18:26 -------- d-----w- c:\programdata\Zylom 2013-12-21 18:24 . 2013-12-21 18:24 -------- d-----w- c:\users\paul\AppData\Roaming\LegacyInteractive 2013-12-21 18:13 . 2013-12-21 18:13 -------- d-----w- c:\programdata\Playrix Entertainment 2013-12-21 09:32 . 2013-12-21 09:32 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help 2013-12-21 09:31 . 2013-12-04 02:57 7760024 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9CD0DCC4-BD09-46D1-AC9E-CBAC9E57700B}\mpengine.dll 2013-12-21 09:26 . 2013-10-12 02:04 121856 ----a-w- c:\windows\system32\wshom.ocx 2013-12-21 09:26 . 2013-10-12 02:03 163840 ----a-w- c:\windows\system32\scrrun.dll 2013-12-21 09:26 . 2013-10-12 01:15 141824 ----a-w- c:\windows\system32\wscript.exe 2013-12-21 09:26 . 2013-10-12 01:15 126976 ----a-w- c:\windows\system32\cscript.exe 2013-12-21 09:26 . 2013-11-12 02:07 2048 ----a-w- c:\windows\system32\tzres.dll 2013-12-21 09:26 . 2013-10-19 01:36 159232 ----a-w- c:\windows\system32\imagehlp.dll 2013-12-21 09:26 . 2013-10-30 01:27 2349056 ----a-w- c:\windows\system32\win32k.sys 2013-12-21 09:26 . 2013-10-04 01:49 81408 ----a-w- c:\windows\system32\drivers\drmk.sys 2013-12-21 09:26 . 2013-10-04 01:17 177152 ----a-w- c:\windows\system32\drivers\portcls.sys . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-12-28 10:57 . 2013-02-24 13:07 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-12-28 10:57 . 2013-02-24 13:07 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-11-26 11:25 . 2012-10-22 18:01 230048 ------w- c:\windows\system32\MpSigStub.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] @="" . [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk] backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup backupExtension=.CommonStartup . [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Quick Pick.lnk] backup=c:\windows\pss\WinZip Quick Pick.lnk.CommonStartup backupExtension=.CommonStartup HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSN Toolbar HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2013-04-04 21:06 958576 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync] 2010-03-13 12:54 91520 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\egui] 2012-11-16 13:24 3117384 ----a-w- c:\program files\ESET\ESET Smart Security\egui.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\emsisoft anti-malware] 2013-12-04 17:23 4329408 ----a-w- c:\program files\Emsisoft Anti-Malware\a2guard.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds] 2009-09-23 17:30 173592 ----a-w- c:\windows\System32\hkcmd.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] 2009-11-18 15:13 54576 ----a-w- c:\program files\HP\HP Software Update\hpwuschd2.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray] 2009-09-23 17:30 141848 ----a-w- c:\windows\System32\igfxtray.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload] 2013-12-11 09:52 1564528 ----a-w- c:\program files\Samsung\Kies\Kies.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent] 2013-12-11 09:52 311152 ----a-w- c:\program files\Samsung\Kies\KiesTrayAgent.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyTomTomSA.exe] 2013-08-01 10:47 458680 ----a-w- c:\program files\MyTomTom 3\MyTomTomSA.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence] 2009-09-23 17:30 150552 ----a-w- c:\windows\System32\igfxpers.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL] 2012-12-12 17:48 11734240 ----a-w- c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] 2010-11-20 21:29 1174016 ----a-w- c:\program files\Windows Sidebar\sidebar.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2012-07-03 07:04 252848 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware] 2010-12-14 20:02 2424560 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe . R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512] R3 camfilt2;camfilt2;c:\windows\system32\DRIVERS\camfilt2.sys [2007-08-29 96384] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464] R3 ovt530;Hercules Classic Webcam;c:\windows\system32\Drivers\ov530vid.sys [2007-02-02 167464] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872] R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192] R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184] R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264] R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640] R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x] S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2012-11-16 50152] S0 iusb3hcs;Intel® USB 3.0 hostcontrollerswitch-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hcs.sys [2012-12-04 16440] S1 A2DDA;A2 Direct Disk Access Support Driver;c:\program files\Emsisoft Anti-Malware\a2ddax86.sys [2013-03-28 22056] S1 a2injectiondriver;a2injectiondriver;c:\program files\Emsisoft Anti-Malware\a2dix86.sys [2013-09-30 38248] S1 a2util;a-squared Malware-IDS utility driver;c:\program files\Emsisoft Anti-Malware\a2util32.sys [2013-03-28 14432] S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 120152] S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 33656] S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872] S1 SAS***IL;SAS***IL;c:\program files\SUPERAntiSpyware\SAS***IL.SYS [2010-05-10 67656] S2 a2AntiMalware;Emsisoft Anti-Malware 8.0 - Service;c:\program files\Emsisoft Anti-Malware\a2service.exe [2013-12-04 4161512] S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2012-11-16 913184] S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376] S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072] S3 a2acc;a2acc;c:\program files\EMSISOFT ANTI-MALWARE\a2accx86.sys [2013-08-24 57944] S3 cleanhlp;cleanhlp;c:\program files\Emsisoft Anti-Malware\cleanhlp32.sys [2013-12-04 50200] S3 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-11-16 169120] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 22856] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2012-12-27 614624] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 HPService REG_MULTI_SZ HPSLPSVC hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Inhoud van de 'Gedeelde Taken' map . 2014-01-10 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-24 10:57] . . ------- Bijkomende Scan ------- . uStart Page = https://www.google.be/ IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 IE: {{878AC5FC-BE78-4bae-896C-7F75B790A71E} - c:\program files\PokerStars.BE\PokerStarsUpdate.exe TCP: DhcpNameServer = 192.168.1.1 . - - - - ORPHANS VERWIJDERD - - - - . ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - (no file) SafeBoot-CleanHlp SafeBoot-CleanHlp.sys MSConfigStartUp-KiesAirMessage - c:\program files\Samsung\Kies\KiesAirMessage.exe MSConfigStartUp-Microsoft Default Manager - c:\program files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe MSConfigStartUp-Pokki - %LOCALAPPDATA%\Pokki\Engine\Launcher.dll AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Uninstall.exe AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninstall.exe AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Uninstall.exe AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.exe AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions] @Denied: (2) (LocalSystem) "{0347C33E-8762-4905-BF09-768834316C61}"=hex:51,66,7a,6c,4c,1d,38,12,50,c0,54, 07,50,c9,6b,0c,c0,1f,35,c8,31,6f,28,75 "{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}"=hex:51,66,7a,6c,4c,1d,38,12,5a,50,79, 6b,db,36,f5,08,fe,94,c8,01,ef,d2,7d,fb "{72853161-30C5-4D22-B7F9-0BBC1D38A37E}"=hex:51,66,7a,6c,4c,1d,38,12,0f,32,96, 76,f7,7e,4c,08,c8,ef,48,fc,18,66,e7,6a "{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07, 72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57 "{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23, 94,30,02,d1,0f,f1,da,12,24,73,56,27,d2 "{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0, b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb "{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db, df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd "{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}"=hex:51,66,7a,6c,4c,1d,38,12,91,fc,ec, fb,7c,81,45,0a,c2,d4,4d,32,e4,48,ec,42 "{2A541AE1-5BF6-4665-A8A3-CFA9672E4291}"=hex:51,66,7a,6c,4c,1d,38,12,8f,19,47, 2e,c4,15,0b,03,d7,b5,8c,e9,62,70,06,85 "{555D4D79-4BD2-4094-A395-CFC534424A05}"=hex:51,66,7a,6c,4c,1d,38,12,17,4e,4e, 51,e0,05,fa,05,dc,83,8c,85,31,1c,0e,11 . [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration] @Denied: (2) (LocalSystem) "Timestamp"=hex:f4,b5,9b,37,6b,d1,ce,01 . [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences] @Denied: (2) (LocalSystem) "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,b6,0e,aa,6d,ea,c5,d1,45,9f,1b,60,\ "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,b6,0e,aa,6d,ea,c5,d1,45,9f,1b,60,\ . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2014-01-11 09:58:28 ComboFix-quarantined-files.txt 2014-01-11 08:58 . Pre-Run: 18.914.885.632 bytes beschikbaar Post-Run: 18.708.840.448 bytes beschikbaar . - - End Of File - - D84F134F2FE42D51040531B51F4B0A59 A36C5E4F47E84449FF07ED3517B43A31
-
Logfile of random's system information tool 1.09 (written by random/random) Run by paul at 2014-01-10 18:21:56 Microsoft Windows 7 Ultimate Service Pack 1 System drive C: has 18 GB (36%) free of 50 GB Total RAM: 3318 MB (67% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:22:04, on 10/01/2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16750) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\igfxsrvc.exe C:\Windows\system32\taskhost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Users\paul\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0FDYXH5Z\RSIT.exe C:\Program Files\trend micro\paul.exe C:\Windows\system32\DllHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: PokerStars.be - {878AC5FC-BE78-4bae-896C-7F75B790A71E} - C:\Program Files\PokerStars.BE\PokerStarsUpdate.exe O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Emsisoft Anti-Malware 8.0 - Service (a2AntiMalware) - Emsisoft GmbH - C:\Program Files\Emsisoft Anti-Malware\a2service.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: ASP.NET-statusservice (aspnet_state) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Office Source Engine (ose) - Unknown owner - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- End of file - 5696 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}] HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 4171424] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-04-16 461216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-04-16 170912] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}] HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\egui] C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-11-16 3117384] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\emsisoft anti-malware] c:\program files\emsisoft anti-malware\a2guard.exe [2013-12-04 4329408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds] C:\Windows\system32\hkcmd.exe [2009-09-23 173592] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2009-11-18 54576] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray] C:\Windows\system32\igfxtray.exe [2009-09-23 141848] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe [2013-12-11 1564528] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2013-12-11 311152] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Default Manager] C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe -resume [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSN Toolbar] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyTomTomSA.exe] C:\Program Files\MyTomTom 3\MyTomTomSA.exe [2013-08-01 458680] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence] C:\Windows\system32\igfxpers.exe [2009-09-23 150552] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pokki] C:\Users\paul\AppData\Local\Pokki\Engine\Launcher.dll,RunLaunchPlatform [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2012-12-12 11734240] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2010-12-14 2424560] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk] C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2009-11-18 275072] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Quick Pick.lnk] [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2009-09-23 218112] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 4171424] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= [] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CleanHlp] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CleanHlp.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "MSVideo8"=VfWWDM32.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-01-10 18:21:56 ----D---- C:\rsit 2014-01-10 18:21:56 ----D---- C:\Program Files\trend micro 2014-01-10 17:46:20 ----A---- C:\DelFix.txt 2014-01-09 18:35:10 ----D---- C:\Program Files\Emsisoft Anti-Malware 2013-12-29 11:26:20 ----D---- C:\Users\paul\AppData\Roaming\SUPERAntiSpyware.com 2013-12-29 11:26:20 ----D---- C:\ProgramData\SUPERAntiSpyware.com 2013-12-29 11:26:13 ----D---- C:\Program Files\SUPERAntiSpyware 2013-12-28 13:54:05 ----D---- C:\Program Files\MarkAny 2013-12-28 13:44:26 ----A---- C:\Windows\system32\Redemption.dll 2013-12-28 13:44:16 ----A---- C:\Windows\system32\dgderapi.dll 2013-12-28 13:43:15 ----D---- C:\ProgramData\Samsung 2013-12-28 11:31:28 ----D---- C:\Users\paul\AppData\Roaming\Samsung 2013-12-28 11:29:53 ----D---- C:\Program Files\Samsung 2013-12-27 10:55:29 ----D---- C:\Users\paul\AppData\Roaming\Ashampoo 2013-12-26 12:59:03 ----D---- C:\Program Files\MP3Gain 2013-12-24 16:37:31 ----D---- C:\ProgramData\Ashampoo 2013-12-24 16:37:16 ----D---- C:\Program Files\Ashampoo 2013-12-24 08:28:18 ----D---- C:\ProgramData\jopsoft 2013-12-24 08:28:06 ----D---- C:\Program Files\jopsoft 2013-12-24 08:27:39 ----A---- C:\Windows\GPInstall.exe 2013-12-21 19:26:50 ----D---- C:\ProgramData\Zylom 2013-12-21 19:24:39 ----D---- C:\Users\paul\AppData\Roaming\LegacyInteractive 2013-12-21 19:13:05 ----D---- C:\ProgramData\Playrix Entertainment 2013-12-21 10:27:49 ----A---- C:\Windows\system32\jscript.dll 2013-12-21 10:27:48 ----A---- C:\Windows\system32\jscript9.dll 2013-12-21 10:27:47 ----A---- C:\Windows\system32\jsproxy.dll 2013-12-21 10:27:46 ----A---- C:\Windows\system32\ieui.dll 2013-12-21 10:27:46 ----A---- C:\Windows\system32\iesetup.dll 2013-12-21 10:27:45 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-12-21 10:27:45 ----A---- C:\Windows\system32\msfeeds.dll 2013-12-21 10:27:45 ----A---- C:\Windows\system32\iesysprep.dll 2013-12-21 10:27:45 ----A---- C:\Windows\system32\iernonce.dll 2013-12-21 10:27:45 ----A---- C:\Windows\system32\ie4uinit.exe 2013-12-21 10:27:44 ----A---- C:\Windows\system32\urlmon.dll 2013-12-21 10:27:44 ----A---- C:\Windows\system32\iertutil.dll 2013-12-21 10:27:42 ----A---- C:\Windows\system32\wininet.dll 2013-12-21 10:27:40 ----A---- C:\Windows\system32\ieframe.dll 2013-12-21 10:27:35 ----A---- C:\Windows\system32\mshtml.dll 2013-12-21 10:26:37 ----A---- C:\Windows\system32\wscript.exe 2013-12-21 10:26:37 ----A---- C:\Windows\system32\scrrun.dll 2013-12-21 10:26:37 ----A---- C:\Windows\system32\cscript.exe 2013-12-21 10:26:35 ----A---- C:\Windows\system32\tzres.dll 2013-12-21 10:26:31 ----A---- C:\Windows\system32\imagehlp.dll 2013-12-21 10:26:30 ----A---- C:\Windows\system32\win32k.sys 2013-12-21 10:26:29 ----A---- C:\Windows\system32\drivers\portcls.sys 2013-12-21 10:26:29 ----A---- C:\Windows\system32\drivers\drmk.sys ======List of files/folders modified in the last 1 month====== 2014-01-10 18:21:58 ----D---- C:\Windows\Temp 2014-01-10 18:21:56 ----D---- C:\Program Files 2014-01-10 17:46:28 ----SHD---- C:\System Volume Information 2014-01-09 21:42:35 ----SHD---- C:\Windows\Installer 2014-01-09 21:37:29 ----D---- C:\Windows\system32\drivers 2014-01-09 20:55:17 ----D---- C:\Windows\Downloaded Program Files 2014-01-09 20:55:16 ----D---- C:\Program Files\ESET 2014-01-09 20:11:40 ----HD---- C:\ProgramData 2014-01-09 20:04:46 ----D---- C:\Windows 2014-01-09 20:04:44 ----D---- C:\Windows\ModemLogs 2014-01-09 20:02:42 ----D---- C:\Windows\System32 2013-12-31 08:20:23 ----D---- C:\Windows\inf 2013-12-31 08:20:23 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-12-30 12:38:20 ----HD---- C:\Config.Msi 2013-12-30 10:07:15 ----D---- C:\Program Files\WinRAR 2013-12-29 20:48:39 ----D---- C:\Users\paul\AppData\Roaming\WinRAR 2013-12-29 10:34:15 ----D---- C:\Windows\Tasks 2013-12-29 10:34:15 ----D---- C:\Windows\system32\Tasks 2013-12-29 10:33:28 ----D---- C:\Program Files\Google 2013-12-29 10:22:29 ----RSD---- C:\Windows\assembly 2013-12-29 10:22:29 ----D---- C:\Windows\Microsoft.NET 2013-12-29 10:14:59 ----D---- C:\Windows\system32\config 2013-12-29 10:04:10 ----D---- C:\Users\paul\AppData\Roaming\Media Player Classic 2013-12-29 09:58:32 ----D---- C:\Program Files\CCleaner 2013-12-29 09:52:36 ----D---- C:\Program Files\VSO 2013-12-29 09:52:31 ----D---- C:\ProgramData\VSO 2013-12-29 09:51:54 ----D---- C:\Windows\system32\catroot2 2013-12-29 09:51:24 ----D---- C:\Program Files\Common Files\microsoft shared 2013-12-28 18:47:56 ----SHD---- C:\$Recycle.Bin 2013-12-28 13:47:14 ----D---- C:\Windows\system32\DriverStore 2013-12-28 13:47:14 ----D---- C:\Windows\system32\catroot 2013-12-28 13:44:13 ----HD---- C:\Program Files\InstallShield Installation Information 2013-12-28 11:57:47 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2013-12-27 17:51:57 ----D---- C:\Windows\Prefetch 2013-12-24 16:48:44 ----D---- C:\ProgramData\Spotnet 2013-12-24 16:43:55 ----D---- C:\Windows\Panther 2013-12-22 13:26:35 ----D---- C:\ProgramData\DVD Shrink 2013-12-21 20:26:07 ----SD---- C:\ProgramData\Microsoft 2013-12-21 20:26:07 ----D---- C:\Program Files\Microsoft 2013-12-21 15:40:33 ----D---- C:\Windows\rescache 2013-12-21 10:50:31 ----D---- C:\Windows\Logs 2013-12-21 10:50:31 ----D---- C:\Windows\debug 2013-12-21 10:37:44 ----D---- C:\Windows\winsxs 2013-12-21 10:34:47 ----D---- C:\Windows\system32\nl-NL 2013-12-21 10:34:47 ----D---- C:\Program Files\Internet Explorer 2013-12-21 10:32:22 ----D---- C:\ProgramData\Microsoft Help 2013-12-21 10:31:00 ----D---- C:\Windows\system32\MRT 2013-12-21 10:29:30 ----A---- C:\Windows\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2012-11-16 50152] R0 iusb3hcs;Intel® USB 3.0 hostcontrollerswitch-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-12-04 16440] R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R1 A2DDA;A2 Direct Disk Access Support Driver; \??\C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys [2013-03-28 22056] R1 a2injectiondriver;a2injectiondriver; \??\C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys [2013-09-30 38248] R1 a2util;a-squared Malware-IDS utility driver; \??\C:\Program Files\Emsisoft Anti-Malware\a2util32.sys [2013-03-28 14432] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096] R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2012-03-14 120152] R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 33656] R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872] R1 SAS***IL;SAS***IL; \??\C:\Program Files\SUPERAntiSpyware\SAS***IL.SYS [2010-05-10 67656] R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2012-03-14 148504] R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704] R3 a2acc;a2acc; \??\C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys [2013-08-24 57944] R3 cleanhlp;cleanhlp; \??\C:\Program Files\Emsisoft Anti-Malware\cleanhlp32.sys [2013-12-04 50200] R3 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2012-11-16 169120] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-01-08 2577632] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 22856] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2012-12-27 614624] S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888] S3 camfilt2;camfilt2; C:\Windows\system32\DRIVERS\camfilt2.sys [2007-08-29 96384] S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464] S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072] S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 16384] S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864] S3 ovt530;Hercules Classic Webcam; C:\Windows\System32\Drivers\ov530vid.sys [2007-02-02 167464] S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872] S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032] S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184] S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-20 25600] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264] S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352] S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736] S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360] S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 a2AntiMalware;Emsisoft Anti-Malware 8.0 - Service; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [2013-12-04 4161512] R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-05 65640] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2012-11-16 913184] R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376] R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072] R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-28 257416] S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160] S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] -----------------EOF-----------------
-
pc is wat traag en ben alle rotzooi er proberen af te doen heb cccleaner antimalware eset antivirus al laten draaien die vonden niks alleen tdss killer vond 11 problemen ik wil die elf problemen ook van mijn pc alvast bedankt thermoske
-
hallo ik heb juist tdskiller laten draaien en hij vind elf treats ik weet alleen niet hoe ik deze moet verwijderen iemand die kan helpen ik hoop dat het logje is geplaatst TDSSKiller.2.8.16.0_09.01.2014_19.46.37_log.txt
-
Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Databaseversie: v2013.11.10.04 Windows 7 x86 NTFS Internet Explorer 9.0.8112.16421 paul :: PAUL-PC [administrator] 10/11/2013 21:11:38 mbam-log-2013-11-10 (21-11-38).txt Scan type: Snelle scan Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scan opties: P2P Objecten gescand: 188799 Verstreken tijd: 6 minuut/minuten, 18 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde)
-
nee heb just gezien bij systeemconfig en er staat winsec onbekend c:\windows\secutity\manager.exe hkcu\software\microsoft\windows\currentversion\run
-
# AdwCleaner v3.011 - Report created 10/11/2013 at 12:24:12 # Updated 03/11/2013 by Xplode # Operating System : Windows 7 Home Premium (32 bits) # Username : paul - PAUL-PC # Running from : C:\Users\paul\Documents\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\Program Files\driver-soft ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} ***** [ Browsers ] ***** -\\ Internet Explorer v9.0.8112.16514 ************************* AdwCleaner[R0].txt - [747 octets] - [10/11/2013 12:23:05] AdwCleaner[s0].txt - [675 octets] - [10/11/2013 12:24:12] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [734 octets] ##########
-
nee het is winsec Logfile of random's system information tool 1.09 (written by random/random) Run by paul at 2013-11-10 10:00:01 Microsoft Windows 7 Home Premium System drive C: has 25 GB (65%) free of 38 GB Total RAM: 1008 MB (40% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:00:26, on 10/11/2013 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v9.00 (9.00.8112.16514) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskhost.exe C:\Program Files\ESET\ESET Smart Security\egui.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Users\paul\Documents\RSIT.exe C:\Program Files\trend micro\paul.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe -- End of file - 4340 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 4220304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-11-09 461216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-11-09 170912] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Driver Genius"= [] "egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-11-16 3117384] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxhkcmd] C:\Windows\system32\hkcmd.exe [2006-04-01 77824] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxpers] C:\Windows\system32\igfxpers.exe [2006-04-01 114688] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxtray] C:\Windows\system32\igfxtray.exe [2006-04-01 94208] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan] C:\Windows\SOUNDMAN.EXE [2007-03-09 598016] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\winsec] C:\Windows\security\manager.exe [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2006-04-01 135168] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 4220304] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Windows Messanger" "C:\Users\paul\AppData\Roaming\winloader.exe"="C:\Users\paul\AppData\Roaming\winloader.exe:*:Enabled:Windows Messanger" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-11-10 10:00:01 ----D---- C:\rsit 2013-11-10 09:31:29 ----A---- C:\DelFix.txt 2013-11-10 09:22:12 ----D---- C:\zoek_backup 2013-11-10 09:14:35 ----D---- C:\Program Files\trend micro 2013-11-10 08:25:57 ----A---- C:\Windows\system32\igfxres.dll 2013-11-10 08:23:56 ----A---- C:\Windows\system32\igfxzoom.exe 2013-11-10 08:23:56 ----A---- C:\Windows\system32\igfxtray.exe 2013-11-10 08:23:56 ----A---- C:\Windows\system32\igfxsrvc.exe 2013-11-10 08:23:56 ----A---- C:\Windows\system32\igfxdo.dll 2013-11-10 08:23:56 ----A---- C:\Windows\system32\hkcmd.exe 2013-11-10 08:23:55 ----A---- C:\Windows\system32\igfxsrvc.dll 2013-11-10 08:23:55 ----A---- C:\Windows\system32\igfxress.dll 2013-11-10 08:23:55 ----A---- C:\Windows\system32\igfxpers.exe 2013-11-10 08:23:55 ----A---- C:\Windows\system32\igfxexps.dll 2013-11-10 08:23:55 ----A---- C:\Windows\system32\ialmuTRK.dll 2013-11-10 08:23:55 ----A---- C:\Windows\system32\ialmuSVE.dll 2013-11-10 08:23:55 ----A---- C:\Windows\system32\ialmuRUS.dll 2013-11-10 08:23:55 ----A---- C:\Windows\system32\ialmuNOR.dll 2013-11-10 08:23:55 ----A---- C:\Windows\system32\ialmuCSY.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuTHA.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuPTG.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuPTB.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuPLK.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuNLD.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuKOR.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuJPN.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuITA.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuHUN.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuFIN.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuESP.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuDEU.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuCHT.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\ialmuCHS.dll 2013-11-10 08:23:54 ----A---- C:\Windows\system32\hccutils.dll 2013-11-10 08:23:53 ----A---- C:\Windows\system32\ialmuHEB.dll 2013-11-10 08:23:53 ----A---- C:\Windows\system32\ialmuFRC.dll 2013-11-10 08:23:53 ----A---- C:\Windows\system32\ialmuFRA.dll 2013-11-10 08:23:53 ----A---- C:\Windows\system32\ialmuENG.dll 2013-11-10 08:23:53 ----A---- C:\Windows\system32\ialmuELL.dll 2013-11-10 08:23:53 ----A---- C:\Windows\system32\ialmudlg.exe 2013-11-10 08:23:53 ----A---- C:\Windows\system32\ialmuDAN.dll 2013-11-10 08:23:53 ----A---- C:\Windows\system32\ialmuARB.dll 2013-11-10 08:23:53 ----A---- C:\Windows\system32\ialmuARA.dll 2013-11-10 08:23:53 ----A---- C:\Windows\system32\iAlmCoIn_v4363.dll 2013-11-10 08:23:52 ----A---- C:\Windows\system32\iglicd32.dll 2013-11-10 08:23:52 ----A---- C:\Windows\system32\igldev32.dll 2013-11-10 08:23:52 ----A---- C:\Windows\system32\igfxpph.dll 2013-11-10 08:23:52 ----A---- C:\Windows\system32\igfxext.exe 2013-11-10 08:23:52 ----A---- C:\Windows\system32\igfxdev.dll 2013-11-10 08:23:52 ----A---- C:\Windows\system32\igfxcfg.exe 2013-11-10 08:23:52 ----A---- C:\Windows\system32\ialmrnt5.dll 2013-11-10 08:23:52 ----A---- C:\Windows\system32\ialmrem.dll 2013-11-10 08:23:52 ----A---- C:\Windows\system32\ialmdnt5.dll 2013-11-10 08:23:52 ----A---- C:\Windows\system32\ialmdev5.dll 2013-11-10 08:23:52 ----A---- C:\Windows\system32\drivers\ialmnt5.sys 2013-11-09 22:04:38 ----A---- C:\Windows\system32\ialmgicd.dll 2013-11-09 22:04:38 ----A---- C:\Windows\system32\ialmgdev.dll 2013-11-09 22:04:38 ----A---- C:\Windows\system32\iAlmCoIn_v3865.dll 2013-11-09 20:11:16 ----D---- C:\Windows\pss 2013-11-09 20:03:13 ----D---- C:\Users\paul\AppData\Roaming\Macromedia 2013-11-09 19:49:58 ----D---- C:\Windows\Minidump 2013-11-09 19:44:40 ----D---- C:\Users\paul\AppData\Roaming\ESET 2013-11-09 19:31:23 ----A---- C:\Windows\system32\fontsub.dll 2013-11-09 19:31:22 ----A---- C:\Windows\system32\atmlib.dll 2013-11-09 19:31:22 ----A---- C:\Windows\system32\atmfd.dll 2013-11-09 19:29:04 ----A---- C:\Windows\system32\msv1_0.dll 2013-11-09 19:19:49 ----A---- C:\Windows\system32\PresentationHostProxy.dll 2013-11-09 19:19:49 ----A---- C:\Windows\system32\PresentationHost.exe 2013-11-09 19:19:49 ----A---- C:\Windows\system32\netfxperf.dll 2013-11-09 19:19:49 ----A---- C:\Windows\system32\mscoree.dll 2013-11-09 19:19:49 ----A---- C:\Windows\system32\dfshim.dll 2013-11-09 18:52:37 ----D---- C:\Windows\system32\MRT 2013-11-09 18:52:30 ----A---- C:\Windows\system32\MRT.exe 2013-11-09 18:43:45 ----A---- C:\Windows\system32\srvany.exe 2013-11-09 18:41:55 ----A---- C:\Windows\system32\wmi.dll 2013-11-09 18:41:55 ----A---- C:\Windows\system32\imagehlp.dll 2013-11-09 18:41:55 ----A---- C:\Windows\system32\drivers\fs_rec.sys 2013-11-09 18:40:53 ----A---- C:\Windows\system32\wininet.dll 2013-11-09 18:40:53 ----A---- C:\Windows\system32\urlmon.dll 2013-11-09 18:40:53 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-09 18:40:53 ----A---- C:\Windows\system32\msrating.dll 2013-11-09 18:40:53 ----A---- C:\Windows\system32\msls31.dll 2013-11-09 18:40:53 ----A---- C:\Windows\system32\jsproxy.dll 2013-11-09 18:40:53 ----A---- C:\Windows\system32\iertutil.dll 2013-11-09 18:40:52 ----A---- C:\Windows\system32\SetIEInstalledDate.exe 2013-11-09 18:40:52 ----A---- C:\Windows\system32\mshtmler.dll 2013-11-09 18:40:52 ----A---- C:\Windows\system32\msfeedssync.exe 2013-11-09 18:40:52 ----A---- C:\Windows\system32\msfeedsbs.dll 2013-11-09 18:40:52 ----A---- C:\Windows\system32\ieui.dll 2013-11-09 18:40:52 ----A---- C:\Windows\system32\iesysprep.dll 2013-11-09 18:40:52 ----A---- C:\Windows\system32\ieakeng.dll 2013-11-09 18:40:52 ----A---- C:\Windows\system32\IEAdvpack.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\wextract.exe 2013-11-09 18:40:51 ----A---- C:\Windows\system32\webcheck.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\vbscript.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\url.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\pngfilt.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\occache.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\mshtmled.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\mshtml.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\mshta.exe 2013-11-09 18:40:51 ----A---- C:\Windows\system32\msfeeds.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\licmgr10.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\inseng.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\iexpress.exe 2013-11-09 18:40:51 ----A---- C:\Windows\system32\ieUnatt.exe 2013-11-09 18:40:51 ----A---- C:\Windows\system32\iesetup.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\iernonce.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\ieframe.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\iedkcs32.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\ieapfltr.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\ieapfltr.dat 2013-11-09 18:40:51 ----A---- C:\Windows\system32\ie4uinit.exe 2013-11-09 18:40:51 ----A---- C:\Windows\system32\icardie.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\dxtrans.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\dxtmsft.dll 2013-11-09 18:40:51 ----A---- C:\Windows\system32\admparse.dll 2013-11-09 18:40:50 ----A---- C:\Windows\system32\jscript9.dll 2013-11-09 18:40:50 ----A---- C:\Windows\system32\jscript.dll 2013-11-09 18:40:50 ----A---- C:\Windows\system32\imgutil.dll 2013-11-09 18:40:50 ----A---- C:\Windows\system32\iepeers.dll 2013-11-09 18:40:50 ----A---- C:\Windows\system32\ieakui.dll 2013-11-09 18:40:50 ----A---- C:\Windows\system32\ieaksie.dll 2013-11-09 18:40:08 ----A---- C:\Windows\system32\XpsRasterService.dll 2013-11-09 18:40:08 ----A---- C:\Windows\system32\XpsGdiConverter.dll 2013-11-09 18:40:08 ----A---- C:\Windows\system32\WMVDECOD.DLL 2013-11-09 18:40:08 ----A---- C:\Windows\system32\FntCache.dll 2013-11-09 18:40:07 ----A---- C:\Windows\system32\XpsPrint.dll 2013-11-09 18:40:07 ----A---- C:\Windows\system32\mfreadwrite.dll 2013-11-09 18:40:07 ----A---- C:\Windows\system32\mf.dll 2013-11-09 18:40:07 ----A---- C:\Windows\system32\ExplorerFrame.dll 2013-11-09 18:40:07 ----A---- C:\Windows\system32\drivers\dxgmms1.sys 2013-11-09 18:40:07 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys 2013-11-09 18:40:07 ----A---- C:\Windows\system32\cdd.dll 2013-11-09 18:39:23 ----A---- C:\Windows\system32\browserchoice.exe 2013-11-09 18:37:37 ----D---- C:\Users\paul\AppData\Roaming\Malwarebytes 2013-11-09 18:32:42 ----A---- C:\Windows\system32\wmicmiplugin.dll 2013-11-09 18:32:42 ----A---- C:\Windows\system32\taskschd.dll 2013-11-09 18:32:42 ----A---- C:\Windows\system32\taskeng.exe 2013-11-09 18:32:42 ----A---- C:\Windows\system32\taskcomp.dll 2013-11-09 18:32:42 ----A---- C:\Windows\system32\schtasks.exe 2013-11-09 18:32:42 ----A---- C:\Windows\system32\schedsvc.dll 2013-11-09 18:32:36 ----A---- C:\Windows\system32\rdpcore.dll 2013-11-09 18:32:35 ----A---- C:\Windows\system32\drivers\tdtcp.sys 2013-11-09 18:31:48 ----A---- C:\Windows\system32\tsgqec.dll 2013-11-09 18:31:48 ----A---- C:\Windows\system32\mstscax.dll 2013-11-09 18:31:48 ----A---- C:\Windows\system32\aaclient.dll 2013-11-09 18:31:34 ----A---- C:\Windows\system32\winload.exe 2013-11-09 18:31:34 ----A---- C:\Windows\system32\CertEnroll.dll 2013-11-09 18:31:33 ----A---- C:\Windows\system32\winresume.exe 2013-11-09 18:31:15 ----A---- C:\Windows\system32\crypt32.dll 2013-11-09 18:31:14 ----A---- C:\Windows\system32\cryptsvc.dll 2013-11-09 18:31:14 ----A---- C:\Windows\system32\cryptnet.dll 2013-11-09 18:30:54 ----A---- C:\Windows\system32\shell32.dll 2013-11-09 18:30:52 ----A---- C:\Windows\system32\drivers\tcpip.sys 2013-11-09 18:30:51 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS 2013-11-09 18:30:50 ----A---- C:\Windows\system32\spoolsv.exe 2013-11-09 18:30:49 ----A---- C:\Windows\system32\win32k.sys 2013-11-09 18:30:45 ----A---- C:\Windows\system32\tzres.dll 2013-11-09 18:30:37 ----A---- C:\Windows\system32\umpnpmgr.dll 2013-11-09 18:30:31 ----A---- C:\Windows\system32\packager.dll 2013-11-09 18:30:20 ----A---- C:\Windows\system32\ole32.dll 2013-11-09 18:30:17 ----A---- C:\Windows\system32\drivers\afd.sys 2013-11-09 18:30:15 ----A---- C:\Windows\system32\drivers\usb8023.sys 2013-11-09 18:30:14 ----A---- C:\Windows\system32\drivers\rdpwd.sys 2013-11-09 18:30:12 ----A---- C:\Windows\system32\sbe.dll 2013-11-09 18:30:12 ----A---- C:\Windows\system32\CPFilters.dll 2013-11-09 18:30:08 ----A---- C:\Windows\system32\schannel.dll 2013-11-09 18:30:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2013-11-09 18:30:08 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2013-11-09 18:30:08 ----A---- C:\Windows\system32\drivers\cng.sys 2013-11-09 18:30:01 ----A---- C:\Windows\system32\ntoskrnl.exe 2013-11-09 18:30:01 ----A---- C:\Windows\system32\ntkrnlpa.exe 2013-11-09 18:30:00 ----A---- C:\Windows\system32\smss.exe 2013-11-09 18:30:00 ----A---- C:\Windows\system32\csrsrv.dll 2013-11-09 18:29:56 ----A---- C:\Windows\system32\drivers\ntfs.sys 2013-11-09 18:29:51 ----A---- C:\Windows\system32\quartz.dll 2013-11-09 18:29:50 ----A---- C:\Windows\system32\qdvd.dll 2013-11-09 18:29:48 ----A---- C:\Windows\system32\odbc32.dll 2013-11-09 18:29:45 ----A---- C:\Windows\system32\win32spl.dll 2013-11-09 18:29:41 ----A---- C:\Windows\system32\winlogon.exe 2013-11-09 18:29:41 ----A---- C:\Windows\explorer.exe 2013-11-09 18:29:39 ----A---- C:\Windows\system32\drivers\dfsc.sys 2013-11-09 18:29:38 ----A---- C:\Windows\system32\lsasrv.dll 2013-11-09 18:29:37 ----A---- C:\Windows\system32\webio.dll 2013-11-09 18:29:37 ----A---- C:\Windows\system32\sspisrv.dll 2013-11-09 18:29:37 ----A---- C:\Windows\system32\sspicli.dll 2013-11-09 18:29:37 ----A---- C:\Windows\system32\secur32.dll 2013-11-09 18:29:37 ----A---- C:\Windows\system32\lsass.exe 2013-11-09 18:29:36 ----D---- C:\Program Files\PokerStars.BE 2013-11-09 18:29:35 ----A---- C:\Windows\system32\drivers\srvnet.sys 2013-11-09 18:29:35 ----A---- C:\Windows\system32\drivers\srv2.sys 2013-11-09 18:29:35 ----A---- C:\Windows\system32\drivers\srv.sys 2013-11-09 18:29:33 ----A---- C:\Windows\system32\psisdecd.dll 2013-11-09 18:29:32 ----A---- C:\Windows\system32\wmpmde.dll 2013-11-09 18:29:30 ----A---- C:\Windows\system32\oleaut32.dll 2013-11-09 18:29:30 ----A---- C:\Windows\system32\oleacc.dll 2013-11-09 18:29:29 ----A---- C:\Windows\system32\msxml6.dll 2013-11-09 18:29:26 ----A---- C:\Windows\system32\FXSCOVER.exe 2013-11-09 18:29:23 ----A---- C:\Windows\system32\wintrust.dll 2013-11-09 18:29:20 ----A---- C:\Windows\system32\dpnet.dll 2013-11-09 18:29:19 ----A---- C:\Windows\system32\asycfilt.dll 2013-11-09 18:29:18 ----A---- C:\Windows\system32\t2embed.dll 2013-11-09 18:29:17 ----A---- C:\Windows\system32\msasn1.dll 2013-11-09 18:29:15 ----A---- C:\Windows\system32\inetcomm.dll 2013-11-09 18:29:12 ----A---- C:\Windows\system32\wmp.dll 2013-11-09 18:29:10 ----A---- C:\Windows\system32\wmploc.DLL 2013-11-09 18:29:08 ----A---- C:\Windows\system32\msxml3.dll 2013-11-09 18:29:06 ----A---- C:\Windows\system32\ntdll.dll 2013-11-09 18:29:04 ----A---- C:\Windows\system32\apphelp.dll 2013-11-09 18:29:03 ----A---- C:\Windows\system32\dnsrslvr.dll 2013-11-09 18:29:03 ----A---- C:\Windows\system32\dnscacheugc.exe 2013-11-09 18:29:03 ----A---- C:\Windows\system32\dnsapi.dll 2013-11-09 18:29:00 ----A---- C:\Windows\system32\odbctrac.dll 2013-11-09 18:29:00 ----A---- C:\Windows\system32\odbcjt32.dll 2013-11-09 18:29:00 ----A---- C:\Windows\system32\odbccu32.dll 2013-11-09 18:29:00 ----A---- C:\Windows\system32\odbccr32.dll 2013-11-09 18:29:00 ----A---- C:\Windows\system32\odbccp32.dll 2013-11-09 18:28:58 ----A---- C:\Windows\system32\comctl32.dll 2013-11-09 18:28:57 ----A---- C:\Windows\system32\synceng.dll 2013-11-09 18:28:55 ----A---- C:\Windows\system32\ir32_32.dll 2013-11-09 18:28:55 ----A---- C:\Windows\system32\iccvid.dll 2013-11-09 18:28:54 ----A---- C:\Windows\system32\rtutils.dll 2013-11-09 18:28:53 ----A---- C:\Windows\system32\netapi32.dll 2013-11-09 18:28:53 ----A---- C:\Windows\system32\browser.dll 2013-11-09 18:28:53 ----A---- C:\Windows\system32\browcli.dll 2013-11-09 18:28:51 ----A---- C:\Windows\system32\tsbyuv.dll 2013-11-09 18:28:51 ----A---- C:\Windows\system32\msyuv.dll 2013-11-09 18:28:51 ----A---- C:\Windows\system32\msvidc32.dll 2013-11-09 18:28:51 ----A---- C:\Windows\system32\msrle32.dll 2013-11-09 18:28:51 ----A---- C:\Windows\system32\mciavi32.dll 2013-11-09 18:28:51 ----A---- C:\Windows\system32\iyuv_32.dll 2013-11-09 18:28:51 ----A---- C:\Windows\system32\avifil32.dll 2013-11-09 18:28:50 ----A---- C:\Windows\system32\srvsvc.dll 2013-11-09 18:28:49 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys 2013-11-09 18:28:49 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys 2013-11-09 18:28:49 ----A---- C:\Windows\system32\drivers\mrxsmb.sys 2013-11-09 18:28:47 ----A---- C:\Windows\system32\ncrypt.dll 2013-11-09 18:28:45 ----A---- C:\Windows\system32\mstsc.exe 2013-11-09 18:28:39 ----A---- C:\Windows\system32\mfc40u.dll 2013-11-09 18:28:39 ----A---- C:\Windows\system32\mfc40.dll 2013-11-09 18:28:37 ----A---- C:\Windows\system32\rdrmemptylst.exe 2013-11-09 18:28:37 ----A---- C:\Windows\system32\rdpwsx.dll 2013-11-09 18:28:37 ----A---- C:\Windows\system32\rdpcorekmts.dll 2013-11-09 18:28:35 ----A---- C:\Windows\system32\kerberos.dll 2013-11-09 18:28:34 ----A---- C:\Windows\system32\drivers\partmgr.sys 2013-11-09 18:28:33 ----A---- C:\Windows\system32\EncDec.dll 2013-11-09 18:28:32 ----A---- C:\Windows\system32\d3d10warp.dll 2013-11-09 18:28:31 ----A---- C:\Windows\system32\DWrite.dll 2013-11-09 18:28:31 ----A---- C:\Windows\system32\d3d10_1core.dll 2013-11-09 18:28:31 ----A---- C:\Windows\system32\d3d10_1.dll 2013-11-09 18:28:31 ----A---- C:\Windows\system32\d2d1.dll 2013-11-09 18:28:29 ----A---- C:\Windows\system32\msvcrt.dll 2013-11-09 18:28:28 ----A---- C:\Windows\system32\localspl.dll 2013-11-09 18:28:26 ----A---- C:\Windows\system32\drivers\volsnap.sys 2013-11-09 18:28:24 ----A---- C:\Windows\system32\poqexec.exe 2013-11-09 18:28:23 ----A---- C:\Windows\system32\cabview.dll 2013-11-09 18:28:22 ----A---- C:\Windows\system32\mfc42u.dll 2013-11-09 18:28:22 ----A---- C:\Windows\system32\mfc42.dll 2013-11-09 18:28:18 ----D---- C:\Users\paul\AppData\Roaming\Adobe 2013-11-09 18:28:14 ----A---- C:\Windows\system32\StructuredQuery.dll 2013-11-09 18:28:12 ----A---- C:\Windows\system32\drivers\bowser.sys 2013-11-09 18:28:11 ----A---- C:\Windows\system32\consent.exe 2013-11-09 18:27:05 ----D---- C:\Users\paul\AppData\Roaming\Google 2013-11-09 18:24:05 ----D---- C:\ProgramData\Sun 2013-11-09 18:24:04 ----D---- C:\Program Files\Common Files\Java 2013-11-09 18:24:02 ----A---- C:\Windows\system32\npDeployJava1.dll 2013-11-09 18:24:02 ----A---- C:\Windows\system32\javaws.exe 2013-11-09 18:24:02 ----A---- C:\Windows\system32\deployJava1.dll 2013-11-09 18:23:52 ----A---- C:\Windows\system32\WindowsAccessBridge.dll 2013-11-09 18:23:52 ----A---- C:\Windows\system32\javaw.exe 2013-11-09 18:23:52 ----A---- C:\Windows\system32\java.exe 2013-11-09 18:23:38 ----D---- C:\Program Files\Java 2013-11-09 18:22:48 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2013-11-09 18:22:44 ----D---- C:\Windows\system32\Macromed 2013-11-09 18:22:06 ----D---- C:\Program Files\Speccy 2013-11-09 18:18:11 ----D---- C:\ProgramData\ESET 2013-11-09 18:18:11 ----D---- C:\Program Files\ESET 2013-11-09 18:15:45 ----D---- C:\ProgramData\Malwarebytes 2013-11-09 18:15:44 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2013-11-09 18:15:44 ----A---- C:\Windows\system32\drivers\mbam.sys 2013-11-09 18:13:00 ----D---- C:\Program Files\Google 2013-11-09 18:12:56 ----D---- C:\Program Files\CCleaner 2013-11-09 18:12:24 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-11-09 18:12:24 ----A---- C:\Windows\system32\winsrv.dll 2013-11-09 18:12:24 ----A---- C:\Windows\system32\KernelBase.dll 2013-11-09 18:12:24 ----A---- C:\Windows\system32\kernel32.dll 2013-11-09 18:12:24 ----A---- C:\Windows\system32\conhost.exe 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-11-09 18:12:23 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-11-09 18:12:22 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-11-09 18:12:22 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-11-09 18:12:22 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-11-09 18:12:22 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-11-09 18:12:22 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-11-09 18:12:22 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-11-09 18:12:22 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-11-09 18:12:22 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-11-09 18:12:22 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-11-09 18:12:22 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-11-09 18:12:21 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-11-09 18:12:21 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-11-09 18:12:21 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-11-09 18:12:21 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-11-09 18:11:51 ----D---- C:\Program Files\WinRAR 2013-11-09 18:09:57 ----N---- C:\Windows\system32\MpSigStub.exe 2013-11-09 18:07:17 ----A---- C:\Windows\system32\wups2.dll 2013-11-09 18:07:17 ----A---- C:\Windows\system32\wucltux.dll 2013-11-09 18:07:17 ----A---- C:\Windows\system32\wuaueng.dll 2013-11-09 18:07:17 ----A---- C:\Windows\system32\wuauclt.exe 2013-11-09 18:07:02 ----A---- C:\Windows\system32\wuwebv.dll 2013-11-09 18:07:02 ----A---- C:\Windows\system32\wuapp.exe 2013-11-09 18:04:59 ----D---- C:\ProgramData\Adobe 2013-11-09 18:04:52 ----D---- C:\Program Files\Common Files\Adobe 2013-11-09 18:04:52 ----D---- C:\Program Files\Adobe 2013-11-09 17:59:34 ----D---- C:\Program Files\Microsoft Synchronization Services 2013-11-09 17:59:33 ----D---- C:\Program Files\Common Files\DESIGNER 2013-11-09 17:59:07 ----D---- C:\Windows\PCHEALTH 2013-11-09 17:59:07 ----D---- C:\Program Files\Microsoft.NET 2013-11-09 17:59:07 ----D---- C:\Program Files\Microsoft Sync Framework 2013-11-09 17:59:07 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition 2013-11-09 17:58:08 ----D---- C:\Program Files\Microsoft Visual Studio 8 2013-11-09 17:57:22 ----D---- C:\Program Files\Microsoft Analysis Services 2013-11-09 17:56:35 ----D---- C:\Program Files\Microsoft Office 2013-11-09 17:56:34 ----D---- C:\ProgramData\Microsoft Help 2013-11-09 17:56:25 ----RHD---- C:\MSOCache 2013-11-09 17:54:57 ----A---- C:\Windows\system32\TwnLib4.dll 2013-11-09 17:54:56 ----A---- C:\Windows\system32\imagXRA7.dll 2013-11-09 17:54:56 ----A---- C:\Windows\system32\imagXR7.dll 2013-11-09 17:54:56 ----A---- C:\Windows\system32\imagXpr7.dll 2013-11-09 17:54:56 ----A---- C:\Windows\system32\imagX7.dll 2013-11-09 17:54:55 ----D---- C:\ProgramData\Nero 2013-11-09 17:54:55 ----D---- C:\Program Files\Nero 2013-11-09 17:54:55 ----D---- C:\Program Files\Common Files\Nero 2013-11-09 17:54:05 ----SHD---- C:\Windows\Installer 2013-11-09 17:47:54 ----A---- C:\Windows\system32\drivers\vinyl97.sys 2013-11-09 17:47:30 ----A---- C:\Windows\system32\drivers\RTKVAC.SYS 2013-11-09 17:47:29 ----A---- C:\Windows\system32\RTLCPL.EXE 2013-11-09 17:47:29 ----A---- C:\Windows\system32\RTLCPAPI.dll 2013-11-09 17:47:29 ----A---- C:\Windows\system32\RtkPgExt.dll 2013-11-09 17:47:29 ----A---- C:\Windows\system32\RtkAPO.dll 2013-11-09 17:47:29 ----A---- C:\Windows\SOUNDMAN.EXE 2013-11-09 17:47:28 ----A---- C:\Windows\Alcrmv.exe 2013-11-09 17:45:57 ----D---- C:\Program Files\Intel 2013-11-09 17:45:57 ----A---- C:\Windows\system32\CSVer.dll 2013-11-09 17:45:34 ----D---- C:\Intel 2013-11-09 17:44:26 ----D---- C:\ProgramData\DriverGenius 2013-11-09 17:43:15 ----D---- C:\Program Files\Driver-Soft 2013-11-09 17:34:34 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-11-09 17:30:31 ----D---- C:\Users\paul\AppData\Roaming\Identities 2013-11-09 17:30:18 ----SD---- C:\Users\paul\AppData\Roaming\Microsoft 2013-11-09 17:30:18 ----D---- C:\Users\paul\AppData\Roaming\Media Center Programs 2013-11-09 17:29:56 ----SHD---- C:\Recovery 2013-11-09 17:29:56 ----SHD---- C:\ProgramData\Sjablonen 2013-11-09 17:29:56 ----SHD---- C:\ProgramData\Menu Start 2013-11-09 17:29:56 ----SHD---- C:\ProgramData\Favorieten 2013-11-09 17:29:56 ----SHD---- C:\ProgramData\Documenten 2013-11-09 17:29:56 ----SHD---- C:\ProgramData\Bureaublad 2013-11-09 17:26:14 ----D---- C:\Windows\SoftwareDistribution 2013-11-09 17:23:27 ----D---- C:\Windows\Prefetch 2013-11-09 17:23:05 ----ASH---- C:\pagefile.sys 2013-11-09 17:23:02 ----ASH---- C:\hiberfil.sys 2013-11-09 17:22:18 ----N---- C:\bootsqm.dat 2013-11-09 17:22:17 ----SHD---- C:\System Volume Information 2013-11-09 17:20:27 ----D---- C:\Windows\Panther 2013-11-09 17:20:16 ----RASH---- C:\BOOTSECT.BAK 2013-11-09 17:20:14 ----SHD---- C:\Boot ======List of files/folders modified in the last 1 month====== 2013-11-10 09:57:26 ----D---- C:\Windows\Temp 2013-11-10 09:57:04 ----D---- C:\Windows\system32\drivers 2013-11-10 09:26:45 ----D---- C:\Windows\System32 2013-11-10 09:14:35 ----RD---- C:\Program Files 2013-11-10 08:44:48 ----HD---- C:\ProgramData 2013-11-10 08:31:13 ----D---- C:\Windows\Tasks 2013-11-10 08:26:31 ----D---- C:\Windows 2013-11-10 08:24:00 ----D---- C:\Windows\inf 2013-11-10 08:23:59 ----D---- C:\Windows\system32\catroot 2013-11-10 08:23:58 ----D---- C:\Windows\system32\catroot2 2013-11-10 08:23:57 ----D---- C:\Windows\system32\DriverStore 2013-11-10 08:23:47 ----D---- C:\Windows\system32\config 2013-11-09 22:09:00 ----D---- C:\Windows\system32\Tasks 2013-11-09 21:51:58 ----D---- C:\Windows\Microsoft.NET 2013-11-09 21:51:57 ----RSD---- C:\Windows\assembly 2013-11-09 21:50:26 ----D---- C:\Windows\winsxs 2013-11-09 21:48:53 ----D---- C:\Program Files\Windows Media Player 2013-11-09 21:03:26 ----D---- C:\Windows\security 2013-11-09 20:02:44 ----D---- C:\Windows\system32\NDF 2013-11-09 19:53:24 ----D---- C:\Windows\Logs 2013-11-09 19:53:24 ----D---- C:\Windows\debug 2013-11-09 19:40:18 ----D---- C:\Windows\system32\nl-NL 2013-11-09 19:40:15 ----D---- C:\Program Files\Common Files\System 2013-11-09 19:40:13 ----D---- C:\Windows\ehome 2013-11-09 19:40:13 ----D---- C:\Program Files\Windows Mail 2013-11-09 19:40:04 ----D---- C:\Program Files\Windows Journal 2013-11-09 19:40:02 ----D---- C:\Windows\system32\Boot 2013-11-09 19:39:55 ----D---- C:\Program Files\Internet Explorer 2013-11-09 19:39:54 ----D---- C:\Windows\PolicyDefinitions 2013-11-09 19:39:53 ----D---- C:\Windows\system32\wbem 2013-11-09 19:39:53 ----D---- C:\Windows\system32\migration 2013-11-09 19:39:52 ----D---- C:\Windows\system32\en-US 2013-11-09 18:58:56 ----A---- C:\Windows\win.ini 2013-11-09 18:24:04 ----D---- C:\Program Files\Common Files 2013-11-09 18:00:38 ----RSD---- C:\Windows\Fonts 2013-11-09 18:00:29 ----D---- C:\Windows\ShellNew 2013-11-09 18:00:24 ----D---- C:\Program Files\Common Files\microsoft shared 2013-11-09 18:00:11 ----D---- C:\Program Files\MSBuild 2013-11-09 17:59:07 ----SD---- C:\ProgramData\Microsoft 2013-11-09 17:52:03 ----D---- C:\Windows\system32\wdi 2013-11-09 17:45:09 ----D---- C:\Windows\system32\restore 2013-11-09 17:40:37 ----D---- C:\Windows\system32\LogFiles 2013-11-09 17:37:50 ----D---- C:\Windows\system32\CodeIntegrity 2013-11-09 17:36:29 ----D---- C:\Windows\system32\drivers\UMDF 2013-11-09 17:30:29 ----SHD---- C:\$Recycle.Bin 2013-11-09 17:30:19 ----D---- C:\Windows\rescache 2013-11-09 17:30:15 ----RD---- C:\Users 2013-11-09 17:29:56 ----D---- C:\Windows\system32\Recovery 2013-11-09 17:29:56 ----D---- C:\Program Files\Windows NT 2013-11-09 17:25:56 ----D---- C:\Windows\system32\sysprep ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2012-11-16 50152] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648] R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2012-03-14 120152] R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 33656] R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2012-03-14 148504] R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704] R3 E100B;Intel® PRO-adapterstuurprogramma; C:\Windows\system32\DRIVERS\e100b325.sys [2009-07-13 159232] R3 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2012-11-16 169120] R3 ialm;ialm; C:\Windows\system32\DRIVERS\ialmnt5.sys [2006-04-01 1049180] R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\Windows\system32\drivers\vinyl97.sys [2007-06-27 207488] S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720] S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS [2008-01-24 4132640] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888] S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2012-11-16 913184] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-11-09 116648] S2 KMService;KMService; C:\Windows\system32\srvany.exe [2013-11-09 8192] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-09 251248] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-11-09 116648] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-12-27 31124344] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000] -----------------EOF-----------------
-
ik heb een probleem met een paar keer uitvallen met een blauw scherm nu heb ik wat gezocht op google en dit gevonden met msconfig en dan tab opstarten stond een program bij en dat is winsec fabrikant is onbekend ik weet niet wat dat is ik heb dat vinkje daar uit gezet en probleem lijkt opgelost iemand idee van waar winsec komt gr thermos
-
het is in orde het was de harde schijf dat kapot was alvast bedankt voor de moeite gr thermos
-
mijn laptop vind geen harde schijf meer en geraak ook niet in bios met f2 toets komt dan op press f1 en dan staat er iets van bios shadowed iemand een gedacht wat het kan zijn het is laptop acer aspire 7535 gr thermos
-
hier ben ik nog eens heb op harde schijf windows 98 + windows xp ge instaleert windows 98 is voor mijn dochter om haar oude spelletjes nog is te laten draaien het staat op twee partieties dus eerste partitie win 98 en tweede xp het probleem is windows 98 is geinstaleerd maar geeft foutmeldingen aan komt in eens blauw scherm slaat soms vast ale kan er weinig mee doen somsmelding rundll32 of msgsrv32 of usbr.exe heb de drivers op internet gezocht van moederbord her gigabyte moederbord ga-8i865gme-775-rh een usb stick werkt ook niet heb de driver geprobeerd te instaleren maar dan slaagt alles tilt voor de rest staat bij apparaat beheer alles just geen enkele geel uit roep teken is er iemand die wat kan helpen gr thermos
