antan
-
Items
20 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door antan
-
Wachtwoordbeveiling tijdens uit slaapstand komen,werkt niet
antan plaatste een topic in Archief Windows 7
Begin dit jaar herinstalleerde ik Windows 7, waarna echter de wachtwoordbeveiliging tijdens uit slaapstand komen, niet meer werkte. Zie de drie bijlagen. Zelfs als ik de "wijzigingen opsla" doet het dit blijkbaar niet en springt terug naar "selecteer een energiebeheerschema" waarna de wachtwoordbeveiliging terug is uitgeschakeld. Hoe kan ik de wachtwoordbeveiliging terug actief maken? met dank bij voorbaat
-
GData scan via USB-stick gaat ongevraagd in slaapstand
antan reageerde op antan's topic in Archief Bestrijding malware & virussen
Lukt me nu niet om Speccy te openen. Deze morgen was moederbord 127°C,Processor 52°C,Grafische kaart 81°C en opslag 35°C. M'n PC is meer dan 4 jaar oud, ga hem eens trachten te ontstoffen. Hebt u al enig idee hoe ik nu kan scannen met GData vanaf een USB-stick zonder dat m'n PC in diepe slaapstand gaat? M'n laatste MalwareBytes scan vanaf de PC bedroeg 4 uur en PC ging toen niet in slaapstand. En kan ik nu safe online banking doen? Zou die eerste melding van GData nu echt geweest zijn of toch maar een "false positive"? -
GData scan via USB-stick gaat ongevraagd in slaapstand
antan reageerde op antan's topic in Archief Bestrijding malware & virussen
Hierbij het logje : [ATTACH]32512[/ATTACH] Tijdens de scan verscheen er een popup van GData : gedragscontrole : 1. proces 11748. naam : pevz.exe .Aanmaakdatum : 6 feb. 2014 . Gestart door : cmd.exe. 2. Acties : - het programma heeft handelingen namens een ander programma uitgevoerd - het programma REGISTREERT ALLE TOETSAANSLAGEN (!) Is dit serieus te nemen? 20140602zoek-results.txt -
GData scan via USB-stick gaat ongevraagd in slaapstand
antan reageerde op antan's topic in Archief Bestrijding malware & virussen
Hierbij het logje. [ATTACH]32505[/ATTACH] 20140601log.txt -
Goeiemiddag, Acht dagen geleden (24 mei) kreeg ik een popup boodschap van GData dat er “in uw browser een onbekende malware aangetroffen is. Fingerprint : [4e5032b2].” Ik mocht “geen wachtwoorden in browser invoeren en geen online banking doen” (browser was Google Chrome). Ik moest proberen het virus te verwijderen met de GData Boot CD. Wat ik gedaan heb,helaas kon GData niet geüpdate worden via die Boot CD. Ik heb dan opgestart via een USB-stick met een geüpdate versie van GData en beginnen scannen. Helaas, na ca. 45 minuten gaat mijn PC in slaap/sluimerstand en is er niet meer uit te krijgen,en dit ondanks het feit dat ik de slaap/sluimerstand volledig heb uitgeschakeld. Ik kan de PC nog enkel volledig uitzetten en heropstarten door 10 seconden op de aan/uit knop te drukken. Hoe kan ik nu een volledige scan doen via de USB stick? Laat ik de PC in slaapstand en laat ik GData verder scannen tot de scan voltooid is (denk dat volledige scan zo’n drie uur duurt, tenminste in de veronderstelling dat GData verder scant als hij in slaap/sluimerstand komt). Of hoe kan die automatische slaap/sluimerstand voorkomen worden? Met dank bij voorbaat, Anton P.S.1 Volgens GData zou mijn bank mogelijks het “trusteer rapport” geïnstalleerd hebben waardoor ik die boodschap zou gekregen hebben. Heb de vraag ook aan mijn bank gesteld maar nog geen antwoord gekregen. P.S.2 Volledige systeemscans met GData, MalwareBytes Antimalware en Windows Security Essentials resulteerden in “geen dreigingen gedetecteerd op PC”. Enkel Microsoft Safety Scanner vond het beruchte Ukash virus op 26 mei : “Ransom:Win32/Reveton.V”., maar twee latere scans waren clean. P.S.3 Zag nu pas dat op 5 mei een hotmail adres mogelijks gehackt werd door “ziggo.nl”(“heeft de beveiligigngsinstellingen gewijzigd”). P.S.4 Kreeg gisteren melding dat mijn iTunes-account frauduleus zou gebruikt worden. Ik heb wel iTunes gedownload voor QuickTime maar verder gebruik ik dit nooit.
-
Helaas werkte de herstelinstallatie niet : Heb eerst twee programma's moeten verwijden nl. iTunes en Photostudio ArcSoft,maar na verwijdering kreeg ik toch volgende boodschap : [TABLE] [TR] [TD] [/TD] [TD]The following issues are preventing Windows from upgrading. Cancel the upgrade, complete each task, and then restart the upgrade to continue. [/TD] [/TR] [/TABLE] Your current version of Windows is more recent than the version you are trying to upgrade to. Windows cannot complete the upgrade. - - - Updated - - - Helaas werkte de herstelinstallatie niet : Heb eerst twee programma's moeten verwijden nl. iTunes en Photostudio ArcSoft,maar na verwijdering kreeg ik toch volgende boodschap : [TABLE] [TR] [TD][/TD] [TD]The following issues are preventing Windows from upgrading. Cancel the upgrade, complete each task, and then restart the upgrade to continue. [/TD] [/TR] [/TABLE] Your current version of Windows is more recent than the version you are trying to upgrade to. Windows cannot complete the upgrade.
-
Ok. In ieder geval bedankt voor de moeite en tijd die jullie erin gestopt hebben.
-
Hierbij het Word document. Ik heb de kolom "beschrijving" versmald,anders werd de tekst heel klein weergegeven. [ATTACH]29782[/ATTACH] 20140109_Services lokaal.docx
-
Blijkbaar zijn er enkele tientallen services die niet zijn opgestart,zowel in Standaard als in Uitgebreid. Moet ik die hier 1 voor 1 handmatig citeren want "alles selecteren" werkt niet.
-
[ATTACH]29697[/ATTACH] AdwCleaner[S0].txt
-
Systeemcontrole uitgevoerd en er zijn geen schendingen van de integriteit gevonden.
-
GData staat niet tussen de antivirus- en antispywareprogramma's. Heb de "Realtimebeveiliging" uitgeschakeld. Ik veronderstel dat het logisch is dat de internetverbinding dan wordt uitgeschakeld(?).
-
Hierbij het logje. [ATTACH]29663[/ATTACH] zoek-results.txt
-
Heb m'n standaardwebbrowser veranderd naar Google Chrome. Daarmee is het probleem (gedeeltelijk) opgelost.
-
Bijlage staat nu in vorig bericht. Heb Firefox geherinitialiseerd maar helaas blijft het probleem zich voordoen. Wat ik o.a.niet zie op Firefox maar wel met Google Chrome : het groene vinkje en het rode kruisje op de pop-up van "Cookie beleid", het driehoekje onderaan "kwalijk bericht rapporteren", tekst in kleur wordt niet in de juiste kleur weergegeven (hier blauw ipv rood). Op andere sites waar de tekst in blauwe kleur is, wordt rode tekst gewoon als blauw weergegeven.
-
[ATTACH]29647[/ATTACH] log.txt
-
Hierbij het logje. [ATTACH]29645[/ATTACH] Ik gebruik Mozilla Firefox maar heb nu Google Chrome gebruikt en daar zijn de kleuren en de opmaak blijkbaar normaal. Waarschijnlijk zal het probleem te maken hebben met kleurinstellingen of opmaak in Mozilla Firefox?
-
?Onoplosbaar?
-
Dag Clarkie,<br> <br> Bedankt voor de snelle reactie.<br> PC start op nu op in Gewone Modus. Weet niet meer hoe de vraag juist gesteld werd in Veilige Modus. Was wel in trant van "wilt u de instellingen van Veilige Modus overnemen".<br> Het virus was "Script.Trojan.Agent". Heb het met hulp verwijderd, zie : http://www.pcwebplus.nl/phpbb/viewtopic.php?f=206&t=12094 .<br> Was blijkbaar heel lastig te verwijderen want heb nog 2 x met GData en 1 x met MBAM gescand en resultaat was negatief , toch dook het virus de dag erna terug op...!<br> Sindsdien bijna dagelijks met GData gescand en alles bleek positief(en soms met MBAM en Windows Defender) .<br> Gisteren wel nog per abuis de PUP "outobus" gedownload maar direct weer verwijderd.<br> Rode tekens op het scherm worden als zwarte weergegeven (maar bij afdrukken wel rood). Nu zie ik ook maar de helft van de tekens bij "met citaat reageren".<br> Wat ik bijvoorbeeld niet meer zie op een website : als ik naar GoogleMaps surf, zie ik de knop "Deelvenster verbergen" niet meer, maar daar ik hem van vroeger nog wist te localiseren, kan ik hem nog gebruiken.<br> Hieronder het logje.<br> <br>Logfile of random's system information tool 1.09 (written by random/random)<br>Run by Niobe at 2013-12-25 12:00:54<br>Microsoft Windows 7 Home Premium Service Pack 1<br>System drive C: has 274 GB (29%) free of 941 GB<br>Total RAM: 8151 MB (61% free)<br><br>Logfile of Trend Micro HijackThis v2.0.4<br>Scan saved at 12:01:55, on 25/12/2013<br>Platform: Windows 7 SP1 (WinNT 6.00.3505)<br>MSIE: Internet Explorer v11.0 (11.00.9600.16428)<br>Boot mode: Normal<br><br>Running processes:<br>C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe<br>C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe<br>C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe<br>C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe<br>C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe<br>C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe<br>C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe<br>C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe<br>C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE<br>C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe<br>C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe<br>C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe<br>C:\Program Files (x86)\iTunes\iTunesHelper.exe<br>C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe<br>C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe<br>C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe<br>C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe<br>C:\Windows\SysWOW64\DllHost.exe<br>C:\program files (x86)\g data\totalprotection\avk\avk.exe<br>C:\Program Files (x86)\Mozilla Firefox\firefox.exe<br>C:\Program Files\trend micro\Niobe.exe<br><br>R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896<br>R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157<br>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896<br>R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank<br>R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = <br>R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = <br>R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm<br>R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, enhanced for Bing and MSN<br>R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local<br>R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = <br>F2 - REG:system.ini: UserInit=userinit.exe,<br>O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll<br>O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll<br>O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL<br>O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe<br>O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"<br>O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe<br>O4 - HKLM\..\Run: [sDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"<br>O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"<br>O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime<br>O4 - HKLM\..\Run: [WD Drive Unlocker] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe<br>O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"<br>O4 - HKLM\..\Run: [G Data AntiVirus Tray] C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe<br>O4 - HKLM\..\Run: [GDFirewallTray] C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe<br>O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"<br>O4 - HKLM\..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe<br>O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe<br>O4 - HKCU\..\Run: [spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean<br>O4 - HKCU\..\Run: [Adobe Reader Synchronizer] "C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AdobeCollabSync.exe"<br>O4 - HKCU\..\Run: [ManyCam] "C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe" /silent<br>O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')<br>O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')<br>O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')<br>O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')<br>O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE<br>O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe<br>O4 - Global Startup: WDDMStatus.lnk = C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe<br>O4 - Global Startup: WDSmartWare.lnk = C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe<br>O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105<br>O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000<br>O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll<br>O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll<br>O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL<br>O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll<br>O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll<br>O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll<br>O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll<br>O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics<br>O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll<br>O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL<br>O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe<br>O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe<br>O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe<br>O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)<br>O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe<br>O23 - Service: G Data AntiVirus Proxy (AVKProxy) - G Data Software AG - C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe<br>O23 - Service: G Data Scheduler (AVKService) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe<br>O23 - Service: G Data Bestandssysteembewaker (AVKWCtl) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe<br>O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe<br>O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)<br>O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)<br>O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe<br>O23 - Service: G Data Backup Service (GDBackupSvc) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe<br>O23 - Service: G Data Personal Firewall (GDFwSvc) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe<br>O23 - Service: G Data Scanner (GDScan) - G Data Software AG - C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe<br>O23 - Service: G Data Tuner Service (GDTunerSvc) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe<br>O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe<br>O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe<br>O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe<br>O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe<br>O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)<br>O23 - Service: Inkjet Printer/Scanner Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE<br>O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe<br>O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)<br>O23 - Service: Logitech Solar Keyboard Service (L4301_Solar) - Logitech, Inc. - C:\Program Files\Logitech\SolarApp\L4301_Solar.exe<br>O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe<br>O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)<br>O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)<br>O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe<br>O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe<br>O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)<br>O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)<br>O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)<br>O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)<br>O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe<br>O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe<br>O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe<br>O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)<br>O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)<br>O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)<br>O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe<br>O23 - Service: SecretZone Assist Service (SZASSIST) - Clarus, Inc. - C:\Program Files (x86)\Clarus\Samsung SecretZone\SZAssistSVC.exe<br>O23 - Service: G Data Datasafeservice (TSNxGService) - G Data Software - C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe<br>O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)<br>O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)<br>O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)<br>O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)<br>O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)<br>O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)<br>O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe<br>O23 - Service: WD SmartWare Drive Manager Service (WDDMService) - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe<br>O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe<br>O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe<br>O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)<br>O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)<br><br>--<br>End of file - 14976 bytes<br><br>======Listing Processes======<br><br>\SystemRoot\System32\smss.exe<br>%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16<br>wininit.exe<br>%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16<br>C:\Windows\system32\services.exe<br>C:\Windows\system32\lsass.exe<br>C:\Windows\system32\lsm.exe<br>winlogon.exe<br>C:\Windows\system32\svchost.exe -k DcomLaunch<br>"C:\Windows\system32\nvvsvc.exe"<br>"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"<br>C:\Windows\system32\svchost.exe -k RPCSS<br>"C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe"<br>"C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe"<br>C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted<br>C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted<br>C:\Windows\system32\svchost.exe -k LocalService<br>C:\Windows\system32\svchost.exe -k netsvcs<br>C:\Windows\system32\svchost.exe -k GPSvcGroup<br>"C:\Program Files\Logitech\SolarApp\L4301_Solar.exe"<br>"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"<br>C:\Windows\system32\nvvsvc.exe -session -first<br>C:\Windows\system32\svchost.exe -k NetworkService<br>C:\Windows\System32\spoolsv.exe<br>C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork<br>"C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe"<br>"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"<br>C:\Windows\system32\svchost.exe -k apphost<br>"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"<br>"C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe"<br>"C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe"<br>"C:\Program Files\Bonjour\mDNSResponder.exe"<br>"C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe"<br>"C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe"<br>C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt<br>"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"<br>C:\Windows\System32\svchost.exe -k HPZ12<br>C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe<br>"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"<br>"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"<br>C:\Windows\System32\svchost.exe -k HPZ12<br>"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"<br>"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl<br>C:\Windows\System32\snmp.exe<br>C:\Windows\system32\svchost.exe -k imgsvc<br>"C:\Program Files (x86)\Clarus\Samsung SecretZone\SZAssistSVC.exe"<br>C:\Windows\system32\svchost.exe -k iissvcs<br>"C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe"<br>"C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"<br>"C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe"<br>"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"<br>"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"<br>WLIDSvcM.exe 2236<br>"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"<br>"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"<br>"taskhost.exe"<br>"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp<br>\??\C:\Windows\system32\conhost.exe "880683459-966736032-769699763195046712-98306085817873017092306811881119455427<br>"C:\Windows\system32\Dwm.exe"<br>C:\Windows\Explorer.EXE<br>"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"<br>"C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe"<br>"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s<br>"C:\Program Files (x86)\Hercules\Deluxe Optical Glass\XtrCtrl.exe" /startup<br>"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe" <br>"C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe" /silent<br>"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe" <br>"C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe" <br>"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" <br>"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe" <br>"C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe" View=show_in_tray<br>"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" <br>"C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe" <br>"C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE" /tsr<br>"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" <br>"C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe" <br>"C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe" <br>"C:\Program Files (x86)\iTunes\iTunesHelper.exe" <br>"C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GdBgInx64.exe"<br>"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1<br>C:\Windows\system32\SearchIndexer.exe /Embedding<br>"C:\Program Files\iPod\bin\iPodService.exe"<br>C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation<br>C:\Windows\system32\svchost.exe -k HPService<br>"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-26913ead-c60c-45e7-a106-022333c498ce -SystemEventPortName:HostProcess-dc153963-a4d2-48a9-b027-5959918b9373 -IoCancelEventPortName:HostProcess-cb8598f6-ae78-4d77-b3be-54daa2981506 -NonStateChangingEventPortName:HostProcess-02afb52d-c29a-47f4-b2ac-82f827f1a277 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e2e32218-59ea-416c-9ca7-410f240a6da0 -DeviceGroupId:WpdFsGroup<br>"C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe" -Embedding<br>"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Deskjet D5500 series#1336589640" -Startup<br>"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding<br>"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding<br>"C:\Program Files\Windows Media Player\wmpnetwk.exe"<br>C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted<br>C:\Windows\System32\svchost.exe -k secsvcs<br>taskeng.exe {1C005018-3476-4884-A584-3ECD4B39E804}<br>"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" /autoupdate /silent /autoclose<br>"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" -Embedding<br>C:\Windows\SysWOW64\DllHost.exe /Processid:{EF16A570-5955-4320-AA4F-4FC669B870FA}<br>C:\Windows\system32\DllHost.exe /Processid:{4005BB4E-87C1-471E-8832-515DF5598ED7}<br>C:\Windows\system32\vssvc.exe<br>C:\Windows\System32\svchost.exe -k swprv<br>"C:\program files (x86)\g data\totalprotection\avk\avk.exe" /DoScan:0,2623590<br>"C:\Program Files\CCleaner\CCleaner.exe" /uac<br>C:\Windows\System32\vds.exe<br>"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "http://www.pc-helpforum.be/f167/"<br>C:\Windows\system32\wbem\wmiprvse.exe<br>"C:\Users\Niobe\Desktop\RSITx64.exe" <br>C:\Windows\System32\svchost.exe -k WerSvcGroup<br>C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}<br><br>======Scheduled tasks folder======<br><br>C:\Windows\tasks\Adobe Flash Player Updater.job<br>C:\Windows\tasks\GoogleUpdateTaskMachineCore.job<br>C:\Windows\tasks\GoogleUpdateTaskMachineUA.job<br><br>=========Mozilla firefox=========<br><br>ProfilePath - C:\Users\Niobe\AppData\Roaming\Mozilla\Firefox\Profiles\f4trsuu0.default<br><br>prefs.js - "browser.search.useDBForOrder" - true<br>prefs.js - "browser.startup.homepage" - "http://www.google.com"<br>prefs.js - "keyword.URL" - "http://www.google.com/search?btnG=Google+Search&q="<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]<br>"Description"=Adobe® Flash® Player 11.9.900.170 Plugin<br>"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]<br>"Description"=Adobe Shockwave Player<br>"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]<br>"Description"=iTunes Detector Plug-in<br>"Path"=<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]<br>"Description"=<br>"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/MycameraPlugin]<br>"Description"=Canon MycameraPlugin<br>"Path"=C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\NPCIG.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]<br>"Description"=Google Earth in your browser<br>"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@logitech.com/HarmonyRemote,version=1.0.0]<br>"Description"=Logitech Harmony Remote Plugin<br>"Path"=C:\Program Files (x86)\Logitech\Harmony Remote Driver\NprtHarmonyPlugin.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]<br>"Description"=<br>"Path"=disabled<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]<br>"Description"=Ag Player Plugin<br>"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]<br>"Description"=Office Authorization plug-in for NPAPI browsers<br>"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]<br>"Description"=Microsoft SharePoint Plug-in for Firefox<br>"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]<br>"Description"=WLPG Install MIME type<br>"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205]<br>"Description"=WLPG Install MIME type<br>"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]<br>"Description"=NVIDIA stereo images plugin for Mozilla browsers<br>"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]<br>"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers<br>"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]<br>"Description"=Google Update<br>"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]<br>"Description"=Google Update<br>"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]<br>"Description"=Handles PDFs in-place in Firefox<br>"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll<br><br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]<br>"Description"=Adobe® Flash® Player 11.9.900.170 Plugin<br>"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]<br>"Description"=Java™ Deployment Toolkit<br>"Path"=C:\Windows\system32\npDeployJava1.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]<br>"Description"=<br>"Path"=disabled<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]<br>"Description"=Ag Player Plugin<br>"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]<br>"Description"=Office Authorization plug-in for NPAPI browsers<br>"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL<br><br><br>C:\Program Files (x86)\Mozilla Firefox\components\<br>nsIQTScriptablePlugin.xpt<br><br>C:\Program Files (x86)\Mozilla Firefox\plugins\<br>np-mswmp.dll<br>NPOFF12.DLL<br>nppdf32.dll<br>npqtplugin.dll<br>npqtplugin2.dll<br>npqtplugin3.dll<br>npqtplugin4.dll<br>npqtplugin5.dll<br>QuickTimePlugin.class<br>WMP Firefox Plugin License.rtf<br>WMP Firefox Plugin RelNotes.txt<br><br>C:\Program Files (x86)\Mozilla Firefox\searchplugins\<br>yahoo.xml<br><br>======Registry dump======<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]<br>Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]<br>Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]<br>Spybot-S&D IE Protection - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll [2012-11-13 3214392]<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]<br>Aanmeldhulp voor Microsoft-account - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]<br>Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]<br><br>[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]<br>"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-10-06 8158240]<br>"CanonSolutionMenu"=C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2008-03-11 689488]<br>"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]<br>"CamserviceOG"=C:\Program Files (x86)\Hercules\Deluxe Optical Glass\XtrCtrl.exe [2011-06-14 3002152]<br>"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-11-14 1028384]<br>"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2013-12-10 1100248]<br>"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2013-12-10 2279712]<br><br>[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]<br>"Spybot-S&D Cleaning"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [2012-11-13 3713032]<br>"Adobe Reader Synchronizer"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AdobeCollabSync.exe [2013-09-05 694152]<br>"ManyCam"=C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe [2013-10-23 5394256]<br><br>[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]<br>"IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2009-10-02 284696]<br>"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]<br>"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2011-05-10 49208]<br>"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2012-11-13 3825176]<br>"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]<br>"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]<br>"WD Drive Unlocker"=C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [2012-09-06 1688008]<br>"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]<br>"G Data AntiVirus Tray"=C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe [2013-08-21 1444472]<br>"GDFirewallTray"=C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe [2013-03-22 1854928]<br>"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392]<br>"WD Quick View"=C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [2013-11-02 5537136]<br>"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe []<br><br>C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup<br>HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe<br>WDDMStatus.lnk - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe<br>WDSmartWare.lnk - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe<br><br>C:\Users\Niobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup<br>OneNote 2010 Schermopname en Snel starten.lnk - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]<br>WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}<br><br>[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]<br>"SecurityProviders"=credssp.dll<br><br>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]<br><br>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]<br><br>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]<br><br>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]<br><br>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]<br><br>[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]<br>"ConsentPromptBehaviorAdmin"=5<br>"ConsentPromptBehaviorUser"=3<br>"EnableUIADesktopToggle"=0<br>"dontdisplaylastusername"=0<br>"legalnoticecaption"=<br>"legalnoticetext"=<br>"shutdownwithoutlogon"=1<br>"undockwithoutlogon"=1<br><br>[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]<br>"NoActiveDesktop"=1<br>"NoActiveDesktopChanges"=1<br>"ForceActiveDesktopOn"=0<br>"NoDriveTypeAutoRun"=255<br>"NoDriveAutoRun"=67108863<br>"HonorAutorunSetting"=1<br><br>[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]<br>"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"<br>"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"<br>"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"<br>"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"<br><br>[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]<br><br>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]<br>"vidc.mrle"=msrle32.dll<br>"vidc.msvc"=msvidc32.dll<br>"msacm.imaadpcm"=imaadp32.acm<br>"msacm.msg711"=msg711.acm<br>"msacm.msgsm610"=msgsm32.acm<br>"msacm.msadpcm"=msadp32.acm<br>"midimapper"=midimap.dll<br>"wavemapper"=msacm32.drv<br>"VIDC.UYVY"=msyuv.dll<br>"VIDC.YUY2"=msyuv.dll<br>"VIDC.YVYU"=msyuv.dll<br>"VIDC.IYUV"=iyuv_32.dll<br>"vidc.i420"=iyuv_32.dll<br>"VIDC.YVU9"=tsbyuv.dll<br>"msacm.l3acm"=C:\Windows\System32\l3codeca.acm<br>"wave1"=wdmaud.drv<br>"midi1"=wdmaud.drv<br>"mixer1"=wdmaud.drv<br>"aux1"=wdmaud.drv<br>"wave"=wdmaud.drv<br>"midi"=wdmaud.drv<br>"mixer"=wdmaud.drv<br>"aux"=wdmaud.drv<br>"MSVideo8"=VfWWDM32.dll<br>"wave2"=wdmaud.drv<br>"mixer2"=wdmaud.drv<br>"wave3"=wdmaud.drv<br>"mixer3"=wdmaud.drv<br>"wave5"=wdmaud.drv<br>"mixer5"=wdmaud.drv<br>"wave6"=wdmaud.drv<br>"midi3"=wdmaud.drv<br>"mixer6"=wdmaud.drv<br>"aux2"=wdmaud.drv<br>"wave7"=wdmaud.drv<br>"midi4"=wdmaud.drv<br>"mixer7"=wdmaud.drv<br>"aux3"=wdmaud.drv<br>"wave8"=wdmaud.drv<br>"midi5"=wdmaud.drv<br>"mixer8"=wdmaud.drv<br>"aux4"=wdmaud.drv<br>"wave9"=wdmaud.drv<br>"midi6"=wdmaud.drv<br>"mixer9"=wdmaud.drv<br>"aux5"=wdmaud.drv<br>"midi7"=wdmaud.drv<br>"aux6"=wdmaud.drv<br>"wave4"=wdmaud.drv<br>"midi2"=wdmaud.drv<br>"mixer4"=wdmaud.drv<br>"midi8"=wdmaud.drv<br><br>======File associations======<br><br>.js - edit - C:\Windows\System32\Notepad.exe %1<br><br>======List of files/folders created in the last 1 month======<br><br>2013-12-25 12:00:54 ----D---- C:\rsit<br>2013-12-23 12:44:26 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll<br>2013-12-23 12:44:26 ----A---- C:\Windows\system32\d3dx10_43.dll<br>2013-12-23 12:44:25 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll<br>2013-12-23 12:44:25 ----A---- C:\Windows\system32\D3DX9_43.dll<br>2013-12-23 12:42:57 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll<br>2013-12-23 12:42:57 ----A---- C:\Windows\system32\drivers\nvvad64v.sys<br>2013-12-22 17:20:41 ----D---- C:\Program Files (x86)\Mozilla Firefox<br>2013-12-11 17:41:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll<br>2013-12-11 17:41:32 ----A---- C:\Windows\SYSWOW64\jsproxy.dll<br>2013-12-11 17:41:32 ----A---- C:\Windows\SYSWOW64\ieui.dll<br>2013-12-11 17:41:32 ----A---- C:\Windows\system32\jsproxy.dll<br>2013-12-11 17:41:32 ----A---- C:\Windows\system32\ieUnatt.exe<br>2013-12-11 17:41:32 ----A---- C:\Windows\system32\ieui.dll<br>2013-12-11 17:41:32 ----A---- C:\Windows\system32\iesetup.dll<br>2013-12-11 17:41:32 ----A---- C:\Windows\system32\iernonce.dll<br>2013-12-11 17:41:32 ----A---- C:\Windows\system32\ieetwproxystub.dll<br>2013-12-11 17:41:32 ----A---- C:\Windows\system32\ieetwcollector.exe<br>2013-12-11 17:41:32 ----A---- C:\Windows\system32\ie4uinit.exe<br>2013-12-11 17:41:31 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll<br>2013-12-11 17:41:31 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll<br>2013-12-11 17:41:31 ----A---- C:\Windows\system32\mshtml.dll<br>2013-12-11 17:41:31 ----A---- C:\Windows\system32\jscript9diag.dll<br>2013-12-11 17:41:31 ----A---- C:\Windows\system32\iertutil.dll<br>2013-12-11 17:41:31 ----A---- C:\Windows\system32\ieapfltr.dll<br>2013-12-11 17:41:30 ----A---- C:\Windows\SYSWOW64\wininet.dll<br>2013-12-11 17:41:30 ----A---- C:\Windows\SYSWOW64\urlmon.dll<br>2013-12-11 17:41:30 ----A---- C:\Windows\SYSWOW64\iertutil.dll<br>2013-12-11 17:41:30 ----A---- C:\Windows\system32\wininet.dll<br>2013-12-11 17:41:30 ----A---- C:\Windows\system32\urlmon.dll<br>2013-12-11 17:41:30 ----A---- C:\Windows\system32\ieframe.dll<br>2013-12-11 17:41:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll<br>2013-12-11 17:41:29 ----A---- C:\Windows\SYSWOW64\ieframe.dll<br>2013-12-11 17:41:28 ----A---- C:\Windows\SYSWOW64\jscript9.dll<br>2013-12-11 17:41:28 ----A---- C:\Windows\system32\jscript9.dll<br>2013-12-11 17:39:26 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll<br>2013-12-11 17:39:26 ----A---- C:\Windows\system32\WMPhoto.dll<br>2013-12-11 17:39:24 ----A---- C:\Windows\SYSWOW64\tzres.dll<br>2013-12-11 17:39:24 ----A---- C:\Windows\system32\tzres.dll<br>2013-12-11 17:39:20 ----A---- C:\Windows\SYSWOW64\wscript.exe<br>2013-12-11 17:39:20 ----A---- C:\Windows\SYSWOW64\scrrun.dll<br>2013-12-11 17:39:20 ----A---- C:\Windows\SYSWOW64\cscript.exe<br>2013-12-11 17:39:20 ----A---- C:\Windows\system32\wscript.exe<br>2013-12-11 17:39:20 ----A---- C:\Windows\system32\scrrun.dll<br>2013-12-11 17:39:20 ----A---- C:\Windows\system32\cscript.exe<br>2013-12-11 10:09:14 ----A---- C:\Windows\SYSWOW64\imagehlp.dll<br>2013-12-11 10:09:14 ----A---- C:\Windows\system32\imagehlp.dll<br>2013-12-11 10:09:14 ----A---- C:\Windows\system32\drivers\portcls.sys<br>2013-12-11 10:09:14 ----A---- C:\Windows\system32\drivers\drmk.sys<br>2013-12-11 09:54:49 ----A---- C:\Windows\system32\wmploc.DLL<br>2013-12-11 09:54:48 ----A---- C:\Windows\SYSWOW64\wmploc.DLL<br>2013-12-11 09:54:48 ----A---- C:\Windows\SYSWOW64\wmp.dll<br>2013-12-11 09:54:47 ----A---- C:\Windows\system32\wmp.dll<br>2013-12-11 09:52:17 ----A---- C:\Windows\system32\win32k.sys<br>2013-12-11 09:52:16 ----A---- C:\Windows\SYSWOW64\msieftp.dll<br>2013-12-11 09:52:16 ----A---- C:\Windows\system32\msieftp.dll<br>2013-12-05 18:16:41 ----D---- C:\ProgramData\WD_SmartWareCommon<br>2013-12-05 18:02:49 ----A---- C:\Windows\SYSWOW64\WDPABKP.dat<br>2013-12-05 18:02:20 ----D---- C:\Program Files\Western Digital<br>2013-12-05 18:02:20 ----D---- C:\Program Files\Common Files\Western Digital<br>2013-12-05 17:58:54 ----D---- C:\ProgramData\Package Cache<br>2013-12-04 10:57:19 ----A---- C:\Windows\system32\iisRtl.dll<br>2013-12-04 10:57:18 ----A---- C:\Windows\SYSWOW64\wamregps.dll<br>2013-12-04 10:57:18 ----A---- C:\Windows\SYSWOW64\iisRtl.dll<br>2013-12-04 10:57:18 ----A---- C:\Windows\SYSWOW64\iisrstap.dll<br>2013-12-04 10:57:18 ----A---- C:\Windows\SYSWOW64\iisreset.exe<br>2013-12-04 10:57:18 ----A---- C:\Windows\SYSWOW64\ahadmin.dll<br>2013-12-04 10:57:18 ----A---- C:\Windows\SYSWOW64\admwprox.dll<br>2013-12-04 10:57:18 ----A---- C:\Windows\system32\wamregps.dll<br>2013-12-04 10:57:18 ----A---- C:\Windows\system32\iisrstap.dll<br>2013-12-04 10:57:18 ----A---- C:\Windows\system32\iisreset.exe<br>2013-12-04 10:57:18 ----A---- C:\Windows\system32\ahadmin.dll<br>2013-12-04 10:57:18 ----A---- C:\Windows\system32\admwprox.dll<br>2013-12-03 19:43:49 ----D---- C:\Windows\SYSWOW64\inetsrv<br>2013-12-03 19:43:48 ----D---- C:\Windows\SYSWOW64\BestPractices<br>2013-12-03 19:43:47 ----D---- C:\Windows\system32\BestPractices<br>2013-12-03 19:43:46 ----D---- C:\inetpub<br>2013-11-30 11:36:19 ----D---- C:\Windows\Application Data<br>2013-11-30 11:31:29 ----D---- C:\Program Files (x86)\Clarus<br>2013-11-28 22:25:29 ----D---- C:\Program Files\iPod<br>2013-11-28 22:25:28 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69<br>2013-11-28 22:25:28 ----D---- C:\Program Files\iTunes<br>2013-11-28 22:25:28 ----D---- C:\Program Files (x86)\iTunes<br>2013-11-27 10:10:42 ----D---- C:\Windows\Migration<br><br>======List of files/folders modified in the last 1 month======<br><br>2013-12-25 12:01:43 ----D---- C:\Program Files\trend micro<br>2013-12-25 12:01:30 ----D---- C:\Windows\Temp<br>2013-12-25 11:47:26 ----D---- C:\Windows\tracing<br>2013-12-25 11:45:04 ----D---- C:\Windows\inf<br>2013-12-25 10:31:02 ----SHD---- C:\System Volume Information<br>2013-12-25 10:07:08 ----D---- C:\Windows\system32\LogFiles<br>2013-12-25 10:07:08 ----D---- C:\Windows\System32<br>2013-12-25 10:07:03 ----D---- C:\Windows<br>2013-12-25 09:59:32 ----D---- C:\Windows\system32\Tasks<br>2013-12-25 09:29:46 ----D---- C:\Windows\system32\config<br>2013-12-25 09:15:12 ----D---- C:\Windows\SysWOW64<br>2013-12-25 09:14:03 ----D---- C:\ProgramData\NVIDIA<br>2013-12-24 22:10:22 ----D---- C:\Program Files (x86)<br>2013-12-24 21:17:20 ----A---- C:\Windows\system32\PerfStringBackup.INI<br>2013-12-24 11:22:49 ----SHD---- C:\#GDATA.Trash.Store#<br>2013-12-24 10:29:50 ----D---- C:\Windows\Prefetch<br>2013-12-23 22:49:48 ----D---- C:\Windows\Logs<br>2013-12-23 17:04:18 ----D---- C:\Program Files (x86)\NVIDIA Corporation<br>2013-12-23 17:04:06 ----D---- C:\temp<br>2013-12-23 17:02:52 ----D---- C:\Windows\system32\drivers<br>2013-12-23 12:52:46 ----D---- C:\Windows\system32\DriverStore<br>2013-12-23 12:52:46 ----D---- C:\Windows\system32\catroot<br>2013-12-23 12:51:10 ----D---- C:\Windows\system32\catroot2<br>2013-12-23 12:43:41 ----D---- C:\Windows\Microsoft.NET<br>2013-12-23 09:47:34 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service<br>2013-12-21 21:53:17 ----SHD---- C:\Windows\Installer<br>2013-12-21 21:53:17 ----HD---- C:\Config.Msi<br>2013-12-19 22:17:53 ----RD---- C:\Users<br>2013-12-19 14:06:07 ----D---- C:\Program Files\CCleaner<br>2013-12-12 22:46:50 ----D---- C:\Windows\SoftwareDistribution<br>2013-12-12 21:01:32 ----D---- C:\Windows\rescache<br>2013-12-11 20:19:25 ----D---- C:\Windows\debug<br>2013-12-11 17:46:40 ----D---- C:\Windows\winsxs<br>2013-12-11 17:42:35 ----D---- C:\Program Files\Internet Explorer<br>2013-12-11 17:42:35 ----D---- C:\Program Files (x86)\Internet Explorer<br>2013-12-11 17:42:21 ----D---- C:\ProgramData\Microsoft Help<br>2013-12-11 17:41:24 ----D---- C:\Windows\SYSWOW64\nl-NL<br>2013-12-11 17:41:24 ----D---- C:\Windows\system32\nl-NL<br>2013-12-11 17:39:03 ----D---- C:\Program Files (x86)\Google<br>2013-12-11 10:25:59 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe<br>2013-12-11 09:55:12 ----D---- C:\Program Files\Windows Media Player<br>2013-12-11 09:55:12 ----D---- C:\Program Files (x86)\Windows Media Player<br>2013-12-11 09:54:43 ----D---- C:\Windows\system32\MRT<br>2013-12-11 09:52:41 ----A---- C:\Windows\system32\MRT.exe<br>2013-12-10 03:13:11 ----A---- C:\Windows\SYSWOW64\nvspcap.dll<br>2013-12-10 03:13:01 ----A---- C:\Windows\system32\nvspcap64.dll<br>2013-12-09 22:52:33 ----D---- C:\Program Files (x86)\DVDVideoSoft<br>2013-12-09 22:52:13 ----RSD---- C:\Windows\assembly<br>2013-12-09 22:52:12 ----D---- C:\Users\Niobe\AppData\Roaming\DVDVideoSoft<br>2013-12-07 18:49:37 ----D---- C:\ProgramData\CanonIJPLM<br>2013-12-07 18:49:37 ----D---- C:\ProgramData\CanonIJ<br>2013-12-05 18:16:41 ----D---- C:\ProgramData<br>2013-12-05 18:15:12 ----D---- C:\ProgramData\Western Digital<br>2013-12-05 18:02:20 ----D---- C:\Program Files\Common Files<br>2013-12-05 18:02:20 ----D---- C:\Program Files (x86)\Western Digital<br>2013-12-05 18:02:20 ----D---- C:\Program Files<br>2013-12-05 17:31:01 ----D---- C:\Windows\system32\NDF<br>2013-12-05 09:42:26 ----A---- C:\Windows\system32\nvaudcap64v.dll<br>2013-12-04 21:41:22 ----SD---- C:\Users\Niobe\AppData\Roaming\Microsoft<br>2013-12-04 10:58:16 ----D---- C:\Windows\SYSWOW64\migration<br>2013-12-04 10:58:16 ----D---- C:\Windows\system32\migration<br>2013-12-04 10:58:16 ----D---- C:\Windows\system32\inetsrv<br>2013-12-04 10:49:02 ----D---- C:\Windows\Tasks<br>2013-12-04 10:49:02 ----D---- C:\Windows\system32\wfp<br>2013-12-04 10:48:59 ----D---- C:\Windows\system32\wbem<br>2013-12-04 10:47:55 ----D---- C:\Windows\registration<br>2013-12-03 19:44:14 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI<br>2013-12-02 20:34:32 ----D---- C:\ProgramData\NVIDIA Corporation<br>2013-12-02 20:33:53 ----D---- C:\Program Files\NVIDIA Corporation<br>2013-11-30 11:31:29 ----HD---- C:\Program Files (x86)\InstallShield Installation Information<br>2013-11-27 10:10:56 ----D---- C:\Windows\SYSWOW64\en-US<br>2013-11-27 10:10:55 ----D---- C:\Windows\system32\en-US<br>2013-11-27 10:10:42 ----SD---- C:\ProgramData\Microsoft<br><br>======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======<br><br>R0 GDBehave;GDBehave; C:\Windows\system32\drivers\GDBehave.sys [2013-10-29 60248]<br>R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-10-02 537112]<br>R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2008-06-16 55024]<br>R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]<br>R0 TS4NT;TS4nt driver; C:\Windows\System32\Drivers\TS4nt.sys [2013-10-29 98760]<br>R1 gddcv;G Data DCV Driver; \??\C:\Windows\system32\drivers\gddcv64.sys [2013-10-29 59736]<br>R1 GDMnIcpt;GDMnIcpt; \??\C:\Windows\system32\drivers\MiniIcpt.sys [2013-10-29 130392]<br>R1 gdwfpcd;G Data WFP CD; C:\Windows\system32\drivers\gdwfpcd64.sys [2013-10-29 64856]<br>R1 GRD;G Data Rootkit Detector Driver; \??\C:\Windows\system32\drivers\GRD.sys [2013-10-29 106272]<br>R1 HookCentre;HookCentre; \??\C:\Windows\system32\drivers\HookCentre.sys [2013-10-29 65368]<br>R3 gddcd;G Data DCD Driver; \??\C:\Windows\system32\drivers\gddcd64.sys [2013-10-29 79704]<br>R3 GDPkIcpt;GDPkIcpt; \??\C:\Windows\system32\drivers\PktIcpt.sys [2013-10-29 63320]<br>R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]<br>R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]<br>R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-10-06 2009376]<br>R3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2009-08-06 320040]<br>R3 ManyCam;ManyCam Virtual Webcam; C:\Windows\system32\DRIVERS\mcvidrv_x64.sys [2012-07-20 44928]<br>R3 mcaudrv_simple;ManyCam Virtual Microphone; C:\Windows\system32\drivers\mcaudrv_x64.sys [2013-01-31 28160]<br>R3 mdf16;mdf16; \??\C:\Program Files (x86)\Clarus\Samsung SecretZone\mdf16.sys [2010-08-17 18288]<br>R3 mvd22;mvd22; \??\C:\Program Files (x86)\Clarus\Samsung SecretZone\mvd22.sys [2010-08-17 78192]<br>R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-05 39200]<br>S1 SBRE;SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys []<br>S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]<br>S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]<br>S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]<br>S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]<br>S3 guillflt;Guillemot Audio Lower Filter; C:\Windows\system32\DRIVERS\guillflt.sys [2009-06-04 65024]<br>S3 hxctlflt;hxctlflt; C:\Windows\System32\Drivers\hxctlflt.sys [2009-02-08 111104]<br>S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]<br>S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]<br>S3 S6000KNT;Hercules HD Exchange; C:\Windows\System32\Drivers\S6000KNT.sys [2011-06-16 3359832]<br>S3 SNP2UVC;Hercules Webcam; C:\Windows\system32\DRIVERS\snp2uvc.sys [2011-04-29 3565056]<br>S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]<br>S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]<br>S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464]<br>S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]<br><br>======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======<br><br>R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8; C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-09-18 169312]<br>R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]<br>R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]<br>R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]<br>R2 AVKProxy;G Data AntiVirus Proxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2013-08-26 1970296]<br>R2 AVKService;G Data Scheduler; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe [2013-08-21 635000]<br>R2 AVKWCtl;G Data Bestandssysteembewaker; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe [2013-10-15 2562208]<br>R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]<br>R2 GDBackupSvc;G Data Backup Service; C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe [2013-08-21 1947768]<br>R2 GDFwSvc;G Data Personal Firewall; C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe [2013-10-17 2942808]<br>R2 GDScan;G Data Scanner; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [2013-08-22 695416]<br>R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2009-07-14 27136]<br>R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]<br>R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-10-02 13336]<br>R2 IJPLMSVC;Inkjet Printer/Scanner Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2008-01-22 103808]<br>R2 L4301_Solar;Logitech Solar Keyboard Service; C:\Program Files\Logitech\SolarApp\L4301_Solar.exe [2013-01-30 405744]<br>R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]<br>R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]<br>R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]<br>R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]<br>R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-10 15129376]<br>R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-08-09 893728]<br>R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]<br>R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-13 1103392]<br>R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-13 1369624]<br>R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-13 168384]<br>R2 SNMP;@%SystemRoot%\system32\snmp.exe,-3; C:\Windows\System32\snmp.exe [2010-11-20 49664]<br>R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-08-09 413472]<br>R2 SZASSIST;SecretZone Assist Service; C:\Program Files (x86)\Clarus\Samsung SecretZone\SZAssistSVC.exe [2010-08-30 90112]<br>R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]<br>R2 WDBackup;WD Backup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2013-11-02 1042808]<br>R2 WDDMService;WD SmartWare Drive Manager Service; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2009-11-13 129536]<br>R2 WDDriveService;WD Drive Manager; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2013-11-02 270704]<br>R2 WDSmartWareBackgroundService;WD SmartWare Background Service; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [2009-06-16 20480]<br>R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]<br>R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]<br>R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 641352]<br>R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]<br>S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]<br>S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]<br>S2 GDTunerSvc;G Data Tuner Service; C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe [2013-02-25 1711568]<br>S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-05 116648]<br>S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]<br>S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]<br>S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-05-09 867080]<br>S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2013-02-05 1512448]<br>S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-05 116648]<br>S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]<br>S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]<br>S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-22 119408]<br>S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]<br>S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]<br>S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]<br>S3 TSNxGService;G Data Datasafeservice; C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe [2013-09-17 255608]<br>S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-05-07 1255736]<br>S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]<br><br>-----------------EOF-----------------<br><br><br>
-
Enige tijd geleden had ik een virus op m'n PC en ben toen in veilige modus gegaan. Er werd me toen gevraagd of ik de instellingen van Veilige Modus wou overnemen,wat ik gedaan heb. Er zijn echter nadelen aan verbonden want nu zie ik sommige zaken niet meer op een website en in Word worden de rode tekens als zwarte weergegeven... Hoe kan ik terug naar m'n vroegere instellingen gaan?
