PC viel uit en starte enkele keren niet op

Ron2011 · 4 juli 2015

Mijn pc viel plotseling uit en startte niet meer normaal op, via het herstelprogramma viel die ook op zwart, via normaal en aanbevolen.

No video input kwam er alleen maar.

Nu doet die het ineens weer, maar wil toch na laten kijken.

Hier is rapport van de virusscanner:

scan.txt

kape · 4 juli 2015

Download RSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

RSIT 32 bit (RSIT.exe)
RSIT 64 bit (RSITx64.exe)

Dubbelklik op RSIT.exe om de tool te starten.

Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen

Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\rsit")
Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Bekijk ook de

.

Ron2011 · 4 juli 2015

Logfile of random's system information tool 1.10 (written by random/random)
Run by RON12 at 2015-07-04 17:10:39
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 153 GB (33%) free of 469 GB
Total RAM: 4095 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:10:54, on 4-7-2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal

Running processes:
C:\Users\RON\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE
C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\RON\AppData\Roaming\uTorrent\updates\3.4.3_40298.exe
C:\Program Files\trend micro\RON12.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure Hoster (45123)] "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -app -hosterid:1
O4 - HKCU\..\Run: [uTorrent] C:\Users\RON\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED
O4 - HKCU\..\Run: [softonicAssistant] "C:\Users\RON12\AppData\Local\SoftonicAssistant\SoftonicAssistant.exe"
O4 - HKCU\..\Run: [Obrona Block Ads] "C:\Users\RON12\AppData\Local\Obrona Block Ads\ObronaBlockAds.exe" --hidden
O4 - HKCU\..\Run: [EpicScale] C:\ProgramData\EpicScale\0\EpicScale.exe EpicScale StartMinimized
O4 - HKCU\..\RunOnce: [Report] \AdwCleaner\AdwCleaner[s0].txt
O4 - HKUS\S-1-5-21-1255420860-2708843325-1920694139-1000\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User 'RON')
O4 - HKUS\S-1-5-21-1255420860-2708843325-1920694139-1000\..\Run: [spotify Web Helper] "C:\Users\RON\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" (User 'RON')
O4 - HKUS\S-1-5-21-1255420860-2708843325-1920694139-1000\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" (User 'RON')
O4 - HKUS\S-1-5-21-1255420860-2708843325-1920694139-1000\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart (User 'RON')
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} (CycloScopeLite Control) - http://www.cyclomedia.nl/download/components/CycloScopeLite.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
O23 - Service: F-Secure Dll Hoster (fshoster) - F-Secure Corporation - C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSMA32.EXE
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10149 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe"
"C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hosterid:0
"C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe"
"C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\FSGK32.EXE" /service /stopevent=684 /ipcexch=712
"C:\Program Files\Microsoft LifeCam\MSCamS64.exe"
"C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2036
"C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSMA32.EXE"
oid 1.3.6.1.4.1.2213.11.1.27.64 HosterGroupType 0
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\fssm32.exe" 3 812 816 820
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-da4e99e8-2d4b-46c8-9478-e4b0ed79d14e -SystemEventPortName:HostProcess-0bf6fd6b-5a0b-4d7a-807d-2439f3a04d69 -IoCancelEventPortName:HostProcess-ff1c02c7-fe76-436f-9ffe-adad7d676a56 -NonStateChangingEventPortName:HostProcess-8a85d280-2485-40c0-b9b5-8c3bcb5694ad -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9b28d40a-9bad-4d89-823f-a5675af4b4f1 -DeviceGroupId:WpdFsGroup
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Users\RON\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
"C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE" /splash
"C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -app -hosterid:1
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\system32\GWX\GWX.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Users\RON\AppData\Roaming\uTorrent\updates\3.4.3_40298.exe" /LAUNCHED
"C:\Program Files\Internet Explorer\iexplore.exe" https://mail.google.com/mail/?tab=wm#inbox

C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe123_ Global\UsGthrCtrlFltPipeMssGthrPipe123 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\RON\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KVNRVMF9\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\Scheduled scanning task.job - C:\PROGRA~2\INTERN~2\apps\COMPUT~1\ANTI-V~1\fsav.exe /HARD /POLICY /SCHED /REPORT="C:\PROGRA~2\INTERN~2\apps\COMPUT~1\ANTI-V~1\report.txt"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2009-11-25 202080]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2011-05-13 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2009-11-25 1496408]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03 194504]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\RON\AppData\Roaming\uTorrent\uTorrent.exe [2015-02-18 1742416]
"SoftonicAssistant"=C:\Users\RON12\AppData\Local\SoftonicAssistant\SoftonicAssistant.exe [2014-11-11 1829832]
"Obrona Block Ads"=C:\Users\RON12\AppData\Local\Obrona Block Ads\ObronaBlockAds.exe [2014-12-10 1510680]
"EpicScale"=C:\ProgramData\EpicScale\0\EpicScale.exe [2015-02-18 339440]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Report"=\AdwCleaner\AdwCleaner[s0].txt [2015-01-06 1791]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcadeDeluxeAgent]
C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [2010-02-05 128296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupManagerTray]
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2009-08-12 261888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-07-27 2184520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2009-03-18 767312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecLiveUpdate]
C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [2009-08-04 199464]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hotkey Utility]
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2009-08-18 629280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-05 186904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LifeCam]
C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [2010-12-13 135536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mwlDaemon]
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [2009-08-06 349480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PlayMovie]
C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe [2010-02-09 181480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-07-20 7981088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-02 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-08-27 39408]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ArcadeDeluxeAgent"=C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [2010-02-05 128296]
"F-Secure Manager"=C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE [2013-08-27 310208]
"F-Secure Hoster (45123)"=C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe [2015-02-09 187432]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableSecureUIAPath"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-06-10 12:01:59 ----A---- C:\Windows\system32\wmp.dll
2015-06-10 12:01:57 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-06-10 12:01:57 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-06-10 12:01:57 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-06-10 12:01:57 ----A---- C:\Windows\system32\spwmp.dll
2015-06-10 12:01:57 ----A---- C:\Windows\system32\dxmasf.dll
2015-06-10 12:01:56 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-06-10 12:01:56 ----A---- C:\Windows\system32\wmploc.DLL
2015-06-10 12:01:53 ----A---- C:\Windows\system32\generaltel.dll
2015-06-10 12:01:53 ----A---- C:\Windows\system32\appraiser.dll
2015-06-10 12:01:53 ----A---- C:\Windows\system32\aeinv.dll
2015-06-10 12:01:52 ----A---- C:\Windows\system32\invagent.dll
2015-06-10 12:01:52 ----A---- C:\Windows\system32\devinv.dll
2015-06-10 12:01:52 ----A---- C:\Windows\system32\aepic.dll
2015-06-10 12:01:52 ----A---- C:\Windows\system32\acmigration.dll
2015-06-10 12:01:51 ----A---- C:\Windows\system32\aepdu.dll
2015-06-10 12:01:15 ----A---- C:\Windows\system32\diagtrack.dll
2015-06-10 12:01:14 ----A---- C:\Windows\system32\KernelBase.dll
2015-06-10 12:01:14 ----A---- C:\Windows\system32\kerberos.dll
2015-06-10 12:01:13 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-06-10 12:01:13 ----A---- C:\Windows\system32\kernel32.dll
2015-06-10 12:01:12 ----A---- C:\Windows\system32\lsasrv.dll
2015-06-10 12:01:11 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-06-10 12:01:11 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-06-10 12:01:11 ----A---- C:\Windows\system32\advapi32.dll
2015-06-10 12:01:10 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-06-10 12:01:10 ----A---- C:\Windows\system32\ntdll.dll
2015-06-10 12:01:09 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-06-10 12:01:09 ----A---- C:\Windows\system32\wow64.dll
2015-06-10 12:01:09 ----A---- C:\Windows\system32\winsrv.dll
2015-06-10 12:01:09 ----A---- C:\Windows\system32\tracerpt.exe
2015-06-10 12:01:09 ----A---- C:\Windows\system32\srcore.dll
2015-06-10 12:01:09 ----A---- C:\Windows\system32\rstrui.exe
2015-06-10 12:01:09 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-06-10 12:01:09 ----A---- C:\Windows\system32\conhost.exe
2015-06-10 12:01:08 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-06-10 12:01:08 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-06-10 12:01:08 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-06-10 12:01:08 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-06-10 12:01:08 ----A---- C:\Windows\system32\tdh.dll
2015-06-10 12:01:08 ----A---- C:\Windows\system32\schannel.dll
2015-06-10 12:01:08 ----A---- C:\Windows\system32\msv1_0.dll
2015-06-10 12:01:08 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-06-10 12:01:07 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-06-10 12:01:07 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-06-10 12:01:07 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-06-10 12:01:07 ----A---- C:\Windows\system32\wdigest.dll
2015-06-10 12:01:07 ----A---- C:\Windows\system32\sechost.dll
2015-06-10 12:01:07 ----A---- C:\Windows\system32\ncrypt.dll
2015-06-10 12:01:07 ----A---- C:\Windows\system32\logman.exe
2015-06-10 12:01:06 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-06-10 12:01:06 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-06-10 12:01:06 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-06-10 12:01:06 ----A---- C:\Windows\system32\TSpkg.dll
2015-06-10 12:01:06 ----A---- C:\Windows\system32\sspicli.dll
2015-06-10 12:01:06 ----A---- C:\Windows\system32\smss.exe
2015-06-10 12:01:05 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-06-10 12:01:05 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-06-10 12:01:05 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-06-10 12:01:05 ----A---- C:\Windows\system32\typeperf.exe
2015-06-10 12:01:05 ----A---- C:\Windows\system32\relog.exe
2015-06-10 12:01:05 ----A---- C:\Windows\system32\lsass.exe
2015-06-10 12:01:05 ----A---- C:\Windows\system32\auditpol.exe
2015-06-10 12:01:04 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-06-10 12:01:04 ----A---- C:\Windows\system32\srclient.dll
2015-06-10 12:01:03 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-06-10 12:01:03 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-06-10 12:01:03 ----A---- C:\Windows\system32\diskperf.exe
2015-06-10 12:01:03 ----A---- C:\Windows\system32\csrsrv.dll
2015-06-10 12:01:02 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-06-10 12:01:02 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-06-10 12:01:02 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-06-10 12:01:02 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-06-10 12:01:02 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-06-10 12:01:02 ----A---- C:\Windows\system32\wow64win.dll
2015-06-10 12:01:02 ----A---- C:\Windows\system32\wow64cpu.dll
2015-06-10 12:01:02 ----A---- C:\Windows\system32\sspisrv.dll
2015-06-10 12:01:02 ----A---- C:\Windows\system32\secur32.dll
2015-06-10 12:01:02 ----A---- C:\Windows\system32\ntvdm64.dll
2015-06-10 12:01:02 ----A---- C:\Windows\system32\credssp.dll
2015-06-10 12:01:01 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-06-10 12:01:01 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-06-10 12:00:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-06-10 12:00:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-10 12:00:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-06-10 12:00:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-06-10 12:00:58 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-06-10 12:00:58 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-10 12:00:58 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-10 12:00:58 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-06-10 12:00:58 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-06-10 12:00:58 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-10 12:00:58 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-10 12:00:57 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-06-10 12:00:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-06-10 12:00:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-06-10 12:00:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-10 12:00:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-06-10 12:00:56 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-06-10 12:00:56 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-06-10 12:00:56 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-06-10 12:00:56 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-06-10 12:00:56 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-06-10 12:00:56 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-06-10 12:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-10 12:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-10 12:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-10 12:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-06-10 12:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-06-10 12:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-06-10 12:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-06-10 12:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-10 12:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-10 12:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-06-10 12:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-06-10 12:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-06-10 12:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-06-10 12:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-06-10 12:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-06-10 12:00:54 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-06-10 12:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-06-10 12:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-06-10 12:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-06-10 12:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-06-10 12:00:53 ----A---- C:\Windows\SYSWOW64\user.exe
2015-06-10 12:00:53 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-06-10 12:00:53 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-06-10 12:00:53 ----A---- C:\Windows\system32\apisetschema.dll
2015-06-10 12:00:52 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-06-10 12:00:52 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-06-10 12:00:52 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-06-10 12:00:52 ----A---- C:\Windows\system32\UtcResources.dll
2015-06-10 12:00:52 ----A---- C:\Windows\system32\msobjs.dll
2015-06-10 12:00:52 ----A---- C:\Windows\system32\msaudite.dll
2015-06-10 12:00:52 ----A---- C:\Windows\system32\adtschema.dll
2015-06-10 12:00:04 ----A---- C:\Windows\system32\comctl32.dll
2015-06-10 12:00:03 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-06-10 12:00:02 ----A---- C:\Windows\system32\win32k.sys
2015-06-10 11:59:46 ----A---- C:\Windows\system32\drivers\stream.sys
2015-06-10 11:59:32 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-06-10 11:59:32 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-06-10 11:59:32 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-06-10 11:59:32 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-06-10 11:59:30 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-06-10 11:59:30 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-06-10 11:59:29 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-06-10 11:59:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-06-10 11:59:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-06-10 11:59:29 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-06-10 11:59:29 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-06-10 11:59:29 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-06-10 11:59:29 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-06-10 11:59:29 ----A---- C:\Windows\system32\iernonce.dll
2015-06-10 11:59:29 ----A---- C:\Windows\system32\ie4uinit.exe
2015-06-10 11:59:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-06-10 11:59:27 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-06-10 11:59:27 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-06-10 11:59:27 ----A---- C:\Windows\system32\urlmon.dll
2015-06-10 11:59:27 ----A---- C:\Windows\system32\iedkcs32.dll
2015-06-10 11:59:26 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-06-10 11:59:26 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-06-10 11:59:26 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-06-10 11:59:26 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-06-10 11:59:26 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-06-10 11:59:26 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-06-10 11:59:25 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-06-10 11:59:25 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-06-10 11:59:25 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-06-10 11:59:25 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-06-10 11:59:25 ----A---- C:\Windows\system32\msfeeds.dll
2015-06-10 11:59:25 ----A---- C:\Windows\system32\dxtrans.dll
2015-06-10 11:59:24 ----A---- C:\Windows\system32\iesetup.dll
2015-06-10 11:59:24 ----A---- C:\Windows\system32\ieapfltr.dll
2015-06-10 11:59:23 ----A---- C:\Windows\system32\iertutil.dll
2015-06-10 11:59:22 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-06-10 11:59:22 ----A---- C:\Windows\system32\vbscript.dll
2015-06-10 11:59:21 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-06-10 11:59:21 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-06-10 11:59:21 ----A---- C:\Windows\system32\jsproxy.dll
2015-06-10 11:59:21 ----A---- C:\Windows\system32\ieUnatt.exe
2015-06-10 11:59:20 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-06-10 11:59:20 ----A---- C:\Windows\system32\ieui.dll
2015-06-10 11:59:20 ----A---- C:\Windows\system32\dxtmsft.dll
2015-06-10 11:59:19 ----A---- C:\Windows\system32\ieframe.dll
2015-06-10 11:59:18 ----A---- C:\Windows\system32\mshtmled.dll
2015-06-10 11:59:16 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-06-10 11:59:16 ----A---- C:\Windows\system32\jscript9diag.dll
2015-06-10 11:59:16 ----A---- C:\Windows\system32\jscript.dll
2015-06-10 11:59:15 ----A---- C:\Windows\system32\jscript9.dll
2015-06-10 11:59:14 ----A---- C:\Windows\system32\wininet.dll
2015-06-10 11:59:13 ----A---- C:\Windows\system32\msrating.dll
2015-06-10 11:59:13 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-06-10 11:59:12 ----A---- C:\Windows\system32\mshtml.dll

======List of files/folders modified in the last 1 month======

2015-07-04 17:10:54 ----D---- C:\Windows\Prefetch
2015-07-04 17:10:53 ----D---- C:\Windows\Temp
2015-07-04 17:10:44 ----D---- C:\Program Files\trend micro
2015-07-04 16:24:35 ----D---- C:\TEMP
2015-07-04 10:32:29 ----D---- C:\Windows\system32\config
2015-07-04 03:24:27 ----D---- C:\Windows\Minidump
2015-07-04 03:24:11 ----D---- C:\Windows
2015-07-01 19:41:39 ----D---- C:\Windows\System32
2015-07-01 19:41:39 ----D---- C:\Windows\inf
2015-07-01 19:41:39 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-06-30 08:37:33 ----SHD---- C:\System Volume Information
2015-06-24 10:13:27 ----D---- C:\Windows\SysWOW64
2015-06-24 10:13:22 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-06-22 19:14:00 ----D---- C:\Windows\system32\catroot2
2015-06-10 15:51:03 ----D---- C:\Windows\winsxs
2015-06-10 15:48:06 ----D---- C:\Program Files\Windows Media Player
2015-06-10 15:48:06 ----D---- C:\Program Files (x86)\Windows Media Player
2015-06-10 15:48:05 ----SD---- C:\Windows\system32\CompatTel
2015-06-10 15:48:05 ----D---- C:\Windows\system32\appraiser
2015-06-10 15:48:05 ----D---- C:\Windows\AppPatch
2015-06-10 15:48:04 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-06-10 15:48:03 ----D---- C:\Windows\system32\nl-NL
2015-06-10 15:48:03 ----D---- C:\Windows\system32\drivers
2015-06-10 15:48:01 ----D---- C:\Program Files\Internet Explorer
2015-06-10 15:48:00 ----D---- C:\Windows\SYSWOW64\en-US
2015-06-10 15:48:00 ----D---- C:\Windows\system32\en-US
2015-06-10 15:48:00 ----D---- C:\Windows\PolicyDefinitions
2015-06-10 15:47:59 ----D---- C:\Program Files (x86)\Internet Explorer
2015-06-10 13:00:53 ----SHD---- C:\Windows\Installer
2015-06-10 13:00:53 ----D---- C:\ProgramData\Microsoft Help
2015-06-10 13:00:53 ----D---- C:\Config.Msi
2015-06-10 12:59:36 ----D---- C:\Windows\system32\MRT
2015-06-10 12:54:32 ----A---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fsbts;fsbts; C:\Windows\system32\Drivers\fsbts.sys [2015-05-26 55336]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 408600]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2014-04-12 49952]
R1 F-Secure HIPS;F-Secure HIPS Driver; \??\C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\HIPS\drivers\fshs.sys [2015-06-23 71080]
R1 fsvista;F-Secure Vista Support Driver; \??\C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [2013-08-27 13248]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-02 22576]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-02 20016]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-02 60464]
R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};Power Control [2012/04/26 17:18:11]; \??\C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\000.fcl [2010-02-09 146928]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35344]
R3 athr;Wireless PCI Adapter Driver Service; C:\Windows\system32\DRIVERS\athrx.sys [2010-11-23 1579520]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
R3 e1yexpress;Intel® Gigabit Network Connections Driver; C:\Windows\system32\DRIVERS\e1y62x64.sys [2009-06-12 287960]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [2015-06-11 208424]
R3 fsni;fsni; \??\C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Scanning\bin\fsni64.sys [2015-06-15 95784]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-07-20 1831968]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2009-07-17 201472]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice; C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [2014-04-09 31920]
S3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-04 114192]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-13 48488]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\Windows\System32\Drivers\nx6000.sys [2010-12-13 36720]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTL85n64;Realtek 8180/8185 Extensible 802.11 Wireless Device Driver; C:\Windows\system32\DRIVERS\RTL85n64.sys [2009-07-03 452128]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FreemakeVideoCapture;FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [2014-09-11 9216]
R2 fshoster;F-Secure Dll Hoster; C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe [2015-02-09 187432]
R2 FSORSPClient;F-Secure ORSP Client; C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe [2015-03-09 60456]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-12-13 194416]
R2 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-08-06 311592]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-03-28 249648]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096]
R3 FSMA;F-Secure Management Agent; C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSMA32.EXE [2013-08-27 207808]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-19 107912]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-24 268464]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-04-01 183560]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-13 1492840]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-19 107912]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-11 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-05-22 114688]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-01 150648]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-15 1255736]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 Greg_Service;GRegService; C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]
S4 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-05 354840]
S4 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2009-02-10 116104]
S4 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-28 935208]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-13 62208]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [2009-02-16 247152]
S4 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------

kweezie wabbit · 5 juli 2015

Je gebruikt nu een beveiligingspakket met F-Secure als virusscanner maar er zijn nog sporen van AVG.

Die gaan we ook verwijderen.

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
Dubbelklik op Zoek.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Kopieer nu onderstaande code en plak die in het grote invulvenster:
Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

{F274614C-63F8-47D5-A4D1-FBDDE494F8D1};c
{F274614C-63F8-47D5-A4D1-FBDDE494F8D1};a
avg;a
avg;z
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r
"SoftonicAssistant"=-;r
C:\Users\RON12\AppData\Local\SoftonicAssistant;fs
C:\Windows\system32\drivers\avgtpx64.sys;f
chromelook;
firefoxlook;
emptyfolderscheck;delete
startupall;
filesrcm;

Klik op de knop "More options" en vink nu de onderstaande opties aan.
Do a Deep Scan
Installed Programs
Auto Clean
De optie "Scan All Users" staat standaard aangevinkt.
Klik nu op de knop "Run script".
Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Ron2011 · 5 juli 2015

Dat lukt niet, ondanks dat ik de firewall en de virusscanner uitzette, gaf ziggo aan dat zoek niet gedownload kon worden.

kweezie wabbit · 6 juli 2015

Dan proberen we een andere tool.

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download ComboFix van één van deze locaties:

Link 1
Link 2

* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op

Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.
Dubbelklik op "Combofix.exe" om de tool te starten.
Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion", herstart dan de computer.

Wanneer ComboFix klaar is, zal het het een logbestand voor je maken.

Voeg dit logbestand (te vinden als C:\ComboFix.txt) als bijlage toe aan je volgende bericht.

Ron2011 · 7 juli 2015

Is gelukt.

log.txt

kape · 7 juli 2015

Download AdwCleaner by Xplode naar het bureaublad (verwijder eerst eventuele aanwezige oudere versies van deze tool op je PC, zodat je nu de meest recente database van AdwCleaner kan gebruiken).

Als de link naar AdwCleaner niet werkt, probeer dan deze link.
De download start automatisch na enkele seconden.

Sluit alle openstaande vensters.
Dubbelklik op AdwCleaner om hem te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Klik op Scan.
Klik vervolgens op Clean.
Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.
Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[s0].txt.

Logbestand plaatsen

Voeg het logbestand met de naam C:\AdwCleaner\AdwCleaner[s0].txt als bijlage toe aan het volgende bericht.
Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Ron2011 · 8 juli 2015

Logje.

AdwCleanerS0.txt

kweezie wabbit · 8 juli 2015

Open een nieuw kladblokbestand.
Kopieer en plak daarin de onderstaande code.

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoftonicAssistant"=-

Folder::
c:\users\RON12\AppData\Local\SoftonicAssistant

File::
C:\Windows\system32\drivers\avgtpx64.sys

Sla dit bestand op je bureaublad op als CFScript

Sleep CFScript.txt in ComboFix.exe
Dit zal ComboFix doen herstarten. Start opnieuw op als dat gevraagd wordt.

Wil je dit uitgebreid in beeld bekijken, klik dan hier voor de handleiding .

Wanneer ComboFix klaar is, zal het het een logbestand maken.

Voeg dit logbestand (te vinden als C:\ComboFix.txt) als bijlage toe aan je volgende bericht.

Inloggen

PC viel uit en starte enkele keren niet op

Aanbevolen berichten

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Welkom op PC Helpforum

Leden statistieken

OVER ONS

SITEMAP

Belangrijke informatie