graag logjes nakijken ivm trage pc?! help!

jdw

03-09-2014 09:16

heb een trage pc,heb win 7 en volgens mij alles up to date.
internet en spotnet lopen vaak vast. sinds 2 maanden erger aan het worden.
ik heb eset als virusscanner, maar geen melding ontvangen hiervan.
gebruik wel dagelijks cc cleaner.
hier mijn logjes en alvast REUZE bedankt !!!
Logfile of random's system information tool 1.10 (written by random/random)
Run by Supervisor at 2014-09-03 09:09:43
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 19 GB (18%) free of 102 GB
Total RAM: 4095 MB (39% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:09:49, on 3-9-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe
C:\Program Files (x86)\Sitecom\Common\WLANUtil.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Spotnet\Spotnet.exe
C:\Program Files (x86)\Spotnet\SABnzbd.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Supervisor.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: PrintEco - {BEB54677-E12F-44E7-AC7E-48241B866B5F} - C:\Program Files (x86)\PrintEco\PrintEco Office\adxloader.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe” -launchedbylogin
O4 - HKLM\..\Run: RunDll32 P17RunE.dll,RunDLLEntry
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
O4 - HKLM\..\Run: C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
O4 - HKLM\..\Run: “C:\Program Files (x86)\iTunes\iTunesHelper.exe”
O4 - HKCU\..\Run: C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: “C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe”
O4 - HKUS\S-1-5-21-3116784316-362696581-2426180777-1004\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘UpdatusUser’)
O4 - HKUS\S-1-5-21-3116784316-362696581-2426180777-1004\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘UpdatusUser’)
O4 - Startup: Verzenden naar OneNote.lnk = C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
O4 - Global Startup: Sitecom Wireless Utility.lnk = C:\Program Files (x86)\Sitecom\Common\WLANUtil.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra ‘Tools’ menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra ‘Tools’ menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra ‘Tools’ menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra ‘Tools’ menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: Accelerated graphics
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {28B66320-9687-4B13-8757-36F901887AB5} (CanvasX Class) - http://foto.hema.nl/ips-opdata/layout/hema/objects/canvasx.cab
O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} (JordanUploader Class) - http://foto.hema.nl/ips-opdata/layout/hema/objects/jordan.cab
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlcdnet.asus.com/pub/ASUS/misc/dlm-activex-2.2.5.0.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab
O16 - DPF: {6E718D87-6909-4FCE-92D4-EDCB2F725727} (Navigram Control) - http://navigram.com/engine/v1140/Navigram.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {9BDF4724-10AA-43D5-BD15-AEA0D2287303} (MSN Games – Texas Holdem Poker) - http://zone.msn.com/bingame/zpagames/zpa_txhe.cab79352.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.1.66.0.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} (Creative Software AutoUpdate 2) - http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://fotosnelservice.hema.nl/xupload/XUpload.ocx
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: WSAMVCUchrome - (no CLSID) - (no file)
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\SysWOW64\drivers\pclepci.sys
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Ralink Technology, Corp. - C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe
O23 - Service: Ralink Registry Writer 64 (RalinkRegistryWriter64) - Ralink Technology, Corp. - C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
–
End of file - 16599 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
“C:\Windows\system32\nvvsvc.exe”
“C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe”
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
“C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe”
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 29521200
\??\C:\Windows\system32\conhost.exe "512783113-41015713956291443-152023524615399819931086538701691308028-130267317
“C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe”
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
taskeng.exe {0663057D-850C-482D-BF57-F2235FA543BE}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
“C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe”
C:\Windows\system32\svchost.exe -k apphost
“C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe”
“taskhost.exe”
“C:\Program Files\Bonjour\mDNSResponder.exe”
“C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe”
“C:\Windows\system32\Dwm.exe”
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
“C:\Windows\WindowsMobile\wmdc.exe”
“C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe”
“C:\Program Files\ESET\ESET Smart Security\egui.exe” /hide /waitservice
“C:/Program Files/NVIDIA Corporation/Display/nvtray.exe” -user_has_logged_in 1
“C:\Program Files (x86)\Samsung\Kies\Kies.exe” /preload
“C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe”
“C:\Program Files (x86)\Sitecom\Common\WLANUtil.exe” -s
“C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe” -r
“C:\Windows\System32\rundll32.exe” P17RunE.dll,RunDLLEntry
“C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE” /tsr
“C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe”
“C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe”
“C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe”
“C:\Program Files (x86)\iTunes\iTunesHelper.exe”
“C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe”
“C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe”
“C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe”
C:\Windows\system32\svchost.exe -k imgsvc
“C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe”
C:\Windows\system32\svchost.exe -k iissvcs
C:\Windows\System32\svchost.exe -k secsvcs
“C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE”
WLIDSvcM.exe 3420
“C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe” /TUStart /pid:3312
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k WindowsMobile
“C:\Program Files\iPod\bin\iPodService.exe”
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
“C:\Windows\System32\WUDFHost.exe” -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-73cdadcd-b4b4-471e-8d29-aaec25f4de53 -SystemEventPortName:HostProcess-84703191-e3c1-458f-92a7-b162e5c7befb -IoCancelEventPortName:HostProcess-97f42865-0c6d-45a0-a3cd-e034e124fecf -NonStateChangingEventPortName:HostProcess-72f1f66b-08df-4858-8e79-d06e1c4cfc83 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d1e765ad-3a0a-46db-9a11-087b470e0ae6 -DeviceGroupId:WpdFsGroup
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
“C:\Program Files\Windows Media Player\wmpnetwk.exe”
“C:\Program Files\Internet Explorer\iexplore.exe”
“C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE” SCODEF:5460 CREDAT:144385 /prefetch:2
“C:\Windows\System32\MsSpellCheckingFacility.exe” -Embedding
C:\Windows\system32\svchost.exe -k SDRSVC
“C:\Program Files (x86)\Spotnet\Spotnet.exe”
“C:\Program Files (x86)\Spotnet\SABnzbd.exe” -d -f “C:\Users\Supervisor\AppData\Local\Temp\tmpDC89.tmp.ini”
C:\Windows\system32\AUDIODG.EXE 0x580
“C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE” SCODEF:5460 CREDAT:3290143 /prefetch:2
C:\Windows\system32\wbem\wmiprvse.exe
“C:\Users\Supervisor\Desktop\RSITx64.exe”
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Supervisor\AppData\Roaming\Mozilla\Firefox\Profiles\t6i5gcfv.default
“Description”=Adobe Shockwave Player
“Path”=C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
“Description”=
“Path”=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
“Description”=Java™ Deployment Toolkit
“Path”=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
“Description”=Oracle® Next Generation Java™ Plug-In
“Path”=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
“Description”=
“Path”=disabled
“Description”=Microsoft Lync Plug-in for Firefox
“Path”=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
“Description”=Ag Player Plugin
“Path”=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
“Description”=Microsoft SharePoint Plug-in for Firefox
“Path”=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
“Description”=WLPG Install MIME type
“Path”=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
“Description”=NVIDIA stereo images plugin for Mozilla browsers
“Path”=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
“Description”=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
“Path”=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
“Description”=Google Update
“Path”=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
“Description”=Google Update
“Path”=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
“Description”=Handles PDFs in-place in Firefox
“Path”=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
“Description”=Oracle® Next Generation Java™ Plug-In
“Path”=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
“Description”=
“Path”=disabled
“Description”=Ag Player Plugin
“Path”=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
“Description”=Microsoft SharePoint Plug-in for Firefox
“Path”=C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll
======Registry dump======
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office15\URLREDIR.DLL
PrintEco - C:\Program Files (x86)\PrintEco\PrintEco Office\adxloader64.dll
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
Java™ Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
Aanmeldhulp voor Microsoft-account - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
PrintEco - C:\Program Files (x86)\PrintEco\PrintEco Office\adxloader.dll
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
Java™ Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
“Windows Mobile Device Center”=C:\Windows\WindowsMobile\wmdc.exe
“AdobeAAMUpdater-1.0”=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
“Nvtmru”=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe
“egui”=C:\Program Files\ESET\ESET Smart Security\egui.exe
“KiesPreload”=C:\Program Files (x86)\Samsung\Kies\Kies.exe
“MyDriveConnect.exe”=C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe
“HDAudDeck”=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
“SwitchBoard”=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
“AdobeCS6ServiceManager”=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
“P17RunE”=RunDll32 P17RunE.dll,RunDLLEntry
“APSDaemon”=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
“KiesTrayAgent”=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
“Wondershare Helper Compact.exe”=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
“Aimersoft Helper Compact.exe”=C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
“iTunesHelper”=C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Sitecom Wireless Utility.lnk - C:\Program Files (x86)\Sitecom\Common\WLANUtil.exe
C:\Users\Supervisor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Verzenden naar OneNote.lnk - C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
C:\Windows\system32\igfxdev.dll
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
“SecurityProviders”=credssp.dll
“ConsentPromptBehaviorAdmin”=5
“ConsentPromptBehaviorUser”=3
“EnableUIADesktopToggle”=0
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“EnableSecureUIAPath”=1
“NoDrives”=0
“NoDrives”=0
“vidc.mrle”=msrle32.dll
“vidc.msvc”=msvidc32.dll
“msacm.imaadpcm”=imaadp32.acm
“msacm.msg711”=msg711.acm
“msacm.msgsm610”=msgsm32.acm
“msacm.msadpcm”=msadp32.acm
“midimapper”=midimap.dll
“wavemapper”=msacm32.drv
“vidc.uyvy”=msyuv.dll
“vidc.yuy2”=msyuv.dll
“vidc.yvyu”=msyuv.dll
“vidc.iyuv”=iyuv_32.dll
“vidc.i420”=iyuv_32.dll
“vidc.yvu9”=tsbyuv.dll
“msacm.l3acm”=C:\Windows\System32\l3codeca.acm
“wave”=wdmaud.drv
“midi”=wdmaud.drv
“mixer”=wdmaud.drv
“aux”=wdmaud.drv
“wave5”=wdmaud.drv
“midi5”=wdmaud.drv
“mixer5”=wdmaud.drv
“wave3”=wdmaud.drv
“midi3”=wdmaud.drv
“mixer3”=wdmaud.drv
“wave4”=wdmaud.drv
“midi4”=wdmaud.drv
“mixer4”=wdmaud.drv
“wave1”=wdmaud.drv
“midi1”=wdmaud.drv
“mixer1”=wdmaud.drv
“wave2”=wdmaud.drv
“midi2”=wdmaud.drv
“mixer2”=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 3 months======
2014-09-03 09:09:43 —-D—- C:\rsit
2014-08-30 15:30:59 —-D—- C:\Program Files\iPod
2014-08-30 15:30:58 —-D—- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-08-30 15:30:58 —-D—- C:\Program Files\iTunes
2014-08-30 15:30:58 —-D—- C:\Program Files (x86)\iTunes
2014-08-30 15:28:22 —-SHD—- C:\Config.Msi
2014-08-30 12:50:13 —-A—- C:\Windows\SYSWOW64\gdi32.dll
2014-08-30 12:50:13 —-A—- C:\Windows\system32\win32k.sys
2014-08-30 12:50:13 —-A—- C:\Windows\system32\gdi32.dll
2014-08-30 12:42:46 —-A—- C:\Windows\system32\wups2.dll
2014-08-30 12:42:46 —-A—- C:\Windows\system32\wucltux.dll
2014-08-30 12:42:46 —-A—- C:\Windows\system32\wuaueng.dll
2014-08-30 12:42:46 —-A—- C:\Windows\system32\wuauclt.exe
2014-08-30 12:42:40 —-A—- C:\Windows\SYSWOW64\wups.dll
2014-08-30 12:42:40 —-A—- C:\Windows\SYSWOW64\wudriver.dll
2014-08-30 12:42:40 —-A—- C:\Windows\SYSWOW64\wuapi.dll
2014-08-30 12:42:40 —-A—- C:\Windows\system32\wups.dll
2014-08-30 12:42:40 —-A—- C:\Windows\system32\wudriver.dll
2014-08-30 12:42:40 —-A—- C:\Windows\system32\wuapi.dll
2014-08-30 12:42:31 —-A—- C:\Windows\SYSWOW64\wuwebv.dll
2014-08-30 12:42:31 —-A—- C:\Windows\SYSWOW64\wuapp.exe
2014-08-30 12:42:31 —-A—- C:\Windows\system32\wuwebv.dll
2014-08-30 12:42:31 —-A—- C:\Windows\system32\wuapp.exe
2014-08-30 12:38:43 —-D—- C:\ProgramData\Aimersoft
2014-08-15 09:25:02 —-D—- C:\ProgramData\Movavi
2014-08-15 09:25:01 —-D—- C:\Program Files (x86)\Movavi Video Converter 14
2014-08-15 09:11:39 —-D—- C:\ProgramData\Aimersoft Video Converter Ultimate
2014-08-15 09:11:31 —-D—- C:\Program Files (x86)\Aimersoft
2014-08-13 11:22:45 —-A—- C:\Windows\SYSWOW64\infocardapi.dll
2014-08-13 11:22:45 —-A—- C:\Windows\SYSWOW64\icardagt.exe
2014-08-13 11:22:45 —-A—- C:\Windows\system32\infocardapi.dll
2014-08-13 11:22:45 —-A—- C:\Windows\system32\icardagt.exe
2014-08-13 11:22:44 —-A—- C:\Windows\SYSWOW64\icardres.dll
2014-08-13 11:22:44 —-A—- C:\Windows\system32\icardres.dll
2014-08-13 11:22:33 —-A—- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-08-13 11:22:33 —-A—- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 08:36:39 —-A—- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-08-13 08:36:39 —-A—- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-08-13 08:36:39 —-A—- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-08-13 08:36:39 —-A—- C:\Windows\SYSWOW64\KBDRU.DLL
2014-08-13 08:36:39 —-A—- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-08-13 08:36:39 —-A—- C:\Windows\system32\KBDYAK.DLL
2014-08-13 08:36:39 —-A—- C:\Windows\system32\KBDTAT.DLL
2014-08-13 08:36:39 —-A—- C:\Windows\system32\KBDRU1.DLL
2014-08-13 08:36:39 —-A—- C:\Windows\system32\KBDRU.DLL
2014-08-13 08:36:39 —-A—- C:\Windows\system32\KBDBASH.DLL
2014-08-13 08:36:36 —-A—- C:\Windows\SYSWOW64\tzres.dll
2014-08-13 08:36:36 —-A—- C:\Windows\system32\tzres.dll
2014-08-13 08:36:18 —-A—- C:\Windows\SYSWOW64\msi.dll
2014-08-13 08:36:18 —-A—- C:\Windows\SYSWOW64\authui.dll
2014-08-13 08:36:18 —-A—- C:\Windows\system32\msi.dll
2014-08-13 08:36:18 —-A—- C:\Windows\system32\authui.dll
2014-08-13 08:36:17 —-A—- C:\Windows\SYSWOW64\msihnd.dll
2014-08-13 08:36:17 —-A—- C:\Windows\system32\msihnd.dll
2014-08-13 08:36:17 —-A—- C:\Windows\system32\consent.exe
2014-08-13 08:36:03 —-A—- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-13 08:35:59 —-A—- C:\Windows\system32\shell32.dll
2014-08-13 08:35:58 —-A—- C:\Windows\SYSWOW64\shell32.dll
2014-08-13 08:35:53 —-A—- C:\Windows\SYSWOW64\urlmon.dll
2014-08-13 08:35:53 —-A—- C:\Windows\SYSWOW64\mshtmled.dll
2014-08-13 08:35:53 —-A—- C:\Windows\SYSWOW64\msfeeds.dll
2014-08-13 08:35:53 —-A—- C:\Windows\SYSWOW64\jscript9diag.dll
2014-08-13 08:35:53 —-A—- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-13 08:35:53 —-A—- C:\Windows\SYSWOW64\iernonce.dll
2014-08-13 08:35:53 —-A—- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-08-13 08:35:53 —-A—- C:\Windows\SYSWOW64\dxtmsft.dll
2014-08-13 08:35:53 —-A—- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 08:35:53 —-A—- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 08:35:52 —-A—- C:\Windows\SYSWOW64\mshtml.dll
2014-08-13 08:35:52 —-A—- C:\Windows\SYSWOW64\iesetup.dll
2014-08-13 08:35:52 —-A—- C:\Windows\SYSWOW64\iedkcs32.dll
2014-08-13 08:35:52 —-A—- C:\Windows\system32\iernonce.dll
2014-08-13 08:35:52 —-A—- C:\Windows\system32\ie4uinit.exe
2014-08-13 08:35:51 —-A—- C:\Windows\SYSWOW64\jsproxy.dll
2014-08-13 08:35:51 —-A—- C:\Windows\SYSWOW64\ieui.dll
2014-08-13 08:35:51 —-A—- C:\Windows\SYSWOW64\iertutil.dll
2014-08-13 08:35:51 —-A—- C:\Windows\SYSWOW64\ieframe.dll
2014-08-13 08:35:51 —-A—- C:\Windows\SYSWOW64\dxtrans.dll
2014-08-13 08:35:51 —-A—- C:\Windows\system32\urlmon.dll
2014-08-13 08:35:51 —-A—- C:\Windows\system32\msfeeds.dll
2014-08-13 08:35:51 —-A—- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 08:35:51 —-A—- C:\Windows\system32\ieetwcollector.exe
2014-08-13 08:35:51 —-A—- C:\Windows\system32\dxtmsft.dll
2014-08-13 08:35:50 —-A—- C:\Windows\system32\iesetup.dll
2014-08-13 08:35:50 —-A—- C:\Windows\system32\iertutil.dll
2014-08-13 08:35:50 —-A—- C:\Windows\system32\iedkcs32.dll
2014-08-13 08:35:49 —-A—- C:\Windows\SYSWOW64\wininet.dll
2014-08-13 08:35:49 —-A—- C:\Windows\SYSWOW64\vbscript.dll
2014-08-13 08:35:49 —-A—- C:\Windows\SYSWOW64\msrating.dll
2014-08-13 08:35:49 —-A—- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-08-13 08:35:49 —-A—- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-08-13 08:35:49 —-A—- C:\Windows\SYSWOW64\jscript9.dll
2014-08-13 08:35:49 —-A—- C:\Windows\SYSWOW64\ieUnatt.exe
2014-08-13 08:35:49 —-A—- C:\Windows\SYSWOW64\ieapfltr.dll
2014-08-13 08:35:49 —-A—- C:\Windows\system32\jsproxy.dll
2014-08-13 08:35:48 —-A—- C:\Windows\system32\mshtmled.dll
2014-08-13 08:35:48 —-A—- C:\Windows\system32\ieui.dll
2014-08-13 08:35:48 —-A—- C:\Windows\system32\ieframe.dll
2014-08-13 08:35:48 —-A—- C:\Windows\system32\dxtrans.dll
2014-08-13 08:35:47 —-A—- C:\Windows\system32\wininet.dll
2014-08-13 08:35:47 —-A—- C:\Windows\system32\vbscript.dll
2014-08-13 08:35:47 —-A—- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 08:35:47 —-A—- C:\Windows\system32\jscript9diag.dll
2014-08-13 08:35:47 —-A—- C:\Windows\system32\jscript9.dll
2014-08-13 08:35:47 —-A—- C:\Windows\system32\ieUnatt.exe
2014-08-13 08:35:47 —-A—- C:\Windows\system32\ieapfltr.dll
2014-08-13 08:35:46 —-A—- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 08:35:46 —-A—- C:\Windows\system32\msrating.dll
2014-08-13 08:35:46 —-A—- C:\Windows\system32\MshtmlDac.dll
2014-08-13 08:35:46 —-A—- C:\Windows\system32\mshtml.dll
2014-08-13 08:35:08 —-A—- C:\Windows\SYSWOW64\rpcrt4.dll
2014-08-13 08:35:08 —-A—- C:\Windows\system32\rpcrt4.dll
2014-08-13 08:35:07 —-A—- C:\Windows\system32\aepdu.dll
2014-08-13 08:35:06 —-A—- C:\Windows\system32\aeinv.dll
2014-07-31 09:57:15 —-A—- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-07-31 09:56:57 —-A—- C:\Windows\system32\drivers\mwac.sys
2014-07-31 09:56:57 —-A—- C:\Windows\system32\drivers\mbamchameleon.sys
2014-07-31 09:56:56 —-D—- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-31 09:13:33 —-D—- C:\Users\Supervisor\AppData\Roaming\calibre
2014-07-31 09:12:38 —-D—- C:\Program Files (x86)\Calibre2
2014-07-28 12:09:21 —-D—- C:\ProgramData\ESET
2014-07-28 09:52:54 —-D—- C:\ProgramData\Mozilla
2014-07-28 09:52:54 —-D—- C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-27 11:23:04 —-D—- C:\Program Files (x86)\MyDrive Connect
2014-07-20 20:57:15 —-D—- C:\Program Files (x86)\TomTom International B.V
2014-07-09 20:25:56 —-A—- C:\Windows\SYSWOW64\osk.exe
2014-07-09 20:25:55 —-A—- C:\Windows\system32\qedit.dll
2014-07-09 20:25:55 —-A—- C:\Windows\system32\osk.exe
2014-07-09 20:25:54 —-A—- C:\Windows\SYSWOW64\qedit.dll
2014-07-09 20:25:54 —-A—- C:\Windows\system32\drivers\afd.sys
2014-07-09 20:25:51 —-A—- C:\Windows\SYSWOW64\schannel.dll
2014-07-09 20:25:51 —-A—- C:\Windows\SYSWOW64\msv1_0.dll
2014-07-09 20:25:51 —-A—- C:\Windows\SYSWOW64\kerberos.dll
2014-07-09 20:25:51 —-A—- C:\Windows\system32\schannel.dll
2014-07-09 20:25:51 —-A—- C:\Windows\system32\kerberos.dll
2014-07-09 20:25:50 —-A—- C:\Windows\SYSWOW64\wdigest.dll
2014-07-09 20:25:50 —-A—- C:\Windows\SYSWOW64\TSpkg.dll
2014-07-09 20:25:50 —-A—- C:\Windows\SYSWOW64\ncrypt.dll
2014-07-09 20:25:50 —-A—- C:\Windows\system32\wdigest.dll
2014-07-09 20:25:50 —-A—- C:\Windows\system32\TSpkg.dll
2014-07-09 20:25:50 —-A—- C:\Windows\system32\ncrypt.dll
2014-07-09 20:25:50 —-A—- C:\Windows\system32\msv1_0.dll
2014-07-09 20:25:49 —-A—- C:\Windows\SYSWOW64\credssp.dll
2014-07-09 20:25:49 —-A—- C:\Windows\system32\credssp.dll
2014-07-09 20:25:18 —-A—- C:\Windows\system32\lsasrv.dll
2014-07-09 20:25:17 —-A—- C:\Windows\SYSWOW64\sspicli.dll
2014-07-09 20:25:17 —-A—- C:\Windows\SYSWOW64\secur32.dll
2014-06-12 12:57:20 —-A—- C:\Windows\system32\msxml6.dll
2014-06-12 12:57:19 —-A—- C:\Windows\SYSWOW64\msxml6r.dll
2014-06-12 12:57:19 —-A—- C:\Windows\SYSWOW64\msxml6.dll
2014-06-12 12:57:19 —-A—- C:\Windows\SYSWOW64\msxml3r.dll
2014-06-12 12:57:19 —-A—- C:\Windows\SYSWOW64\msxml3.dll
2014-06-12 12:57:19 —-A—- C:\Windows\system32\msxml6r.dll
2014-06-12 12:57:19 —-A—- C:\Windows\system32\msxml3r.dll
2014-06-12 12:57:19 —-A—- C:\Windows\system32\msxml3.dll
2014-06-12 12:57:18 —-A—- C:\Windows\system32\drivers\tcpip.sys
2014-06-12 12:57:18 —-A—- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-06-12 12:57:17 —-A—- C:\Windows\SYSWOW64\usp10.dll
2014-06-12 12:57:17 —-A—- C:\Windows\system32\usp10.dll
2014-06-12 12:57:16 —-A—- C:\Windows\system32\rdpcorets.dll
======List of files/folders modified in the last 3 months======
2014-09-03 09:09:48 —-D—- C:\Program Files\trend micro
2014-09-03 09:09:46 —-D—- C:\Windows\temp
2014-09-03 08:33:53 —-D—- C:\ProgramData\Spotnet
2014-09-03 08:33:12 —-D—- C:\Program Files (x86)\Spotnet
2014-09-03 08:11:15 —-D—- C:\Windows\system32\config
2014-09-03 07:46:26 —-D—- C:\Windows\system32\Tasks
2014-09-03 07:45:36 —-D—- C:\Windows\inf
2014-09-03 07:44:02 —-D—- C:\Windows
2014-09-03 07:44:00 —-D—- C:\ProgramData\NVIDIA
2014-09-02 12:49:37 —-D—- C:\Windows\Prefetch
2014-09-02 12:13:01 —-D—- C:\Users\Supervisor\AppData\Roaming\Media Player Classic
2014-09-01 11:51:27 —-D—- C:\Users\Supervisor\AppData\Roaming\uTorrent
2014-09-01 10:55:33 —-D—- C:\Windows\System32
2014-09-01 10:55:33 —-A—- C:\Windows\system32\PerfStringBackup.INI
2014-09-01 08:00:09 —-SHD—- C:\System Volume Information
2014-08-31 10:55:04 —-D—- C:\Windows\rescache
2014-08-30 15:38:51 —-D—- C:\Windows\system32\catroot
2014-08-30 15:31:52 —-SHD—- C:\Windows\Installer
2014-08-30 15:31:39 —-D—- C:\Windows\SysWOW64
2014-08-30 15:30:59 —-D—- C:\Program Files
2014-08-30 15:30:58 —-D—- C:\ProgramData
2014-08-30 15:30:58 —-D—- C:\Program Files (x86)
2014-08-30 15:08:49 —-D—- C:\Windows\winsxs
2014-08-30 15:07:03 —-D—- C:\Windows\SYSWOW64\nl-NL
2014-08-30 15:07:03 —-D—- C:\Windows\SYSWOW64\en-US
2014-08-30 15:07:03 —-D—- C:\Windows\system32\nl-NL
2014-08-30 15:07:03 —-D—- C:\Windows\system32\en-US
2014-08-30 13:46:16 —-RSD—- C:\Windows\assembly
2014-08-30 13:45:33 —-D—- C:\ProgramData\Microsoft Help
2014-08-30 12:42:54 —-D—- C:\Windows\system32\catroot2
2014-08-15 13:31:40 —-D—- C:\Users\Supervisor\AppData\Roaming\Winamp
2014-08-15 13:30:16 —-D—- C:\Program Files\Adobe
2014-08-15 09:12:05 —-D—- C:\Program Files (x86)\Common Files
2014-08-14 22:30:01 —-D—- C:\Users\Supervisor\AppData\Roaming\HandBrake
2014-08-14 10:43:36 —-D—- C:\Windows\Microsoft.NET
2014-08-14 10:27:15 —-D—- C:\Windows\debug
2014-08-14 08:28:04 —-D—- C:\Windows\ehome
2014-08-14 08:28:03 —-RSD—- C:\Windows\Fonts
2014-08-14 08:27:51 —-D—- C:\Windows\system32\drivers
2014-08-14 08:27:50 —-D—- C:\Program Files\Internet Explorer
2014-08-14 08:27:48 —-D—- C:\Windows\PolicyDefinitions
2014-08-14 08:27:46 —-D—- C:\Program Files (x86)\Internet Explorer
2014-08-13 11:33:53 —-D—- C:\Windows\system32\MRT
2014-08-13 11:31:44 —-A—- C:\Windows\system32\MRT.exe
2014-08-13 11:30:17 —-A—- C:\Windows\win.ini
2014-08-13 11:22:21 —-SD—- C:\Windows\system32\CompatTel
2014-08-12 13:16:25 —-D—- C:\Program Files\ESET
2014-08-12 08:25:28 —-SD—- C:\ProgramData\Microsoft
2014-08-10 12:17:08 —-D—- C:\Users\Supervisor\AppData\Roaming\Adobe
2014-08-10 12:09:46 —-D—- C:\ProgramData\Adobe
2014-08-10 12:09:46 —-D—- C:\Program Files\Common Files\Adobe
2014-08-10 11:54:47 —-D—- C:\Program Files (x86)\Free YouTube Downloader
2014-08-05 09:20:00 —-N—- C:\Windows\system32\MpSigStub.exe
2014-08-01 15:59:46 —-D—- C:\Windows\system32\NDF
2014-08-01 08:49:52 —-D—- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-07-31 09:57:02 —-D—- C:\Users\Supervisor\AppData\Roaming\Malwarebytes
2014-07-31 09:56:56 —-D—- C:\ProgramData\Malwarebytes
2014-07-31 09:49:35 —-D—- C:\Program Files\CCleaner
2014-07-28 12:10:48 —-D—- C:\Windows\system32\DriverStore
2014-07-28 09:52:56 —-D—- C:\Program Files (x86)\Mozilla Firefox
2014-07-27 11:21:57 —-A—- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-07-24 11:35:12 —-D—- C:\Program Files\Microsoft Silverlight
2014-07-24 11:35:11 —-D—- C:\Program Files (x86)\Microsoft Silverlight
2014-07-23 22:02:13 —-D—- C:\Windows\SoftwareDistribution
2014-07-10 08:17:01 —-D—- C:\Program Files\Windows Journal
2014-07-10 08:17:00 —-D—- C:\Windows\SYSWOW64\Dism
2014-07-10 08:17:00 —-D—- C:\Windows\system32\Dism
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys
R3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28ux.sys
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys
R3 P17;SB 5.1 VX; C:\Windows\system32\drivers\P17.sys
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys
S1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys
S3 Pcouffin64;Low level access layer for CD devices; C:\Windows\System32\Drivers\pcouffin64a.sys
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys
S3 RimUsb;BlackBerry Smartphone; C:\Windows\System32\Drivers\RimUsb_AMD64.sys
S3 RimVSerPort;RIM Virtual Serial Port v2; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys
S3 usb_rndisx;USB RNDIS-adapter; C:\Windows\system32\DRIVERS\usb8023x.sys
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys
S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys
S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
R2 RalinkRegistryWriter;Ralink Registry Writer; C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe
R2 RalinkRegistryWriter64;Ralink Registry Writer 64; C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
S2 KMService;KMService; C:\Windows\syswow64\srvany.exe
S2 PCLEPCI;PCLEPCI; C:\Windows\SysWOW64\drivers\pclepci.sys
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe
S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
—————–EOF—————–
Malwarebytes Anti-Malware
www.malwarebytes.org
Scandatum: 3-9-2014
Scantijd: 8:56:19
Logbestand: log.txt
Beheerder: Ja
Versie: 2.00.2.1012
Malwaredatabase: v2014.09.03.02
Rootkitdatabase: v2014.08.21.01
Licentie: Gratis
Malwarebescherming: Uitgeschakeld
Kwaadaardige Website Bescherming: Uitgeschakeld
Self-protection: Uitgeschakeld
Besturingssysteem: Windows 7 Service Pack 1
Processor: x64
Bestandssysteem: NTFS
Gebruiker: Supervisor
Scantype: Bedreigingsscan
Resultaat: Voltooid
Objecten Gescand: 410435
Verstreken Tijd: 11 m, 52 s
Geheugen: Ingeschakeld
Opstarten: Ingeschakeld
Bestandssysteem: Ingeschakeld
Archieven: Ingeschakeld
Rootkits: Uitgeschakeld
Heuristics: Ingeschakeld
POP: Waarschuwen
POA: Ingeschakeld
Processen: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registersleutels: 0
(No malicious items detected)
Registerwaardes: 0
(No malicious items detected)
Registerdata: 0
(No malicious items detected)
Mappen: 0
(No malicious items detected)
Bestanden: 0
(No malicious items detected)
Fysieke Sectoren: 0
(No malicious items detected)
(end)
Groetjes
Ben

03-09-2014 09:23

Hallo,
Schakel eerst de Antivirussoftware uit voordat je zoek.exe download.
Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.
Download Zoek.exe naar het bureaublad.
* Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
Zoek.exe uitvoeren
Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.
* Dubbelklik vervolgens op Zoek.exe om de tool te starten.
* Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
* Kopieer nu onderstaande vet gedrukte code en plak die in het grote invulvenster:
* Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
firefoxlook;
torpigcheck;
emptyfolderscheck;delete
chromelook;
standardsearch;
filesrcm;
autoclean;
startupall;
* Klik nu op de knop "Run script".
* Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
* Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
* Post het geopende logje in het volgende bericht.
jdw

03-09-2014 10:22

Zoek.exe v5.0.0.0 Updated 01-September-2014
Tool run by Supervisor on wo 03-09-2014 at 9:40:43,52.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Supervisor\Desktop\zoek.exe
==== System Restore Info ======================
3-9-2014 9:44:27 Zoek.exe System Restore Point Created Succesfully.
==== Torpig Check ======================
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll
==== Empty Folders Check ======================
C:\PROGRA~2\Aimersoft deleted successfully
C:\PROGRA~2\Malwarebytes' Anti-Malware deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\PROGRA~3\Ralink deleted successfully
C:\Users\Supervisor\AppData\Roaming\Malwarebytes deleted successfully
C:\Users\Supervisor\AppData\Roaming\Media Player Classic deleted successfully
C:\Users\Supervisor\AppData\Local\calibre-cache deleted successfully
C:\Users\UpdatusUser\AppData\Local\CrashDumps deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Running Processes ======================
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe
C:\Program Files (x86)\Sitecom\Common\WLANUtil.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe
C:\Users\Supervisor\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\Users\Supervisor\daemonprocess.txt deleted
C:\Users\Supervisor\.android deleted
C:\PROGRA~2\FoxTabFLVPlayer deleted
C:\PROGRA~2\SopCast deleted
C:\PROGRA~2\Eusing Free Registry Cleaner deleted
C:\wget.exe deleted
C:\Users\Supervisor\AppData\Roaming\ihelper deleted
C:\Users\Supervisor\AppData\Local\avgchrome deleted
C:\Users\Supervisor\AppData\Local\Wondershare deleted
C:\Users\Supervisor\AppData\Local\cache deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Windows\Syswow64\RegistryHelperLM.ocx deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Windows\SysWow64\Extensions deleted
“C:\Users\Supervisor\AppData\Roaming\install\Svchost.exe.vir” deleted
“C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll” deleted
“C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll” deleted
“C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\WSHelper.exe” deleted
“C:\Users\Supervisor\AppData\Roaming\install” deleted
“C:\PROGRA~2\COMMON~1\Wondershare” deleted
“C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact” deleted
==== System Specs ======================
Windows: Windows 7 Ultimate Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 4096 MB
CPU Info: Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
CPU Speed: 2936,2 MHz
Sound Card: Luidsprekers (SB 5.1 VX) |
Luidsprekers (VIA High Definiti |
SPDIF Interface (TX0) (VIA High |
Display Adapters: NVIDIA GeForce GT 240 | NVIDIA GeForce GT 240 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen PnP-beeldscherm |
Screen Resolution: 1680 X 1050 - 32 bit
Network: Network Present
Network Adapters: Microsoft Virtual WiFi Miniport Adapter | Sitecom Wireless Micro USB Adapter 300N X3 WL-364 | Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller
CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SH-S223C
Ports: COM1 LPT1
Mouse: 8 Button Wheel Mouse Present
Hard Disks: C: 100,0GB | D: 496,1GB | F: 232,9GB
Hard Disks - Free: C: 19,4GB | D: 468,6GB | F: 232,8GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 10/16/09 | A_M_I_ - 10000916
Time Zone: West-Europa (standaardtijd)
Motherboard *: ASUSTeK Computer INC. P5KPL-AM EPU
Country: Nederland
Language: NLD
==== System Specs (Software) ======================
Anti-Virus: ESET Smart Security 7.0 On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: ESET Smart Security 7.0 disabled (Outdated)
Firewall: ESET Personal firewall disabled
Default Browser: Google Chrome 36.0.1985.143
Internet Explorer Version: 11.0.9600.17239
Mozilla Firefox version: 31.0 (x86 nl)
Google Chrome version: 36.0.1985.143
Adobe Reader version: 11.0.8.4
Sun Java version: 1.7.0_55 (32-bit)
Sun Java version: 1.7.0_01 (64-bit)
Shockwave Player version: 11.0.3r471
==== Files Recently Created / Modified ======================
====== C:\Windows ====
====== C:\Users\SUPERV~1\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-08-30 10:50:13 980305AC3AF53C1964A11190451ABB32 311808 —-a-w- C:\Windows\SysWOW64\gdi32.dll
2014-08-30 10:42:40 867148EBF47E7E7E7B21C07B4A981929 581600 —-a-w- C:\Windows\SysWOW64\wuapi.dll
2014-08-30 10:42:40 372218B80DEF827063049EBEE76B7501 92672 —-a-w- C:\Windows\SysWOW64\wudriver.dll
2014-08-30 10:42:40 255F0417EC31C71585824269522EC8E9 36320 —-a-w- C:\Windows\SysWOW64\wups.dll
2014-08-30 10:42:31 F419D738BD2AE58D9DF2F9FEB5F43842 33792 —-a-w- C:\Windows\SysWOW64\wuapp.exe
2014-08-30 10:42:31 5AA2CAD923E9E647276A61387E83DDD0 179656 —-a-w- C:\Windows\SysWOW64\wuwebv.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-08-30 10:50:13 A347EF56B7CD8360B3EF7772FEA597B9 3163648 —-a-w- C:\Windows\Sysnative\win32k.sys
2014-08-30 10:50:13 860528C9E50AB84935843B23A80E665E 404480 —-a-w- C:\Windows\Sysnative\gdi32.dll
2014-08-30 10:42:46 EAD9E413A6CEB9FD8E2AD9DC0716C061 58336 —-a-w- C:\Windows\Sysnative\wuauclt.exe
2014-08-30 10:42:46 E76F105AD039B9E4DA9ECE839298C4A2 44512 —-a-w- C:\Windows\Sysnative\wups2.dll
2014-08-30 10:42:46 6335F8B4B89F002A3801473C1A799237 2620928 —-a-w- C:\Windows\Sysnative\wucltux.dll
2014-08-30 10:42:46 61FF576450CCC80564B850BC3FB6713A 2477536 —-a-w- C:\Windows\Sysnative\wuaueng.dll
2014-08-30 10:42:40 7EC6617005F76714C7E16605E7A8AB06 38880 —-a-w- C:\Windows\Sysnative\wups.dll
2014-08-30 10:42:40 1180B5ADFB507258DA10F51B46681A33 97792 —-a-w- C:\Windows\Sysnative\wudriver.dll
2014-08-30 10:42:40 0DB2758CF1BAFE22E0970FDA0785B74C 700384 —-a-w- C:\Windows\Sysnative\wuapi.dll
2014-08-30 10:42:31 45D4BDEA136E72E75CF008D3C38D949A 198600 —-a-w- C:\Windows\Sysnative\wuwebv.dll
2014-08-30 10:42:31 29FE783F75362AD6D2D9C0555BA83BD2 36864 —-a-w- C:\Windows\Sysnative\wuapp.exe
====== C:\Windows\Sysnative\drivers =====
2014-08-13 06:36:03 87CE5C8965E101CCCED1F4675557E868 985536 —-a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys
====== C:\Windows\Tasks ======
2014-08-30 13:10:55 549783F82EDF0778158F0EB6FD20B5DC 3486 —-a-w- C:\Windows\Sysnative\Tasks\AutoKMS
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-08-30 13:30:59 ——– d—–w- C:\Program Files\iPod
2014-08-30 13:30:58 ——– d—–w- C:\Program Files\iTunes
======= C:\PROGRA~2 =====
2014-08-30 13:30:58 ——– d—–w- C:\PROGRA~2\iTunes
2014-08-15 07:25:01 ——– d—–w- C:\PROGRA~2\Movavi Video Converter 14
2014-08-15 07:12:05 ——– d—–w- C:\PROGRA~2\COMMON~1\Aimersoft
======= C: =====
====== C:\Users\Supervisor\AppData\Roaming ======
2014-08-15 07:27:57 ——– d—–w- C:\Users\Supervisor\AppData\Local\Movavi
2014-08-15 07:12:06 ——– d—–w- C:\Users\Supervisor\AppData\Local\Aimersoft
2014-08-10 09:56:15 ——– d—–w- C:\Users\Supervisor\AppData\Local\Free YouTube Downloader
====== C:\Users\Supervisor ======
2014-09-03 06:56:51 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 —-a-w- C:\Users\Supervisor\Desktop\RSITx64.exe
2014-09-03 06:33:12 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotnet
2014-09-03 06:30:42 0F00095C28C068C80F5AF04F5F7958FB 11065159 —-a-w- C:\Users\Supervisor\Downloads\spotnet181-Duken-nl.exe
2014-08-30 13:31:40 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-30 13:30:58 ——– d—–w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-08-30 10:38:43 ——– d—–w- C:\ProgramData\Aimersoft
2014-08-15 07:25:14 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movavi Video Converter 14
2014-08-15 07:25:02 ——– d—–w- C:\ProgramData\Movavi
2014-08-15 07:11:39 ——– d—–w- C:\ProgramData\Aimersoft Video Converter Ultimate
2014-08-14 14:39:21 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
====== C: exe-files ==
2014-09-03 06:33:12 E6FDBB66A816B3D1D96A811069442AC8 229376 —-a-w- C:\Program Files (x86)\Spotnet\win\par2\par2-classic.exe
2014-09-03 06:33:12 D17D03DEF41FF44013A5D5D6BF55B330 276992 —-a-w- C:\Program Files (x86)\Spotnet\win\unrar\x64\UnRAR.exe
2014-09-03 06:33:12 ABCAF37BDE149152CA8AB766736D4ADC 515072 —-a-w- C:\Program Files (x86)\Spotnet\win\par2\x64\par2.exe
2014-09-03 06:33:12 75375C22C72F1BEB76BEA39C22A1ED68 167936 —-a-w- C:\Program Files (x86)\Spotnet\win\unzip\unzip.exe
2014-09-03 06:33:12 1BAF578E4B16A56CDAC24D5C6B18E4F5 260096 —-a-w- C:\Program Files (x86)\Spotnet\win\unrar\UnRAR.exe
2014-09-03 06:33:12 1977F54AFB662549DCE68E26D6E48178 423936 —-a-w- C:\Program Files (x86)\Spotnet\win\par2\par2.exe
2014-09-03 06:33:10 BE6EBB6F8C6F5AD290709FD6B5E166AD 114702 —-a-w- C:\Program Files (x86)\Spotnet\lib\curl.exe
2014-09-03 06:33:09 B2344619EB86432A2391599EB35CB059 348672 —-a-w- C:\Program Files (x86)\Spotnet\SABnzbd.exe
2014-09-03 06:33:09 AB8011B91286000129AEAC36EDA49C05 1160704 —-a-w- C:\Program Files (x86)\Spotnet\Spotnet.exe
2014-09-03 06:33:08 62046B32A67A02F04C00B04F84A7A8A1 716189 —-a-w- C:\Program Files (x86)\Spotnet\unins000.exe
2014-08-30 13:26:44 30A4B7EB1E0B01D3D358079BE43348CC 77136 —-a-w- C:\ProgramData\Apple Computer\Installer Cache\iTunes 11.3.1.2\SetupAdmin.exe
=== C: other files ==
2014-09-03 06:33:11 CEC377014B9500F6907523ABB35090B9 4692380 —-a-w- C:\Program Files (x86)\Spotnet\lib\sabnzbd.zip
2014-09-03 06:33:11 35F1020D983FF711E51ED4D68E6948F6 1376889 —-a-w- C:\Program Files (x86)\Spotnet\lib\sabhelper.zip
==== Startup Registry Enabled ======================
“KiesPreload”=“C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload”
“MyDriveConnect.exe”=“C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe”
“Sidebar”=“%ProgramFiles%\Windows\Sidebar.exe /autoRun”
“mctadmin”=“C:\Windows\System32\mctadmin.exe”
“HDAudDeck”=“C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r”
“SwitchBoard”=“C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe”
“AdobeCS6ServiceManager”=“C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin”
“APSDaemon”=“C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
“KiesTrayAgent”=“C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe”
“Wondershare Helper Compact.exe”=“C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe”
“Aimersoft Helper Compact.exe”=“C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe”
“iTunesHelper”=“C:\Program Files (x86)\iTunes\iTunesHelper.exe”
“KiesPreload”=“C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload”
“MyDriveConnect.exe”=“C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe”
==== Startup Registry Enabled x64 ======================
“AdobeAAMUpdater-1.0”=“C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe”
“Nvtmru”=“C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe”
“egui”=“C:\Program Files\ESET\ESET Smart Security\egui.exe /hide /waitservice”
“Windows Mobile Device Center”=“%windir%\WindowsMobile\wmdc.exe ”
==== Startup Registry Disabled ======================
“Adobe ARM”=“\”C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\“”
“HP Software Update”=“C:\\Program Files (x86)\\Hp\\HP Software Update\\HPWuSchd2.exe”
“SunJavaUpdateSched”=“\”C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\“”
“iTunesHelper”=“\”C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\“”
==== Startup Folders ======================
2013-10-17 09:42:26 1126 —-a-w- C:\Users\Supervisor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk
2011-02-09 19:40:23 2035 —-a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Sitecom Wireless Utility.lnk
==== Task Scheduler Jobs ======================
C:\Windows\tasks\Adobe Flash Player Updater.job –a—— C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job –a—— C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job –a—— C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==== Other Scheduled Tasks ======================
“C:\Windows\SysNative\tasks\Adobe Flash Player Updater”
“C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma”
“C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Supervisor-PC-Hanne”
“C:\Windows\SysNative\tasks\AutoKMS”
“C:\Windows\SysNative\tasks\CCleanerSkipUAC”
“C:\Windows\SysNative\tasks\CreateChoiceProcessTask”
“C:\Windows\SysNative\tasks\Google Updater and Installer”
“C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore”
“C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA”
“C:\Windows\SysNative\tasks\HP-Online updateprogramma”
“C:\Windows\SysNative\tasks\Java Update Scheduler”
“C:\Windows\SysNative\tasks\Launch HTC Sync Loader”
“C:\Windows\SysNative\tasks\Logitech-online actualiseringsprogramma”
“C:\Windows\SysNative\tasks\Real Player-online actualiseringsprogramma”
“C:\Windows\SysNative\tasks\TuneUpUtilities_Task_BkGndMaintenance2012”
“C:\Windows\SysNative\tasks\User_Feed_Synchronization-{EA602772-A1BA-46FA-87AE-E8202948CC0C}”
“C:\Windows\SysNative\tasks\{02890F0F-FF35-467D-A818-6167472BAEC1}”
“C:\Windows\SysNative\tasks\{02A99BDE-9BBA-4D61-BCAD-31752128FAEC}”
“C:\Windows\SysNative\tasks\{0434B115-25F4-41AB-8BD6-BA8C478A9336}”
“C:\Windows\SysNative\tasks\{06FFFBB4-7B6F-4720-9D59-038895EE5CB4}”
“C:\Windows\SysNative\tasks\{0AE8D81B-AF6C-4A4F-A8BA-39CB3D7D8741}”
“C:\Windows\SysNative\tasks\{0ECFB9DB-0123-4883-A8DB-DAAA33721694}”
“C:\Windows\SysNative\tasks\{0F2978C5-8197-48D6-8903-5298EF56DA78}”
“C:\Windows\SysNative\tasks\{1BEC4EDC-4CEB-4458-809F-CADC00E1EEE3}”
“C:\Windows\SysNative\tasks\{1D6B6EF4-B1AF-48A5-A845-AC29CC46EDA8}”
“C:\Windows\SysNative\tasks\{20462A67-E3B7-46D5-98E0-BE56BAB30580}”
“C:\Windows\SysNative\tasks\{20FD9B1F-8D48-4B09-8F6C-C9CD387CE3FD}”
“C:\Windows\SysNative\tasks\{22F1450C-D984-4E3D-ADCD-51CA7E15CD12}”
“C:\Windows\SysNative\tasks\{28067060-CF7E-4E30-89E8-CBCF8765AF4B}”
“C:\Windows\SysNative\tasks\{2B77DC74-3ED9-4596-A7B8-EDAD0E2B43CD}”
“C:\Windows\SysNative\tasks\{33030E87-AC84-4FDF-8766-11856427DB46}”
“C:\Windows\SysNative\tasks\{39C16E0F-6577-428A-B7CD-A228C7CC1AEE}”
“C:\Windows\SysNative\tasks\{437A6E99-89BA-4485-927C-AC76ECE8E6BF}”
“C:\Windows\SysNative\tasks\{444812ED-85B7-45E0-8CDA-6EB6CBAF3859}”
“C:\Windows\SysNative\tasks\{47B6E02B-68A9-48A5-A816-9BF17A365098}”
“C:\Windows\SysNative\tasks\{47F527F8-E0BD-4C23-B141-E9179FB3F373}”
“C:\Windows\SysNative\tasks\{4897F2B6-FB61-4048-A7B3-84F2F8D8A377}”
“C:\Windows\SysNative\tasks\{49F2D5AC-8390-44BC-A45B-E75D6A22BD67}”
“C:\Windows\SysNative\tasks\{4A916FE0-32F6-4CDE-B065-F66CE4B16685}”
“C:\Windows\SysNative\tasks\{4BBD2CC6-450F-49F5-8876-0057D548C7BE}”
“C:\Windows\SysNative\tasks\{4EFF2F9C-586C-4DD1-B31C-A71ACB026B02}”
“C:\Windows\SysNative\tasks\{5BC3AF62-1B65-4679-BEB0-74EC2FA79ED0}”
“C:\Windows\SysNative\tasks\{5DC5E969-7706-4563-882D-9189A66A4233}”
“C:\Windows\SysNative\tasks\{602524AF-F5F7-4B95-A5A5-F9A550B93A29}”
“C:\Windows\SysNative\tasks\{60CB3F98-7E6E-4110-8EB6-E8A37FC8D910}”
“C:\Windows\SysNative\tasks\{6236DCE3-893F-4490-9D48-D508277DC4BC}”
“C:\Windows\SysNative\tasks\{6771241D-BBDC-4589-90FE-01BAB1DB2C08}”
“C:\Windows\SysNative\tasks\{6D62BB82-E6AB-4A05-8A30-D43E0695CC09}”
“C:\Windows\SysNative\tasks\{6DF7C868-5B3A-49F7-99D7-E1BC2AD704B5}”
“C:\Windows\SysNative\tasks\{6EF6E76A-A873-40C7-B5C0-09AE6F1F791B}”
“C:\Windows\SysNative\tasks\{708897DA-9A26-4799-B21B-C021E60607DD}”
“C:\Windows\SysNative\tasks\{7093724D-E2C6-4B86-AAD6-411AFD49413E}”
“C:\Windows\SysNative\tasks\{7440845D-89C9-4855-9637-FB2DEE821E27}”
“C:\Windows\SysNative\tasks\{74EAEBBF-D7B0-4CF8-9FAF-E1F390856529}”
“C:\Windows\SysNative\tasks\{7621A7C8-9B06-431B-AD28-115036B57362}”
“C:\Windows\SysNative\tasks\{7A34D942-465C-4166-A40C-85D99C610830}”
“C:\Windows\SysNative\tasks\{7A7C13D8-D76A-40C8-9EE9-A31BE676F268}”
“C:\Windows\SysNative\tasks\{7B678BF6-CE5E-4C2B-A47C-49E332EA609D}”
“C:\Windows\SysNative\tasks\{7D115124-3976-49C0-B46D-29E621CD8091}”
“C:\Windows\SysNative\tasks\{7D8B01FC-2168-4A58-BBD4-242D861F9879}”
“C:\Windows\SysNative\tasks\{8119DEC4-7999-4B10-92BF-C414D93A6C32}”
“C:\Windows\SysNative\tasks\{819A3717-3E4C-43AD-90C4-6B4225FB5CC1}”
“C:\Windows\SysNative\tasks\{869EC2BA-0E24-4565-9CED-9A9FDA51DB95}”
“C:\Windows\SysNative\tasks\{892D4060-850E-4831-8581-552AB5A8C24B}”
“C:\Windows\SysNative\tasks\{8A6CC45E-5B50-4110-926D-9896255E58C7}”
“C:\Windows\SysNative\tasks\{8BE13311-49E7-425F-8EBE-AB33B09E6185}”
“C:\Windows\SysNative\tasks\{8EE5E0F8-C729-4E47-A87C-983CCA7DEBD0}”
“C:\Windows\SysNative\tasks\{A3579649-3158-4C9D-8B38-A8FDEA7C1175}”
“C:\Windows\SysNative\tasks\{A6AD7B03-6A87-4E95-9AB8-072ABE238FFD}”
“C:\Windows\SysNative\tasks\{AFBF487F-01C2-4C8C-A377-94BABC895B28}”
“C:\Windows\SysNative\tasks\{B6B894A2-215B-47A8-BB42-E342D187A5D5}”
“C:\Windows\SysNative\tasks\{B7F4A2F3-E882-4B25-8DE6-09D4C294B983}”
“C:\Windows\SysNative\tasks\{BCD4D648-46E9-4708-8361-19DFB6533B53}”
“C:\Windows\SysNative\tasks\{BDA7B013-8078-46AE-B81C-F3C64701E9D7}”
“C:\Windows\SysNative\tasks\{C0C52622-DA7C-4073-86CB-F0A089AC1883}”
“C:\Windows\SysNative\tasks\{C28595EE-0FAD-4581-BC8F-D03D6D89A981}”
“C:\Windows\SysNative\tasks\{C850459C-D290-448F-9296-DDF9BC6A301E}”
“C:\Windows\SysNative\tasks\{C8FDA366-1B10-4999-83C7-789A89E7EE8C}”
“C:\Windows\SysNative\tasks\{CA32027D-800D-459A-8546-92E66A195FCF}”
“C:\Windows\SysNative\tasks\{CC68BB84-4561-41EA-B42E-5B4D089C68F3}”
“C:\Windows\SysNative\tasks\{CEC4940A-C735-4310-A11B-36463115046A}”
“C:\Windows\SysNative\tasks\{D307121D-5632-4236-8F34-CF6A24D25114}”
“C:\Windows\SysNative\tasks\{D348E216-628D-4EC2-8A19-61E9F88F0817}”
“C:\Windows\SysNative\tasks\{D4FB1B7B-F14B-4051-B701-7853C250EFCC}”
“C:\Windows\SysNative\tasks\{D805B94A-DF8E-467E-9F87-CD2E68C2118D}”
“C:\Windows\SysNative\tasks\{E09DB8F4-937F-4DF2-A2B7-F60B64124397}”
“C:\Windows\SysNative\tasks\{E3C8C337-715E-46F6-9174-E8F43017CC11}”
“C:\Windows\SysNative\tasks\{ED23344B-F233-4C13-90F9-1397CD22F91A}”
“C:\Windows\SysNative\tasks\{F6078612-2DF3-46E3-AA1F-B1390F434475}”
“C:\Windows\SysNative\tasks\{F6F87FC8-4CC5-4C89-8C7F-60A010E3CA30}”
“C:\Windows\SysNative\tasks\{FD877214-3095-4533-9A4F-B32BFAC25CCE}”
“C:\Windows\SysNative\tasks\{FDBC88F9-E030-4C36-97F9-C1DF0B199CD1}”
“C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask”
==== Folders in C:\PROGRA~3 0-6 Months Old ======================
2014-07-28 07:52:54 ——– d—–w- C:\PROGRA~3\Mozilla
2014-07-28 10:09:21 ——– d—–w- C:\PROGRA~3\ESET
2014-08-15 07:11:39 ——– d—–w- C:\PROGRA~3\Aimersoft Video Converter Ultimate
2014-08-15 07:25:02 ——– d—–w- C:\PROGRA~3\Movavi
2014-08-30 10:38:43 ——– d—–w- C:\PROGRA~3\Aimersoft
2014-08-30 13:30:58 ——– d—–w- C:\PROGRA~3\34BE82C4-E596-4e99-A191-52C6199EBF69
==== Firefox Extensions Registry ======================
“firefox@printecosoftware.com”=“C:\Program Files (x86)\PrintEco\PrintEco Office\firefox@printecosoftware.com.xpi”
==== Firefox Extensions ======================
ProfilePath: C:\Users\SUPERV~1\AppData\Roaming\Mozilla\Firefox\Profiles\t6i5gcfv.default
- Undetermined - C:\ProgramData\Aimersoft\Video Converter Ultimate\AMVCU@Aimersoft.com
ProfilePath: C:\Users\SUPERV~1\AppData\Roaming\TomTom\HOME\Profiles\12ajk5hu.default
- Undetermined - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- Undetermined - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\Supervisor\AppData\Roaming\Mozilla\Firefox\Profiles\t6i5gcfv.default
CD375F6297DFD24BAA250C7E62FA1216 - C:\Users\Supervisor\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
7D04E74E8B63FF93F26C6A2EC14A4EE7 - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director
==== Chrome Look ======================
Google Wallet - Supervisor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
==== Set IE to Default ======================
Old Values:
“Start Page”=“https://www.google.nl/”
New Values:
“Start Page”=“https://www.google.nl/”
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
“DefaultScope”=“{379DBD7E-977B-39DF-F6CF-2E7F16248A13}”
{012E1000-F331-11DB-8314-0800200C9A66} Google Url=“http://www.google.com/search?q={searchTerms}”
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url=“http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR”
{379DBD7E-977B-39DF-F6CF-2E7F16248A13} Google Url=“http://www.google.nl/search?hl=nl&q={searchTerms}&rlz=1I7MXGB_nlNL564”
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url=“http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}”
==== HijackThis Entries ======================
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: PrintEco - {BEB54677-E12F-44E7-AC7E-48241B866B5F} - C:\Program Files (x86)\PrintEco\PrintEco Office\adxloader.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe” -launchedbylogin
O4 - HKLM\..\Run: RunDll32 P17RunE.dll,RunDLLEntry
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
O4 - HKLM\..\Run: C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
O4 - HKLM\..\Run: “C:\Program Files (x86)\iTunes\iTunesHelper.exe”
O4 - HKCU\..\Run: C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: “C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe”
O4 - HKUS\S-1-5-21-3116784316-362696581-2426180777-1004\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘UpdatusUser’)
O4 - HKUS\S-1-5-21-3116784316-362696581-2426180777-1004\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘UpdatusUser’)
O4 - Startup: Verzenden naar OneNote.lnk = C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
O4 - Global Startup: Sitecom Wireless Utility.lnk = C:\Program Files (x86)\Sitecom\Common\WLANUtil.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra ‘Tools’ menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra ‘Tools’ menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra ‘Tools’ menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra ‘Tools’ menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: Accelerated graphics
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {28B66320-9687-4B13-8757-36F901887AB5} (CanvasX Class) - http://foto.hema.nl/ips-opdata/layout/hema/objects/canvasx.cab
O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} (JordanUploader Class) - http://foto.hema.nl/ips-opdata/layout/hema/objects/jordan.cab
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlcdnet.asus.com/pub/ASUS/misc/dlm-activex-2.2.5.0.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab
O16 - DPF: {6E718D87-6909-4FCE-92D4-EDCB2F725727} (Navigram Control) - http://navigram.com/engine/v1140/Navigram.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {9BDF4724-10AA-43D5-BD15-AEA0D2287303} (MSN Games – Texas Holdem Poker) - http://zone.msn.com/bingame/zpagames/zpa_txhe.cab79352.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.1.66.0.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} (Creative Software AutoUpdate 2) - http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://fotosnelservice.hema.nl/xupload/XUpload.ocx
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: WSAMVCUchrome - (no CLSID) - (no file)
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\SysWOW64\drivers\pclepci.sys
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Ralink Technology, Corp. - C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe
O23 - Service: Ralink Registry Writer 64 (RalinkRegistryWriter64) - Ralink Technology, Corp. - C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\DefaultAppPool\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Supervisor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Supervisor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Cache found
==== Empty Chrome Cache ======================
C:\Users\Supervisor\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=315 folders=68 24945150 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\DefaultAppPool\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Users\Supervisor\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\temp emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\SUPERV~1\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on wo 03-09-2014 at 10:20:35,64 ======================
Ben

03-09-2014 10:28

Hallo,
Dit ziet er netjes uit, hoe gaat het hierna?
Het enigste waar je voor op moet passen is dat je C: schijf aardig vol loopt:
Hard Disks: C: 100,0GB | D: 496,1GB | F: 232,9GB
Hard Disks - Free: C: 19,4GB | D: 468,6GB | F: 232,8GB
Kijk of je wat meer op je andere schijven kan plaatsen.
fazantje

15-09-2014 20:05

Omdat dit topic is opgelost word het gesloten.
Wilt U Uw topic als nog weer openen, stuur dan een privé bericht naar Ben of Huib (fazantje).
Zij zullen dan het “slotje” er van af halen en het topic is weer geopend
Het AV team.

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.

graag logjes nakijken ivm trage pc?! help!

jdw

Ben

jdw

Ben

fazantje