Ga naar inhoud

gilbert D

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    16

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door gilbert D

  1. gilbert D
    vandaag ben ik er eindelijk in geslaagd om mijn te verbinden met mijn e-mail account. de bacuk die ik heb gedaan heeft niet veel aarde aan de dijk gebracht. Deze morgen heb ik mijn e-mail account terug ingesteld in Mail, zoals u me had door ge geven maar opnieuw bleef gij maar zoeken. ik verliet mail en klikte per ongeluk met mijn rechter muis knop op het bureaublad op de submenu die verscheen zag ik iets staan van syncronisatie, dit heb ik maar aan ge klik en uitgevoerd. ik dacht meer kan er niet meer gebeuren. ik ging nadien terug naar mail. en wonder boven wonder mijn mails waren verschenen. Dan heb ik alles uitgevoerd in outlook volgens proximus, en alles is nu ok. heeft dit er n iets mee te maken ik weet het niet, maar volgens mij heeft het toch te maeken met het syncroniseren van mappen op verscheidene pc's. morgen kan ik nu beginnen met mijn Nas, ik dank jullie voor de steun, en hulp het doet altijd plezier als je op zo'n ogenblikken op mensen als jullie kan rekenen. dank daarvoor gilbert D
  2. gilbert D
    deze morgen heb ik een test gedaan vanuit mijn het programma mail (win10). en daar zie ik dat er een dubbel mail adres staat in outlook dat ik niet heb aan gemaakt, namelijk een gmail adres en mijn skynet adres. die kan ik onder geen beding verwijderen. het gekke is dat ze geen mails ontvangen synchroniseren niet. maar als ik een test verstuur vanuit skynet naar gmail dan lukt dit wel. nu heb ik een drastisch besluit genomen, ik heb naar mijn backups gekeken en de laatste ben ik nu aan het terug plaatsen. we zullen zien wat het geeft. ik weet in ieder geval wat doen vandaag. ik hou u veder op de hoogte en ik dan u van harte voor de steun tot nu toe. groetjes
  3. gilbert D
    Ik zit niet bij Telenet maar bij Proximus, heb mijn paswoord veranderd, maar het probleem blijft. Als ik kijk in Mail, het programma van win 10, dan zie ik dat gij daar de mails zoekt maar dat gij ze niet vindt ( niet gesycroniseerd)). ik heb nochtans mijn e-mail niet ingesteld, maar ik zie dat gij automatisch windows accound inschakeld.
  4. gilbert D
    dit heb ik dus gedaan maar is me niet gelukt. het resultaat was: -aanmelden bij server voor inkomende mail e-mailberichten mislukt -Test e-mailberichten verzenden mislukt. ik moet er wel bij zeggen dat ik werk met imap instellingen en niet met pop. omdat ik met verschillende pc's werk.
  5. gilbert D
    dit zal ik zeker proberen en dank voor de oplossing, maar ondertussen zit ik met een ander probleem. Door de problemen met mijn net werk had ik een herstel gedaan in win 10, met andere woorden heeft het systeem een volledige nieuwe installatie gedaan. maar gij heeft zoals bij de eerste install alle program's meegenomen. met andere woorden mijn antivirus office 2010 heb ik nadien moeten installeren. Het is nu juist met het instellen van mijn e-mail account in outlook dat het niet lukt, dat is mij nog nooit overkomen. ook in mail kan ik het niet installeren. dus voor ik verder ga met mijn nas moet dit eerst in order zijn, misschien is een volledige nieuwe installatie deoplssing? ik weet het niet meer ik zit werkelijk in de .... dank u voor het aanhoren van min gebeden gilbertD
  6. gilbert D
    sinds verleden week ben ik de eigenaar van een nas Synology DS 214play. de installatie verliep vlot ik gaf de server een naam, gebruikersnaam en wachtwoord. kortom alles zoals het hoorde de server verscheen ook in mijn netwerk en ik kon inloggen met admin om DSM verder intestellen. wat ik ook deed tot ik bij Quik connect kwam dar had ik wat problemen met het wachtwoord, en daar ik geen tijd meer gad moest ik de verbinding verbreken. dit gebeurde allemaal in Opera en op mijn desktop. die avond stemde ik het thuisnetwerk van mijn laptop af op mijn overige pc's (netwerkcode). als controle testte ik (wat waarschijnlijk dom was) of mijn server zichtbaar was in mijn netwerk. Dat was zo, ik opende die met admin maar dit gebeurde nu in explorer van win10. De volgende dag wou ik verder mijn Dsm instellen maar als ik terug inlog met admin krijg ik het volgende " Uw account werd verwijderd, neem contact op de systeembeheerder". wat ik ook probeer ik kan de account niet terug vinden of de nas terug in zijn fabrieksinstellingen terugplaatsen. weten jullie hierop een oplossing. dank bij voorbaat Gilbert D
  7. gilbert D
    voor mij ziet het er allemaal prima uit nu, en alles werkt weer perfect dankzij u. ik kan u niet genoeg bedanken en zal zeker overwegen om een donatie te doen want jullie doen schitterend werk. nogmaals mijn oprechte dank. gilbert D
  8. gilbert D
    Resultaat na zoek.exe Zoek.exe Version 4.0.0.4 Updated 07-September-2013 Tool run by gilbert on za 07/09/2013 at 11:50:02,33. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\gilbert\Downloads\zoek (1)\zoek.exe [script inserted] [Checkboxes used] ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] ==== Deleting Files \ Folders ====================== "C:\Users\gilbert\AppData\Local\Temp\LollipopInstaller_somoto_14693.exe" not found "C:\Users\gilbert\AppData\Local\Temp\BabylonTB.exe" not found "C:\Windows\SYSWOW64\javaws.exe" not found "C:\Windows\SYSWOW64\javaw.exe" not found "C:\Windows\SYSWOW64\java.exe" not found "C:\Users\gilbert\Downloads\adwcleaner (1).exe" deleted "C:\Users\gilbert\Downloads\SpyHunter-Installer.exe" deleted "C:\Users\gilbert\Downloads\mseinstall (1).exe" deleted "C:\Users\gilbert\Downloads\revosetup (1).exe" deleted "C:\Users\gilbert\Downloads\jre-7u25-windows-i586.exe" deleted "C:\Windows\Installer\17c1ac.msi" deleted "C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}" deleted "C:\Program Files (x86)\Common Files\Java" deleted "C:\Program Files (x86)\Java" deleted ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" ==== All HKCU SearchScopes ======================
  9. gilbert D
    ziehier de resultaten van zoek.zip. Zoek.exe Version 4.0.0.4 Updated 31-08-2013 Tool run by gilbert on za 07/09/2013 at 10:18:37,23. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\gilbert\Downloads\zoek\zoek.exe [Quick Scan] [Auto Clean] ==== System Restore Info ====================== 7/09/2013 10:20:15 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== "C:\Users\gilbert\Downloads\DeviceDoctor_Bundle.exe.exe" deleted "C:\Windows\WININIT.INI" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\bin" deleted "C:\Program Files (x86)\UtilityChest_49EI" deleted "C:\found.000" deleted "C:\Windows\SysWow64\AI_RecycleBin" deleted "C:\Windows\SysWow64\searchplugins" deleted "C:\Windows\SysWow64\Extensions" deleted "C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\gilbert\AppData\Local\Temp ==== 2013-09-02 13:22:29 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Users\gilbert\AppData\Local\Temp\ESGScanner.sys 2013-09-02 13:20:13 9FF765D961D3C51E709781AA4061C5BB 46974032 ----a-w- C:\Users\gilbert\AppData\Local\Temp\SHSetup.exe 2013-09-01 08:42:56 681A102F479ED965D006B5E825884A66 339536 ----a-w- C:\Users\gilbert\AppData\Local\Temp\uninst1.exe 2013-09-01 07:13:52 B3FDF6E7B0AECD48CA7E4921773FB606 1110476 ----a-w- C:\Users\gilbert\AppData\Local\Temp\7z920.exe 2013-09-01 07:13:42 2F5252E50745E47DB355B005725DAE05 327880 ----a-w- C:\Users\gilbert\AppData\Local\Temp\appshat-distribution.exe 2013-09-01 07:13:35 8BB2BB2C1388BE77698B9A1F10A6FDE1 18501 ----a-w- C:\Users\gilbert\AppData\Local\Temp\LollipopInstaller_somoto_14693.exe 2013-09-01 07:13:28 CBED1C0E05E21DD1B6FD1995F7E50D34 797608 ----a-w- C:\Users\gilbert\AppData\Local\Temp\BabylonTB.exe 2013-09-01 07:13:20 83087F025194693DFF3A0F22E6A4AE96 196376 ----a-w- C:\Users\gilbert\AppData\Local\Temp\UpdateCheckerSetup.exe ====== C:\Windows\SysWOW64 ===== 2013-09-01 07:28:45 351D111CD5C5479946EB724DBBB1275E 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-08-31 07:03:10 B365860210422E195238A3937949A2A3 524288 --sha-w- C:\Windows\SysWOW64\5-18{cdf10b28-1207-11e3-8074-6c626d8c25bf}.TMContainer00000000000000000001.regtrans-ms 2013-08-31 07:03:10 59071590099D21DD439896592338BF95 524288 --sha-w- C:\Windows\SysWOW64\5-18{cdf10b28-1207-11e3-8074-6c626d8c25bf}.TMContainer00000000000000000002.regtrans-ms 2013-08-31 07:03:10 13EB6BE02EDEEBDF980F9C1EEA631A85 65536 --sha-w- C:\Windows\SysWOW64\5-18{cdf10b28-1207-11e3-8074-6c626d8c25bf}.TM.blf ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== 2013-08-31 08:20:26 0BB97D43299910CBFBA59C461B99B910 25928 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys 2013-08-14 07:54:39 4CE278FC9671BA81A138D70823FCAA09 39936 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys 2013-08-14 07:54:37 DB74544B75566C974815E79A62433F29 1910208 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-09-05 13:21:52 -------- d-----w- C:\Program Files\trend micro 2013-09-02 13:22:23 -------- d-----w- C:\Program Files\Enigma Software Group 2013-08-30 19:23:11 -------- d-----w- C:\Program Files\SUPERAntiSpyware 2013-08-28 11:54:13 -------- d-----w- C:\Program Files\GIMP 2 ======= C:\Program Files (x86) ===== 2013-09-02 13:20:58 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard 2013-09-01 07:45:13 -------- d-----w- C:\Program Files (x86)\VS Revo Group 2013-08-16 15:44:24 -------- d-----w- C:\Program Files (x86)\DVDVideoSoft 2013-08-16 15:44:24 -------- d-----w- C:\Program Files (x86)\Common Files\DVDVideoSoft 2013-08-14 15:26:19 -------- d-----w- C:\Program Files (x86)\CDBurnerXP ======= C: ===== ====== C:\Users\gilbert\AppData\Roaming ====== 2013-08-30 19:23:26 -------- d-----w- C:\users\gilbert\AppData\Roaming\SUPERAntiSpyware.com 2013-08-29 07:58:22 BD7721C1F10E94FC5500DDC181A53B2A 1517 ----a-w- C:\users\gilbert\AppData\Local\recently-used.xbel 2013-08-29 07:55:20 -------- d-----w- C:\users\gilbert\AppData\Local\gtk-2.0 2013-08-29 07:45:49 -------- d-----w- C:\users\gilbert\AppData\Local\gegl-0.2 2013-08-25 07:54:23 -------- d-----w- C:\users\gilbert\AppData\Roaming\Visan 2013-08-16 15:44:24 -------- d-----w- C:\users\gilbert\AppData\Roaming\DVDVideoSoft 2013-08-14 15:27:27 -------- d-----w- C:\users\gilbert\AppData\Roaming\Canneverbe Limited 2013-08-09 14:07:28 B3881D2941CF985AAC9A710D83D51EA4 4608 ----a-w- C:\users\gilbert\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ====== C:\Users\gilbert ====== 2013-09-05 18:14:41 323B4AD6F1374F3621ABF748307E3287 1037222 ----a-w- C:\Users\gilbert\Downloads\adwcleaner (1).exe 2013-09-05 17:57:42 323B4AD6F1374F3621ABF748307E3287 1037222 ----a-w- C:\Users\gilbert\Downloads\adwcleaner.exe 2013-09-02 13:19:46 29702C25639B549AC5221E546545D56B 728960 ----a-w- C:\Users\gilbert\Downloads\SpyHunter-Installer.exe 2013-09-02 07:00:05 49E73BA0664838DBA942995B66C9421C 13834944 ----a-w- C:\Users\gilbert\Downloads\mseinstall (1).exe 2013-09-02 06:58:50 77B78E39B2894B8C5BA43C5651AEDF96 11260760 ----a-w- C:\Users\gilbert\Downloads\mseinstall.exe 2013-09-01 08:54:00 096C3277599629BD22AF6959D20774B9 4454952 ----a-w- C:\Users\gilbert\Downloads\ccsetup405.exe 2013-09-01 07:44:32 4F99CAE27FFD46712E65C21444AACDFC 2623656 ----a-w- C:\Users\gilbert\Downloads\revosetup (1).exe 2013-09-01 07:42:38 4F99CAE27FFD46712E65C21444AACDFC 2623656 ----a-w- C:\Users\gilbert\Downloads\revosetup.exe 2013-09-01 07:25:28 507C7F50A1D3B50AB9C015180B626D33 31714216 ----a-w- C:\Users\gilbert\Downloads\jre-7u25-windows-i586.exe 2013-09-01 07:12:10 92A711DD1EEF7575551C476D13569E03 166496 ----a-w- C:\Users\gilbert\Downloads\7ZipSetup.exe 2013-08-31 08:18:50 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\gilbert\Downloads\mbam-setup-1.75.0.1300.exe 2013-08-30 19:23:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware 2013-08-30 19:23:11 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com 2013-08-30 19:22:22 1A92BCC0AA2EDDDACA452EC0EF69CBAE 27343000 ----a-w- C:\Users\gilbert\Downloads\SUPERAntiSpyware.exe 2013-08-30 18:49:01 10F4163F0EDDC031100180787D5F696F 347424 ----a-w- C:\Users\gilbert\Downloads\MicrosoftFixit.Performance.LB.63301318998968845.1.1.Run.exe 2013-08-29 07:54:16 -------- d-----w- C:\Users\gilbert\.thumbnails 2013-08-29 07:45:49 -------- d-----w- C:\Users\gilbert\.gimp-2.8 2013-08-29 07:41:45 C0E253C5C4124C8B881CA44828839F5E 90139696 ----a-w- C:\Users\gilbert\Downloads\gimp-2.8.6-setup.exe 2013-08-16 15:45:10 -------- d-sh--w- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} 2013-08-16 15:44:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft 2013-08-14 15:27:30 -------- d-----w- C:\ProgramData\Canneverbe Limited ====== C: exe-files == 2013-09-06 08:39:32 A8A699CCE1291FAA9713FA2AE026D5A1 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-112887894-139444086-3273416751-1000\$I3OSB2O.exe 2013-09-06 08:39:14 809466C382A3FA069CDFC6BD1394AF83 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-112887894-139444086-3273416751-1000\$IEJ9N9Y.exe 2013-09-06 08:39:04 B86D7A5F6E73461EC29F9C1203EEEB01 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-112887894-139444086-3273416751-1000\$IWBP13U.exe 2013-09-01 07:29:14 7766DD87973104E565647C09040F0EA1 263592 ----a-w- C:\$Recycle.Bin\S-1-5-21-112887894-139444086-3273416751-1000\$R3OSB2O.exe 2013-09-01 07:28:45 DE2E2F1370FFDAB7F307F895292A3B62 175016 ----a-w- C:\$Recycle.Bin\S-1-5-21-112887894-139444086-3273416751-1000\$REJ9N9Y.exe 2013-09-01 07:28:44 A1987D2842E598D20FD4D0453742EEDB 175016 ----a-w- C:\$Recycle.Bin\S-1-5-21-112887894-139444086-3273416751-1000\$RWBP13U.exe === C: other files == 2013-09-02 13:22:29 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Users\gilbert\AppData\Local\Temp\ESGScanner.sys 2013-08-31 09:14:56 E5248E06E152E62DC2523CC6C49A428E 1110478 ----a-w- C:\Users\gilbert\Downloads\ProcessMonitor.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-112887894-139444086-3273416751-1000\Software\Microsoft\Windows\CurrentVersion\Run] "HP Officejet 6700 (NET)"="C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe -scfn HP Officejet 6700 (NET) -AutoStart 1" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" @="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 /build:7601" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-21-112887894-139444086-3273416751-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\gilbert\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\gilbert\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 /build:7601" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "G Data AntiVirus Tray"="C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe" "GDFirewallTray"="C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe" "G Data ASM"="C:\Program Files (x86)\G Data\TotalProtection\DelayLoader\AutorunDelayLoader.exe /autostart" "HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe" "LWS"="H:\LWS\Webcam Software\LWS.exe -hide" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "HP Officejet 6700 (NET)"="C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe -scfn HP Officejet 6700 (NET) -AutoStart 1" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" @="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\gilbert\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\gilbert\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2013-09-06 14:05:10 1916 ----a-w- C:\users\gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Officejet 6700 (netwerk).lnk 2013-05-17 12:01:24 1229 ----a-w- C:\users\gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SharePort Plus.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [06/09/2013 19:52] C:\Windows\tasks\HP Photo Creations Communicator.job --a------ C:\ProgramData\HP Photo Creations\Communicator.exe [22/03/2011 12:11] C:\Windows\tasks\Wise Care 365.job --a------ C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [] C:\Windows\tasks\Wise Turbo Checker.job --a------ C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [] ==== Chrome Look ====================== Google Docs - gilbert - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - gilbert - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - gilbert - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - gilbert - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Card number - gilbert - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - gilbert - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" "Search Page"="Google" "Search Bar"="Upgrade to Google Chrome" "Default_Search_URL"="Upgrade to Google Chrome" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Start Page"="Google" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="%s - Google Search" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="Upgrade to Google Chrome" "Default_Search_URL"="Upgrade to Google Chrome" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="Bing" "Search Bar"="Bing" "Default_Search_URL"="Bing" "Start Page"="Google" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="%s - Bing" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="Bing" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{37FC7825-32C1-48E1-8C16-E6A22EBA4443}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found" {1F632A16-8EB6-74B3-9197-15519E7437E8} Unknown Url="Not_Found" {37FC7825-32C1-48E1-8C16-E6A22EBA4443} Google Url="{searchTerms} - Google Search" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-112887894-139444086-3273416751-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_USERS\S-1-5-21-112887894-139444086-3273416751-1000\Software\Microsoft\Internet Explorer\SearchScopes\{1F632A16-8EB6-74B3-9197-15519E7437E8} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\gilbert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\gilbert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\users\gilbert\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\gilbert\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on za 07/09/2013 at 10:32:16,47 ======================
  10. gilbert D
    heb zoek .zip nog niet uitgevoerd, had voor jou bericht gaan zoeken met msconfig in opstarten en zo een voor een opstartprogramma's uitgeschakeld daar stond ook nog java in heb deze ook uitgeschakeld en het probleem blijkt opgelost. raad u mij aan om alsnog zoek.zip uit te voeren? en is java een noodzakelijk programma voor de pc, want ik heb gemerkt dat mijn EI een 32 bit versie is dus java zal dat ook moeten zijn. dank u
  11. gilbert D
    Heb enkele zaken verwijderd zie hieronder het resultaat. sijsWOW64 blijft echter verschijnen, ik denk maar dat is mijn mening dat er een 32 bit programma ergens een conflict heeft bij de opstart het probleem is echter om te achterhalen welk programma. Results of screen317's Security Check version 0.99.73 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` G Data TotalProtection 2014 Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Java 7 Update 25 Adobe Reader XI ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe Malwarebytes' Anti-Malware mbamscheduler.exe G Data TotalProtection Firewall GDFwSvcx64.exe G Data TotalProtection Firewall GDFirewallTray.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 0% ````````````````````End of Log``````````````````````
  12. gilbert D
    dit zijn de resultaten na de Security Check Results of screen317's Security Check version 0.99.73 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` G Data TotalProtection 2014 Microsoft Security Essentials Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Java 7 Update 25 Adobe Reader XI Google Chrome 28.0.1500.95 Google Chrome 29.0.1547.62 ````````Process Check: objlist.exe by Laurent```````` Microsoft Security Essentials MSMpEng.exe Microsoft Security Essentials msseces.exe Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe Malwarebytes' Anti-Malware mbamscheduler.exe G Data TotalProtection Firewall GDFwSvcx64.exe G Data TotalProtection Firewall GDFirewallTray.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 0% ````````````````````End of Log``````````````````````
  13. gilbert D
    een groot deel van mijn probleem is hiermee al mee opgelost waarvoor mijn oprechte dank. wel blijft er bij de opstart nog een zwart scherm tussen welkom en bureaublad en het tabblad SysWAW64 blijf nog altijd verschijnen maar nu 7 maal in plaats van 1 maal. wat ik wel eigenaardig vind is dat ik in het begin van de week bericht kreeg van windows Essentials dat ik jafa moest verwijderen omdat het conflicten gaf, dat heb ik ook gedaan. nu merk ik dat jafa nog steeds aanwezig is in sys ik heb ook gemerkt dat er een bestand opstaat in het chinees of japanees ik heb geprobeerd om het te kopieeren maar dat lukt niet goed.
  14. gilbert D
    na de bewerking met AdwCleanener # AdwCleaner v3.002 - Report created 05/09/2013 at 20:00:20 # Updated 01/09/2013 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : gilbert - GILBERT-PC # Running from : C:\Users\gilbert\Downloads\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\apn Folder Deleted : C:\ProgramData\Ask Folder Deleted : C:\ProgramData\Babylon Folder Deleted : C:\ProgramData\simplitec Folder Deleted : C:\ProgramData\SweetIM Folder Deleted : C:\Program Files (x86)\MapsGalaxy_39EI Folder Deleted : C:\Program Files (x86)\SweetIM Folder Deleted : C:\Program Files (x86)\sweetpacks bundle uninstaller Folder Deleted : C:\Windows\SysWOW64\ARFC Folder Deleted : C:\Windows\SysWOW64\jmdp Folder Deleted : C:\Windows\SysWOW64\WNLT Folder Deleted : C:\Users\gilbert\AppData\Local\Babylon Folder Deleted : C:\Users\gilbert\AppData\Local\Discount Buddy Folder Deleted : C:\Users\gilbert\AppData\Local\FilesFrog Update Checker Folder Deleted : C:\Users\gilbert\AppData\Local\TempDir Folder Deleted : C:\Users\gilbert\AppData\LocalLow\iac Folder Deleted : C:\Users\gilbert\AppData\LocalLow\MapsGalaxy_39EI Folder Deleted : C:\Users\gilbert\AppData\LocalLow\Mysearchdial Folder Deleted : C:\Users\gilbert\AppData\Roaming\Babylon Folder Deleted : C:\Users\gilbert\AppData\Roaming\DefaultTab Folder Deleted : C:\Users\gilbert\AppData\Roaming\simplitec Folder Deleted : C:\Users\gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker File Deleted : C:\Windows\System32\dmwu.exe File Deleted : C:\Windows\System32\ImhxxpComm.dll File Deleted : C:\Users\gilbert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage File Deleted : C:\Windows\Tasks\Dealply.job File Deleted : C:\Windows\System32\Tasks\Dealply ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [sDP] Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1 Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1 Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SOFTWARE\Classes\sim-packages Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE69C007-C452-4D3E-86D2-1730DF8BC871} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A36BCB13-778D-4A40-99C1-D686086D268F} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CCA8F2AB-BE4E-41F0-A289-4D960CEA58EA} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8F0B76E1-4E46-427B-B55B-B90593468AC6} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE69C007-C452-4D3E-86D2-1730DF8BC871} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE69C007-C452-4D3E-86D2-1730DF8BC871} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F0B76E1-4E46-427B-B55B-B90593468AC6} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{FE69C007-C452-4D3E-86D2-1730DF8BC871} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\APN PIP Key Deleted : HKCU\Software\BabSolution Key Deleted : HKCU\Software\BI Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\ilivid Key Deleted : HKCU\Software\IM Key Deleted : HKCU\Software\ImInstaller Key Deleted : HKCU\Software\InstallCore Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\Somoto Key Deleted : HKCU\Software\WNLT Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider Key Deleted : HKLM\Software\Babylon Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\DataMngr Key Deleted : HKLM\Software\Default Tab Key Deleted : HKLM\Software\Discount Buddy Key Deleted : HKLM\Software\mysearchdial Key Deleted : HKLM\Software\PIP Key Deleted : HKLM\Software\SimilarSites Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SweetIM Bundle by SweetPacks Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer Key Deleted : [x64] HKLM\SOFTWARE\WNLT ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16660 Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [start Page] Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page] -\\ Google Chrome v29.0.1547.62 [ File : C:\Users\gilbert\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [7300 octets] - [05/09/2013 19:59:03] AdwCleaner[s0].txt - [6798 octets] - [05/09/2013 20:00:20] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [6858 octets] ##########
  15. gilbert D
    heb een scan uit gevoerd met RSIT.exe, en zihier het resultaat. Logfile of random's system information tool 1.09 (written by random/random) Run by gilbert at 2013-09-05 15:21:52 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 1241 GB (89%) free of 1389 GB Total RAM: 4023 MB (45% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:22:31, on 5/09/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16660) Boot mode: Normal Running processes: C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe C:\Users\gilbert\AppData\Local\FilesFrog Update Checker\update_checker.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe H:\LWS\Webcam Software\LWS.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe H:\LWS\Webcam Software\CameraHelperShell.exe C:\Program Files (x86)\Internet Explorer\IELowutil.exe C:\Program Files (x86)\Samsung\Kies\Kies.exe C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files\trend micro\gilbert.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Delta Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?ptr=100&crg=3.1010000.10039&barid={7EA41210-C064-11E2-A9C6-74F06D8D105D} R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - - (no file) F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL O4 - HKLM\..\Run: [G Data AntiVirus Tray] C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe O4 - HKLM\..\Run: [GDFirewallTray] C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe O4 - HKLM\..\Run: [G Data ASM] "C:\Program Files (x86)\G Data\TotalProtection\DelayLoader\AutorunDelayLoader.exe" /autostart O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [LWS] H:\LWS\Webcam Software\LWS.exe -hide O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [HP Officejet 6700 (NET)] "C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe" -deviceID "CN2CD9QH3W05RQ:NW" -scfn "HP Officejet 6700 (NET)" -AutoStart 1 O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKCU\..\Run: [sDP] C:\Users\gilbert\AppData\Local\FilesFrog Update Checker\update_checker.exe /auto O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O4 - HKCU\..\RunOnce: [uninstall C:\Users\gilbert\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\gilbert\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2" /build:7601 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2" /build:7601 (User 'Default user') O4 - Startup: Inktwaarschuwingen controleren - HP Officejet 6700 (netwerk).lnk = ? O4 - Startup: SharePort Plus.lnk = C:\Program Files\D-Link\SharePort Plus\SharePortPlus.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000 O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: G Data AntiVirus Proxy (AVKProxy) - G Data Software AG - C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe O23 - Service: G Data Scheduler (AVKService) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe O23 - Service: G Data Bestandssysteembewaker (AVKWCtl) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe O23 - Service: D-Link SharePort Plus Helper - Unknown owner - C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe O23 - Service: G Data Backup Service (GDBackupSvc) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe O23 - Service: G Data Personal Firewall (GDFwSvc) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe O23 - Service: G Data Scanner (GDScan) - G Data Software AG - C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe O23 - Service: G Data Tuner Service (GDTunerSvc) - G Data Software AG - C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TabletService - Unknown owner - C:\Windows\system32\Tablet.exe (file missing) O23 - Service: G Data Datasafeservice (TSNxGService) - G Data Software - C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) -- End of file - 10929 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe winlogon.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS "C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe" "c:\Program Files\Microsoft Security Client\MsMpEng.exe" "C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe" C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork /QuitInfo:0000000000000458;000000000000045C; /AddRef; "C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE" "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe" "C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe" "C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe" /service "C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe" "taskhost.exe" /QuitInfo:0000000000000478;000000000000047C; /AddRef; /QuitInfo:0000000000000194;0000000000000490; /loadhooks /Parent:0000000000000910 "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey "C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe" -deviceID "CN2CD9QH3W05RQ:NW" -scfn "HP Officejet 6700 (NET)" -AutoStart 1 "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" "C:\Users\gilbert\AppData\Local\FilesFrog Update Checker\update_checker.exe" /auto "C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Officejet 6700\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2CD9QH3W05RQ;CONNECTION=NW;MONITOR=1; "C:\Program Files\D-Link\SharePort Plus\SharePortPlus.exe" -s15 "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe" "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\Tablet.exe WTablet\TabUserW.exe Tablet.exe au "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray "C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe" "C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe" "C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe" "H:\LWS\Webcam Software\LWS.exe" -hide C:\Windows\System32\alg.exe "c:\Program Files\Microsoft Security Client\NisSrv.exe" "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe" "H:\LWS\Webcam Software\CameraHelperShell.exe" /hide C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\servicing\TrustedInstaller.exe C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-33946cdd-0480-4c8b-be80-3c8e9e9fb748 -SystemEventPortName:HostProcess-fef65b11-0aea-44e8-a6e9-2015c1b43e2a -IoCancelEventPortName:HostProcess-8f9159b1-71ec-4239-a6bf-b04c7d4f8464 -NonStateChangingEventPortName:HostProcess-46ca7fe1-c20c-4507-86b0-efd0081acb08 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b18444db-3993-419e-b93f-35386f1ba13c -DeviceGroupId:WpdFsGroup "C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GdBgInx64.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\wbem\wmiprvse.exe "C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe" "C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe" /DisableUI C:\Windows\system32\svchost.exe -k SDRSVC "C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding "C:\Program Files (x86)\Samsung\Kies\Kies.exe" /preload "C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" "C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" "C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE" "C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE" "C:\Program Files\Internet Explorer\iexplore.exe" Windows 7 Problemen met spyware of malwere "C:\Program Files\Internet Explorer\iexplore.exe" Windows 7 Problemen met spyware of malwere "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2576 CREDAT:267521 /prefetch:2 "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:6956 CREDAT:267521 /prefetch:2 C:\Windows\System32\vds.exe "C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe" -Embedding C:\Windows\system32\sppsvc.exe "C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE" "c:\Program Files\Microsoft Security Client\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 1098F720-F2B6-22B7-8771-AE6B7C167545 -Reinvoke taskeng.exe {2A5DB6F9-467F-4DF6-B339-A19DC1DB18CF} C:\Windows\system32\vssvc.exe C:\Windows\System32\svchost.exe -k swprv C:\Windows\splwow64.exe 8192 "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe8_ Global\UsGthrCtrlFltPipeMssGthrPipe8 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524 "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:6956 CREDAT:4134158 /prefetch:2 "C:\Users\gilbert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BIE7HA36\RSITx64.exe" "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-112887894-139444086-3273416751-10009_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-112887894-139444086-3273416751-10009 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" "C:\Program Files\HP\HP Officejet 6700\bin\HPNetworkCommunicator.exe" "C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe" ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\Dealply.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\HP Photo Creations Communicator.job C:\Windows\tasks\Wise Care 365.job C:\Windows\tasks\Wise Turbo Checker.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL [2012-08-16 6670496] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2010-12-21 689040] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-07-18 1356240] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "HP Officejet 6700 (NET)"=C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe [2011-09-09 2676584] "SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-08-15 6581488] "SDP"=C:\Users\gilbert\AppData\Local\FilesFrog Update Checker\update_checker.exe [2013-01-31 201808] ""=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2013-06-05 844168] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\gilbert\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"=C:\Windows\system32\cmd.exe [2010-11-20 345088] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "G Data AntiVirus Tray"=C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe [2013-03-22 1444304] "GDFirewallTray"=C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe [2013-03-22 1854928] "G Data ASM"=C:\Program Files (x86)\G Data\TotalProtection\DelayLoader\AutorunDelayLoader.exe [2013-02-25 472016] "HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2011-03-24 49208] "LWS"=H:\LWS\Webcam Software\LWS.exe [2012-09-13 204136] "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816] C:\Users\gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Inktwaarschuwingen controleren - HP Officejet 6700 (netwerk).lnk - C:\Windows\system32\RunDll32.exe SharePort Plus.lnk - C:\Program Files\D-Link\SharePort Plus\SharePortPlus.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL [2012-08-16 6670496] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=221 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=lvcod64.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "MSVideo"=vfwwdm32.dll "MSVideo8"=VfWWDM32.dll "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-09-05 15:21:52 ----D---- C:\rsit 2013-09-05 15:21:52 ----D---- C:\Program Files\trend micro 2013-09-02 15:22:23 ----D---- C:\Program Files\Enigma Software Group 2013-09-02 15:21:01 ----D---- C:\Windows\86CA3695A4124BAE92B649A60C2AC663.TMP 2013-09-02 14:15:05 ----A---- C:\Windows\ntbtlog.txt 2013-09-02 09:01:07 ----D---- C:\Program Files (x86)\Microsoft Security Client 2013-09-02 09:00:58 ----D---- C:\Program Files\Microsoft Security Client 2013-09-01 10:55:03 ----D---- C:\Program Files\CCleaner 2013-09-01 09:45:13 ----D---- C:\Program Files (x86)\VS Revo Group 2013-09-01 09:29:14 ----A---- C:\Windows\SYSWOW64\javaws.exe 2013-09-01 09:28:45 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll 2013-09-01 09:28:45 ----A---- C:\Windows\SYSWOW64\javaw.exe 2013-09-01 09:28:44 ----A---- C:\Windows\SYSWOW64\java.exe 2013-09-01 09:27:49 ----D---- C:\Program Files (x86)\Java 2013-09-01 09:13:36 ----D---- C:\Users\gilbert\AppData\Roaming\Babylon 2013-08-31 10:20:49 ----D---- C:\Users\gilbert\AppData\Roaming\Malwarebytes 2013-08-31 10:20:30 ----D---- C:\ProgramData\Malwarebytes 2013-08-31 10:20:26 ----A---- C:\Windows\system32\drivers\mbam.sys 2013-08-31 10:20:25 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-08-30 21:23:26 ----D---- C:\Users\gilbert\AppData\Roaming\SUPERAntiSpyware.com 2013-08-30 21:23:11 ----D---- C:\ProgramData\SUPERAntiSpyware.com 2013-08-30 21:23:11 ----D---- C:\Program Files\SUPERAntiSpyware 2013-08-28 13:54:13 ----D---- C:\Program Files\GIMP 2 2013-08-25 09:54:23 ----D---- C:\Users\gilbert\AppData\Roaming\Visan 2013-08-16 17:45:10 ----SHD---- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} 2013-08-16 17:44:24 ----D---- C:\Users\gilbert\AppData\Roaming\DVDVideoSoft 2013-08-16 17:44:24 ----D---- C:\Program Files (x86)\DVDVideoSoft 2013-08-14 17:27:30 ----D---- C:\ProgramData\Canneverbe Limited 2013-08-14 17:27:27 ----D---- C:\Users\gilbert\AppData\Roaming\Canneverbe Limited 2013-08-14 17:26:19 ----D---- C:\Program Files (x86)\CDBurnerXP 2013-08-14 16:24:06 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-08-14 16:24:06 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2013-08-14 16:24:06 ----A---- C:\Windows\system32\ieui.dll 2013-08-14 16:24:05 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe 2013-08-14 16:24:05 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2013-08-14 16:24:05 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-08-14 16:24:05 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2013-08-14 16:24:05 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-08-14 16:24:05 ----A---- C:\Windows\system32\iesysprep.dll 2013-08-14 16:24:05 ----A---- C:\Windows\system32\iesetup.dll 2013-08-14 16:24:05 ----A---- C:\Windows\system32\iertutil.dll 2013-08-14 16:24:05 ----A---- C:\Windows\system32\iernonce.dll 2013-08-14 16:24:05 ----A---- C:\Windows\system32\ie4uinit.exe 2013-08-14 16:24:04 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-08-14 16:24:04 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-08-14 16:24:04 ----A---- C:\Windows\system32\msfeeds.dll 2013-08-14 16:24:04 ----A---- C:\Windows\system32\jscript9.dll 2013-08-14 16:24:04 ----A---- C:\Windows\system32\jscript.dll 2013-08-14 16:24:03 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-08-14 16:24:03 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-08-14 16:24:03 ----A---- C:\Windows\system32\urlmon.dll 2013-08-14 16:24:02 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-08-14 16:24:02 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-08-14 16:24:02 ----A---- C:\Windows\system32\jsproxy.dll 2013-08-14 16:24:01 ----A---- C:\Windows\system32\wininet.dll 2013-08-14 16:24:00 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-08-14 16:23:59 ----A---- C:\Windows\system32\ieframe.dll 2013-08-14 16:23:58 ----A---- C:\Windows\system32\mshtml.dll 2013-08-14 16:23:57 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-08-14 16:17:37 ----D---- C:\Windows\system32\MRT 2013-08-14 09:55:21 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2013-08-14 09:55:21 ----A---- C:\Windows\system32\wintrust.dll 2013-08-14 09:55:21 ----A---- C:\Windows\system32\crypt32.dll 2013-08-14 09:55:20 ----A---- C:\Windows\SYSWOW64\wintrust.dll 2013-08-14 09:55:20 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll 2013-08-14 09:55:20 ----A---- C:\Windows\SYSWOW64\cryptnet.dll 2013-08-14 09:55:20 ----A---- C:\Windows\system32\cryptsvc.dll 2013-08-14 09:55:20 ----A---- C:\Windows\system32\cryptnet.dll 2013-08-14 09:55:07 ----A---- C:\Windows\SYSWOW64\tzres.dll 2013-08-14 09:55:07 ----A---- C:\Windows\system32\tzres.dll 2013-08-14 09:55:03 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL 2013-08-14 09:55:03 ----A---- C:\Windows\system32\WMVDECOD.DLL 2013-08-14 09:54:55 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll 2013-08-14 09:54:55 ----A---- C:\Windows\system32\rpcrt4.dll 2013-08-14 09:54:44 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2013-08-14 09:54:43 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2013-08-14 09:54:43 ----A---- C:\Windows\SYSWOW64\ntdll.dll 2013-08-14 09:54:43 ----A---- C:\Windows\system32\wow64.dll 2013-08-14 09:54:43 ----A---- C:\Windows\system32\ntoskrnl.exe 2013-08-14 09:54:43 ----A---- C:\Windows\system32\ntdll.dll 2013-08-14 09:54:42 ----A---- C:\Windows\SYSWOW64\wow32.dll 2013-08-14 09:54:42 ----A---- C:\Windows\SYSWOW64\user.exe 2013-08-14 09:54:42 ----A---- C:\Windows\SYSWOW64\setup16.exe 2013-08-14 09:54:42 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2013-08-14 09:54:42 ----A---- C:\Windows\SYSWOW64\instnm.exe 2013-08-14 09:54:39 ----A---- C:\Windows\system32\drivers\tssecsrv.sys 2013-08-14 09:54:37 ----A---- C:\Windows\system32\drivers\tcpip.sys ======List of files/folders modified in the last 1 month====== 2013-09-05 15:22:15 ----D---- C:\Windows\Temp 2013-09-05 15:21:52 ----RD---- C:\Program Files 2013-09-05 15:20:52 ----SHD---- C:\System Volume Information 2013-09-05 15:09:49 ----D---- C:\Windows\system32\config 2013-09-05 15:09:20 ----D---- C:\Users\gilbert\AppData\Roaming\WTablet 2013-09-05 00:08:12 ----D---- C:\Windows\Tasks 2013-09-05 00:08:12 ----D---- C:\Windows\system32\wfp 2013-09-05 00:08:12 ----D---- C:\Windows\system32\Tasks 2013-09-05 00:08:12 ----D---- C:\Windows\system32\DriverStore 2013-09-05 00:08:12 ----D---- C:\Windows\system32\drivers\etc 2013-09-05 00:08:12 ----D---- C:\Windows\System32 2013-09-05 00:08:12 ----D---- C:\Windows 2013-09-05 00:08:11 ----D---- C:\Windows\system32\CodeIntegrity 2013-09-05 00:08:04 ----D---- C:\Windows\system32\catroot2 2013-09-05 00:08:04 ----D---- C:\Windows\rescache 2013-09-05 00:08:04 ----D---- C:\Windows\inf 2013-09-05 00:07:48 ----D---- C:\Windows\registration 2013-09-05 00:07:45 ----D---- C:\Windows\system32\drivers 2013-09-05 00:07:40 ----D---- C:\Windows\Microsoft.NET 2013-09-05 00:07:38 ----RSD---- C:\Windows\assembly 2013-09-04 15:15:42 ----D---- C:\Windows\Prefetch 2013-09-03 16:58:45 ----SHD---- C:\Windows\Installer 2013-09-03 16:58:36 ----SHD---- C:\Config.Msi 2013-09-02 15:20:58 ----D---- C:\Program Files (x86)\Common Files 2013-09-02 15:06:49 ----RD---- C:\Program Files (x86) 2013-09-02 14:57:20 ----HD---- C:\ProgramData 2013-09-02 14:00:10 ----D---- C:\Windows\winsxs 2013-09-02 13:56:22 ----D---- C:\Program Files\Windows Media Player 2013-09-02 13:56:21 ----D---- C:\Windows\SYSWOW64\nl-NL 2013-09-02 13:56:20 ----D---- C:\Windows\SYSWOW64\wbem 2013-09-02 13:56:20 ----D---- C:\Windows\SysWOW64 2013-09-02 13:56:20 ----D---- C:\Windows\system32\wbem 2013-09-02 13:56:20 ----D---- C:\Windows\system32\nl-NL 2013-09-02 13:56:20 ----D---- C:\Windows\PolicyDefinitions 2013-09-02 09:01:12 ----D---- C:\Windows\system32\catroot 2013-09-02 09:01:07 ----SD---- C:\ProgramData\Microsoft 2013-09-01 11:45:53 ----D---- C:\Program Files (x86)\Microsoft 2013-09-01 10:59:50 ----D---- C:\Windows\Panther 2013-09-01 10:59:49 ----D---- C:\Windows\Logs 2013-09-01 10:59:49 ----D---- C:\Windows\debug 2013-09-01 10:26:02 ----D---- C:\Program Files\Common Files\Microsoft Shared 2013-09-01 10:23:55 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2013-09-01 10:20:00 ----DC---- C:\Windows\system32\DRVSTORE 2013-09-01 09:28:16 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll 2013-09-01 09:28:15 ----A---- C:\Windows\SYSWOW64\deployJava1.dll 2013-08-31 09:54:17 ----D---- C:\ProgramData\Skype 2013-08-31 09:54:03 ----D---- C:\Users\gilbert\AppData\Roaming\Skype 2013-08-31 09:10:05 ----SHD---- C:\#GDATA.Trash.Store# 2013-08-29 10:08:27 ----D---- C:\ProgramData\Microsoft Help 2013-08-29 09:20:59 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2013-08-29 08:28:23 ----D---- C:\Windows\SYSWOW64\Macromed 2013-08-29 08:28:22 ----D---- C:\Windows\system32\Macromed 2013-08-29 08:28:08 ----D---- C:\ProgramData\HP Photo Creations 2013-08-29 08:28:07 ----D---- C:\Program Files (x86)\HP Photo Creations 2013-08-29 08:27:10 ----D---- C:\ProgramData\Visan 2013-08-29 08:26:58 ----RHD---- C:\MSOCache 2013-08-15 10:18:15 ----D---- C:\Firefox 2013-08-14 17:05:55 ----D---- C:\Program Files\Internet Explorer 2013-08-14 17:05:55 ----D---- C:\Program Files (x86)\Internet Explorer 2013-08-14 17:05:53 ----D---- C:\Windows\AppPatch 2013-08-14 16:21:57 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-08-14 16:17:31 ----A---- C:\Windows\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 GDBehave;GDBehave; C:\Windows\system32\drivers\GDBehave.sys [2013-06-16 60248] R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-06-18 247216] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R0 TS4NT;TS4nt driver; C:\Windows\System32\Drivers\TS4nt.sys [2013-06-16 98760] R1 gddcv;G Data DCV Driver; \??\C:\Windows\system32\drivers\gddcv64.sys [2013-06-16 58712] R1 GDMnIcpt;GDMnIcpt; \??\C:\Windows\system32\drivers\MiniIcpt.sys [2013-06-16 130392] R1 gdwfpcd;G Data WFP CD; C:\Windows\system32\drivers\gdwfpcd64.sys [2013-06-16 64856] R1 GRD;G Data Rootkit Detector Driver; \??\C:\Windows\system32\drivers\GRD.sys [2013-05-31 107128] R1 HookCentre;HookCentre; \??\C:\Windows\system32\drivers\HookCentre.sys [2013-06-16 65368] R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928] R1 SAS***IL;SAS***IL; \??\C:\Program Files\SUPERAntiSpyware\SAS***IL64.SYS [2011-07-12 12368] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-06-18 139616] R2 sxuptp;SXUPTP Driver; C:\Windows\system32\DRIVERS\sxuptp.sys [2011-03-24 301128] R3 A38CCID;CCID USB Smart Card Reader; C:\Windows\system32\DRIVERS\a38ccid.sys [2013-01-30 46720] R3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2013-05-21 84808] R3 gddcd;G Data DCD Driver; \??\C:\Windows\system32\drivers\gddcd64.sys [2013-06-16 77656] R3 GDPkIcpt;GDPkIcpt; \??\C:\Windows\system32\drivers\PktIcpt.sys [2013-05-31 62808] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2000-01-01 4065296] R3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-09-21 351520] R3 LVUVC64;Logitech HD Webcam C270(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-09-21 4763680] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 25928] R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-04-27 83080] R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-04-27 184968] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-05-31 333928] R3 SMA_USBBUS;SMA USB Serial Converter; C:\Windows\system32\drivers\ftdibus.sys [2013-05-21 69320] R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288] R3 wacommousefilter;Wacom Mouse Filter Driver; C:\Windows\system32\DRIVERS\wacommousefilter.sys [2007-02-16 12848] R3 wacomvhid;Wacom Virtual Hid Driver; C:\Windows\system32\DRIVERS\wacomvhid.sys [2007-02-16 14640] R3 WacomVKHid;Virtual Keyboard Driver; C:\Windows\system32\DRIVERS\WacomVKHid.sys [2007-02-15 12976] S1 GLogin;GLogin; C:\Windows\system32\drivers\GLogin.sys [] S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [] S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2010-11-25 694888] S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2013-04-03 169288] S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2013-04-03 21320] S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2013-04-03 188232] S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2013-04-03 158024] S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2013-05-21 16152] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984] S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S3 WinUsb;WinUsb-stuurprogramma; C:\Windows\system32\drivers\WinUSB.sys [2010-11-20 41984] S3 WSDScan;Ondersteuning voor WSD-scan via UMB; C:\Windows\system32\DRIVERS\WSDScan.sys [2009-07-14 25088] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-05-23 143120] R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640] R2 AVKProxy;G Data AntiVirus Proxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2013-03-22 1957840] R2 AVKService;G Data Scheduler; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe [2013-02-25 635344] R2 AVKWCtl;G Data Bestandssysteembewaker; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe [2013-04-24 2556896] R2 D-Link SharePort Plus Helper;D-Link SharePort Plus Helper; C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe [2011-03-25 49152] R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2012-01-23 1858048] R2 GDBackupSvc;G Data Backup Service; C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe [2013-03-22 1944016] R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376] R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512] R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-07-18 23816] R2 TabletService;TabletService; C:\Windows\system32\Tablet.exe [2007-03-30 1574448] R3 GDFwSvc;G Data Personal Firewall; C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe [2013-03-22 2926672] R3 GDScan;G Data Scanner; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [2013-02-25 696808] R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2013-07-18 366600] R3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-06 116648] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-29 257416] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848] S3 GDTunerSvc;G Data Tuner Service; C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe [2013-02-25 1711568] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-06 116648] S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672] S3 TSNxGService;G Data Datasafeservice; C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe [2013-03-01 257512] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-05-13 1255736] -----------------EOF----------------- ik ben er niet wijzer op geworden maar ik hoop dat velen onder u dat wel zullen zijn dank bij voorbaat gilbert D
  16. gilbert D
    Kan iemand mij helpen, sinds enige tijd zit ik met een hacker probleem. Enkele tijd geleden kreeg ik steeds e-mails van onbekende bestemmelingen die naar mijn adres werden terug gestuurd. In het begin enkele maar op de duur werden het er tientallen mijn virusscanner vond en vind nog steeds geen enkele virus. Het werd zo erg dat mijn provider besloot om mijn e-mailadres eentijdje te blokkeren. Na een paar dagen kreeg ik een nieuw paswoord en voorlopig is alles opgelost, maar niet op mijn pc want daar vind ik de dader niet. Ik merk wel dat er wat draait in de achtergrond maar ik weet niet wat. Bij de opstart krijg ik tussen de welkom en het bureau blad nu telkens een 10 tal sec een zwart scherm. Op het einde van de opstart kom ik automatisch in het tablad SysWOW64 terecht Heb al malwarebytes en superantispyware op mijn pc losgelaten, maar niets helpt ik denk dat een van de schuldigen een taakbalk is in EI namelijk Delta Search, maar die krijg ik met geen stokken verwijderd. Heb reeds geprobeerd met regedit en dan in het register verwijderd, en dan terug opgestart, en raad eens het staat terug in het register. Heb dan en ik denk dat dit mijn laatste kans is Spyhunter 4 geïnstalleerd , die ontdekte bijna 300 objecten ik moet natuurlijk het programma kopen en dat is mij niet te veel maar zal het helpen en is 300 objecten verwijderen niet gevaarlijk. Wie kan mij raad geven. In ierder geval reeds dank voor jullie luisterend oor, want ik ben werkelijk ten einde raad. gilbert D
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.