De Windows Security Center-service kan niet worden gestart.

juisterr · 16 juli 2013

Download ComboFix van één van de onderstaande locaties naar het bureaublad.

Bleeping Computer

Info Spyware

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met ComboFix.exe

(hier of hier) kan je lezen hoe je de gebruikte beveiligingssoftware kunt uitschakelen.

Dubbelklik op "ComboFix" om de tool te starten, Windows Vista, 7 & 8 gebruikers zullen een melding krijgen van UAC (Gebruikersaccountbeheer), klik hier op Ja / yes.
Op een Windows XP computer zal ComboFix de "Recovery Console" installeren als deze nog niet aanwezig is. (Een actieve internet verbinding is dan een vereiste).
Klik in het venster bij het 'Installeren van de Recovery Console' op "Ok".
Klik in het info scherm op "Ja" als de Recovery Console met succes is geïnstalleerd.
Klik in het scherm van de disclaimer op "I Agree", de benodigde onderdelen worden nu uitgepakt en middels ERUNT wordt er een register back-up gemaakt.
Wanneer dit gereed is zal ComboFix vanzelf starten, in het blauwe scherm ziet u de voortgang van de systeemscan die wordt uitgevoerd.
Belangrijk! gebruik de computer tijdens de scan niet voor andere zaken.
Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden zoals bijvoorbeeld bij de aanwezigheid van een rootkit, dit is normaal.
Wanneer ComboFix gereed is, zal het een logbestand aanmaken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.

* Noot !!! Indien u één van de onderstaande meldingen krijgt na het gebruik van ComboFix herstart dan de computer.

Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.
Illegal operation attempted on a registry key that has been marked for deletion.

Gblue · 16 juli 2013

Ik ben even tot morgennacht aan zee, ik ga daarachter zeker direct kijken.

Gblue · 17 juli 2013

ComboFix 13-07-16.01 - Sascha 17/07/2013 20:48:27.1.2 - x64

Microsoft Windows 8 6.2.9200.0.1252.32.1043.18.5957.4419 [GMT 2:00]

Gestart vanuit: c:\users\Sascha\Downloads\ComboFix.exe

AV: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}

AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Nieuw herstelpunt werd aangemaakt

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\users\Sascha\AppData\Local\assembly\tmp

c:\windows\SysWow64\muzapp.exe

.

(((((((((((((((((((( Bestanden Gemaakt van 2013-06-17 to 2013-07-17 ))))))))))))))))))))))))))))))

.

2013-07-17 18:55 . 2013-07-17 18:55 -------- d-----w- c:\users\Default\AppData\Local\temp

2013-07-15 21:10 . 2013-07-15 21:10 -------- d-----w- c:\users\Sascha\AppData\Local\MetaGeek,_LLC

2013-07-15 21:10 . 2013-07-15 21:10 -------- d-----w- c:\users\Sascha\AppData\Local\IsolatedStorage

2013-07-15 21:10 . 2013-07-15 21:10 -------- d-sh--w- c:\users\Sascha\AppData\Local\ms-drivers

2013-07-15 21:10 . 2013-07-15 21:10 -------- d-----w- c:\program files (x86)\MetaGeek

2013-07-15 20:19 . 2013-07-15 20:20 -------- d-----w- c:\program files (x86)\PowerDataRecovery

2013-07-15 20:06 . 2013-07-16 05:53 -------- d-----w- c:\program files\Recuva

2013-07-14 20:02 . 2013-07-17 19:05 -------- d-----w- c:\users\Sascha\AppData\Local\Temp

2013-07-14 20:02 . 2013-07-14 19:55 24064 ----a-w- c:\windows\zoek-delete.exe

2013-07-14 14:22 . 2013-07-14 14:22 -------- d-----w- c:\programdata\Software Devices LLC

2013-07-14 14:22 . 2013-02-25 11:41 91584 ----a-w- c:\windows\system32\Spool\prtprocs\x64\cpwprint.dll

2013-07-14 14:21 . 2013-07-14 14:21 -------- d-----w- c:\program files\Software Devices LLC

2013-07-14 13:35 . 2013-07-14 13:35 388096 ----a-r- c:\users\Sascha\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2013-07-14 12:01 . 2013-07-14 12:01 -------- d-----w- c:\program files\Speccy

2013-07-14 09:21 . 2013-07-14 09:21 -------- d-----w- c:\users\Sascha\AppData\Local\Macromedia

2013-07-14 09:20 . 2013-07-14 09:20 -------- d-----w- c:\users\Sascha\AppData\Roaming\Malwarebytes

2013-07-14 09:20 . 2013-07-14 09:20 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2013-07-14 09:20 . 2013-07-14 09:20 -------- d-----w- c:\programdata\Malwarebytes

2013-07-14 09:20 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-07-13 22:13 . 2013-07-13 22:14 -------- d-----w- c:\program files\GIMP 2

2013-07-13 22:10 . 2013-07-13 22:10 -------- d-----w- c:\program files (x86)\GIMP 2

2013-07-13 21:52 . 2013-07-13 21:52 -------- d-----w- c:\users\Sascha\AppData\Local\Mozilla

2013-07-13 21:51 . 2013-07-13 21:51 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service

2013-07-13 09:22 . 2013-06-27 22:04 78200 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-07-13 09:22 . 2013-06-27 22:04 693112 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2013-07-13 08:54 . 2013-07-13 08:54 -------- d-----w- c:\program files\Microsoft Silverlight

2013-07-13 08:54 . 2013-07-13 08:54 -------- d-----w- c:\program files (x86)\Microsoft Silverlight

2013-07-12 20:24 . 2013-04-10 22:35 2035200 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkObj.dll

2013-07-12 20:24 . 2013-04-10 22:35 1617920 ----a-w- c:\program files\Windows Journal\NBDoc.DLL

2013-07-12 20:24 . 2013-04-10 22:35 1318912 ----a-w- c:\program files\Windows Journal\JNWDRV.dll

2013-07-12 20:24 . 2013-04-10 22:35 1306112 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll

2013-07-12 20:24 . 2013-04-10 22:35 1272320 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll

2013-07-12 20:24 . 2013-04-11 04:12 1029632 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Ink\journal.dll

2013-07-12 20:24 . 2013-04-11 04:12 1413632 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Ink\InkObj.dll

2013-07-12 20:23 . 2013-06-01 09:25 496640 ----a-w- c:\windows\SysWow64\qedit.dll

2013-07-12 20:23 . 2013-06-01 09:21 595968 ----a-w- c:\windows\system32\qedit.dll

2013-07-12 20:23 . 2013-05-30 23:14 4036096 ----a-w- c:\windows\system32\win32k.sys

2013-07-12 20:23 . 2013-04-11 22:30 1421312 ----a-w- c:\windows\SysWow64\DWrite.dll

2013-07-12 20:23 . 2013-04-11 22:22 1838080 ----a-w- c:\windows\system32\DWrite.dll

2013-07-12 20:23 . 2013-05-04 06:59 2842112 ----a-w- c:\windows\system32\WMVDECOD.DLL

2013-07-12 20:23 . 2013-05-04 04:57 2620928 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL

2013-07-10 11:38 . 2013-07-10 13:24 -------- d-----w- c:\users\Sascha\AppData\Roaming\vlc

2013-07-10 09:22 . 2013-07-10 09:22 -------- d-----w- C:\WEBCENTRE--GOED

2013-07-10 09:22 . 2013-07-10 09:22 -------- d-----w- C:\PACKAGES----

2013-07-10 09:22 . 2013-07-10 09:22 -------- d-----w- c:\programdata\Menu Start

2013-07-10 09:22 . 2013-07-10 09:22 -------- d-----w- C:\WEBCENTRE

2013-07-06 22:04 . 2013-07-06 22:04 -------- d-----w- c:\users\Sascha\AppData\Local\MusicPlayer

2013-07-05 12:34 . 2013-07-05 12:34 -------- d-----w- c:\program files (x86)\ISO to USB

2013-07-03 11:32 . 2013-07-03 11:32 -------- d-----w- c:\program files (x86)\HP Photo Creations

2013-07-03 11:32 . 2013-07-03 11:32 -------- d-----w- c:\programdata\HP Photo Creations

2013-07-03 11:32 . 2012-10-17 02:31 741480 ------w- c:\windows\system32\HPDiscoPMAF11.dll

2013-07-03 11:32 . 2013-07-03 11:32 -------- d-----w- c:\program files\HP

2013-07-03 11:29 . 2013-07-03 11:32 -------- d-----w- c:\program files (x86)\Hewlett-Packard

2013-07-03 11:08 . 2013-07-03 11:08 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin

2013-06-28 16:09 . 2013-06-28 16:09 -------- d-----w- c:\programdata\RzMaelstromVAD_1.1.41.1089

2013-06-28 16:07 . 2013-07-13 22:05 -------- d-----w- c:\program files (x86)\Razer

2013-06-28 16:06 . 2013-07-13 22:05 -------- d-----w- c:\programdata\Razer

2013-06-28 16:06 . 2013-06-28 20:36 -------- d-----w- c:\users\Sascha\AppData\Local\Razer

2013-06-26 22:46 . 2013-06-26 22:46 248632 ----a-w- c:\windows\system32\drivers\avgwfpa.sys

2013-06-26 21:21 . 2013-07-13 22:06 -------- d-----w- c:\program files (x86)\MyFree Codec

2013-06-26 21:17 . 2013-06-26 21:17 -------- d-----w- c:\program files (x86)\MarkAny

2013-06-26 21:16 . 2013-06-26 21:16 -------- d-----w- c:\users\Sascha\AppData\Local\Samsung

2013-06-26 21:15 . 2013-06-26 21:24 -------- d-----w- c:\users\Sascha\AppData\Roaming\Samsung

2013-06-26 15:01 . 2013-06-26 15:01 -------- d-----w- c:\program files (x86)\Microsoft

2013-06-26 15:01 . 2013-06-26 15:01 -------- d-----w- c:\programdata\Visan

2013-06-26 15:01 . 2013-07-10 16:25 -------- d-----w- c:\users\Sascha\AppData\Roaming\HpUpdate

2013-06-26 15:00 . 2013-07-03 11:32 -------- d-----w- c:\programdata\HP

2013-06-26 15:00 . 2013-07-03 11:32 -------- d-----w- c:\program files (x86)\HP

2013-06-26 15:00 . 2013-06-26 15:06 -------- d-----w- c:\users\Sascha\AppData\Local\HP

2013-06-20 19:35 . 2013-06-20 19:47 -------- d-----w- c:\program files (x86)\osu!

2013-06-20 19:28 . 2013-06-20 19:28 -------- d-----w- c:\users\Sascha\AppData\Roaming\Downloaded Installations

2013-06-19 11:25 . 2013-06-12 19:47 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-07-14 20:07 . 2013-03-30 11:16 78185248 ----a-w- c:\windows\system32\MRT.exe

2013-06-16 14:11 . 2013-06-16 14:11 144384 ----a-w- c:\windows\system32\tssdisai.dll

2013-06-16 09:17 . 2013-06-16 09:17 1177475 ----a-w- c:\windows\unins000.exe

2013-06-16 08:48 . 2013-06-16 08:48 466520 ----a-w- c:\windows\system32\wrap_oal.dll

2013-06-16 08:48 . 2013-06-16 08:48 445016 ----a-w- c:\windows\SysWow64\wrap_oal.dll

2013-06-16 08:48 . 2013-06-16 08:48 123480 ----a-w- c:\windows\system32\OpenAL32.dll

2013-06-16 08:48 . 2013-06-16 08:48 109144 ----a-w- c:\windows\SysWow64\OpenAL32.dll

2013-06-12 19:48 . 2013-04-04 10:23 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll

2013-06-12 19:48 . 2013-04-04 10:23 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll

2013-06-04 07:15 . 2013-06-04 07:15 103448 ----a-w- c:\windows\system32\drivers\ssudbus.sys

2013-06-04 07:15 . 2013-06-04 07:15 203672 ----a-w- c:\windows\system32\drivers\ssudmdm.sys

2013-05-30 23:24 . 2013-06-15 07:51 1257472 ----a-w- c:\windows\system32\kernel32.dll

2013-05-23 23:01 . 2013-06-15 07:51 1300992 ----a-w- c:\windows\system32\gdi32.dll

2013-05-23 22:27 . 2013-06-15 07:51 1022464 ----a-w- c:\windows\SysWow64\gdi32.dll

2013-05-17 15:27 . 2013-05-17 15:27 40696 ----a-w- c:\windows\system32\drivers\RzMaelstromVAD.sys

2013-05-17 15:25 . 2013-05-17 15:25 245248 ----a-w- c:\windows\system32\DriverInstallCACMD.exe

2013-05-17 15:25 . 2013-05-17 15:25 69120 ----a-w- c:\windows\system32\DriverInstallCA.dll

2013-05-15 22:37 . 2013-06-17 11:00 44032 ----a-w- c:\windows\SysWow64\UXInit.dll

2013-05-15 22:35 . 2013-06-17 10:59 53760 ----a-w- c:\windows\system32\UXInit.dll

2013-05-15 02:25 . 2013-06-15 07:51 888320 ----a-w- c:\windows\system32\autochk.exe

2013-05-15 02:25 . 2013-06-15 07:51 542208 ----a-w- c:\windows\system32\untfs.dll

2013-05-15 02:24 . 2013-06-15 07:51 793088 ----a-w- c:\windows\SysWow64\autochk.exe

2013-05-15 02:24 . 2013-06-15 07:51 482816 ----a-w- c:\windows\SysWow64\untfs.dll

2013-05-14 13:14 . 2013-06-17 10:59 2706432 ----a-w- c:\windows\system32\mshtml.tlb

2013-05-14 09:23 . 2013-06-17 10:59 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb

2013-05-09 11:11 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2013-05-08 17:53 . 2013-05-08 17:53 887800 ----a-r- c:\users\Sascha\AppData\Roaming\Microsoft\Installer\{FA6381E9-96D2-4F6F-866C-4D16E5986FF6}\TweetDeck.exe

2013-05-04 09:49 . 2013-05-04 09:49 8192 ----a-w- c:\windows\SysWow64\srvany.exe

2013-05-04 07:58 . 2013-06-15 07:51 120736 ----a-w- c:\windows\system32\AuthHost.exe

2013-05-04 07:45 . 2013-06-17 11:04 2233600 ----a-w- c:\windows\system32\drivers\tcpip.sys

2013-05-04 07:34 . 2013-06-15 07:51 446720 ----a-w- c:\windows\system32\drivers\USBHUB3.SYS

2013-05-04 07:34 . 2013-06-15 07:51 213248 ----a-w- c:\windows\system32\drivers\UCX01000.SYS

2013-05-04 07:34 . 2013-06-15 07:51 284416 ----a-w- c:\windows\system32\drivers\spaceport.sys

2013-05-04 07:30 . 2013-06-15 07:51 58312 ----a-w- c:\windows\system32\wuauclt.exe

2013-05-04 06:59 . 2013-06-15 07:51 39424 ----a-w- c:\windows\system32\wuapp.exe

2013-05-04 06:59 . 2013-06-15 07:51 1483776 ----a-w- c:\windows\system32\VSSVC.exe

2013-05-04 06:59 . 2013-06-15 07:51 812544 ----a-w- c:\windows\system32\Magnify.exe

2013-05-04 06:59 . 2013-06-15 07:51 251904 ----a-w- c:\windows\system32\WUSettingsProvider.dll

2013-05-04 06:59 . 2013-06-15 07:51 141824 ----a-w- c:\windows\system32\wuwebv.dll

2013-05-04 06:59 . 2013-06-15 07:51 98304 ----a-w- c:\windows\system32\wudriver.dll

2013-05-04 06:59 . 2013-06-15 07:51 3241472 ----a-w- c:\windows\system32\wuaueng.dll

2013-05-04 06:59 . 2013-06-15 07:51 760320 ----a-w- c:\windows\system32\wuapi.dll

2013-05-04 06:59 . 2013-06-15 07:51 1619968 ----a-w- c:\windows\system32\wucltux.dll

2013-05-04 06:59 . 2013-06-15 07:51 13644288 ----a-w- c:\windows\system32\Windows.UI.Xaml.dll

2013-05-04 06:58 . 2013-06-15 07:51 10116096 ----a-w- c:\windows\system32\twinui.dll

2013-05-04 06:58 . 2013-06-15 07:51 328192 ----a-w- c:\windows\system32\ubpm.dll

2013-05-04 06:58 . 2013-06-15 07:51 1332736 ----a-w- c:\windows\system32\sysmain.dll

2013-05-04 06:58 . 2013-06-15 07:51 173568 ----a-w- c:\windows\system32\storewuauth.dll

2013-05-04 06:58 . 2013-06-15 07:51 330240 ----a-w- c:\windows\system32\stobject.dll

2013-05-04 06:58 . 2013-06-15 07:51 93696 ----a-w- c:\windows\system32\psmsrv.dll

2013-05-04 06:58 . 2013-06-15 07:51 470528 ----a-w- c:\windows\system32\netprofmsvc.dll

2013-05-04 06:58 . 2013-06-15 07:51 151552 ----a-w- c:\windows\system32\netprofm.dll

2013-05-04 06:58 . 2013-06-15 07:51 169984 ----a-w- c:\windows\system32\netplwiz.dll

2013-05-04 06:57 . 2013-06-15 07:51 17408 ----a-w- c:\windows\system32\muifontsetup.dll

2013-05-04 06:57 . 2013-06-15 07:51 560640 ----a-w- c:\windows\system32\mfmp4srcsnk.dll

2013-05-04 06:57 . 2013-06-15 07:51 501760 ----a-w- c:\windows\system32\DevicePairing.dll

2013-05-04 06:57 . 2013-06-15 07:51 122368 ----a-w- c:\windows\system32\biwinrt.dll

2013-05-04 06:57 . 2013-06-15 07:51 179712 ----a-w- c:\windows\system32\bisrv.dll

2013-05-04 06:57 . 2013-06-15 07:51 2305024 ----a-w- c:\windows\system32\authui.dll

2013-05-04 06:57 . 2013-06-15 07:51 389120 ----a-w- c:\windows\system32\BCP47Langs.dll

2013-05-04 06:57 . 2013-06-15 07:51 1131520 ----a-w- c:\windows\system32\AppXDeploymentServer.dll

2013-05-04 06:57 . 2013-06-15 07:51 708096 ----a-w- c:\windows\system32\AppXDeploymentExtensions.dll

2013-05-04 06:56 . 2013-06-15 07:51 419840 ----a-w- c:\windows\system32\intl.cpl

2013-05-04 04:58 . 2013-06-15 07:51 34304 ----a-w- c:\windows\SysWow64\wuapp.exe

2013-05-04 04:58 . 2013-06-15 07:51 758784 ----a-w- c:\windows\SysWow64\Magnify.exe

2013-05-04 04:58 . 2013-06-15 07:51 125952 ----a-w- c:\windows\SysWow64\wuwebv.dll

2013-05-04 04:58 . 2013-06-15 07:51 83968 ----a-w- c:\windows\SysWow64\wudriver.dll

2013-05-04 04:58 . 2013-06-15 07:51 621056 ----a-w- c:\windows\SysWow64\wuapi.dll

2013-05-04 04:57 . 2013-06-15 07:51 10788864 ----a-w- c:\windows\SysWow64\Windows.UI.Xaml.dll

2013-05-04 04:57 . 2013-06-15 07:51 8857088 ----a-w- c:\windows\SysWow64\twinui.dll

2013-05-04 04:57 . 2013-06-15 07:51 247296 ----a-w- c:\windows\SysWow64\ubpm.dll

2013-05-04 04:57 . 2013-06-15 07:51 303616 ----a-w- c:\windows\SysWow64\stobject.dll

2013-05-04 04:57 . 2013-06-15 07:51 18432 ----a-w- c:\windows\SysWow64\npmproxy.dll

2013-05-04 04:57 . 2013-06-15 07:51 151040 ----a-w- c:\windows\SysWow64\netplwiz.dll

2013-05-04 04:57 . 2013-06-15 07:51 115712 ----a-w- c:\windows\SysWow64\netprofm.dll

2013-05-04 04:57 . 2013-06-15 07:51 14336 ----a-w- c:\windows\SysWow64\muifontsetup.dll

2013-05-04 04:56 . 2013-06-15 07:51 411136 ----a-w- c:\windows\SysWow64\mfmp4srcsnk.dll

2013-05-04 04:56 . 2013-06-15 07:51 449536 ----a-w- c:\windows\SysWow64\DevicePairing.dll

2013-05-04 04:56 . 2013-06-15 07:51 92160 ----a-w- c:\windows\SysWow64\biwinrt.dll

2013-05-04 04:56 . 2013-06-15 07:51 2035712 ----a-w- c:\windows\SysWow64\authui.dll

2013-05-04 04:56 . 2013-06-15 07:51 309760 ----a-w- c:\windows\SysWow64\BCP47Langs.dll

2013-05-04 04:55 . 2013-06-15 07:51 389632 ----a-w- c:\windows\SysWow64\intl.cpl

2013-05-04 04:51 . 2013-06-15 07:51 14848 ----a-w- c:\windows\system32\rars.rs

2013-05-04 04:48 . 2013-06-15 07:51 83968 ----a-w- c:\windows\system32\drivers\hidclass.sys

2013-05-04 04:48 . 2013-06-15 07:51 27648 ----a-w- c:\windows\system32\drivers\hidusb.sys

2013-05-04 04:47 . 2013-06-15 07:51 427520 ----a-w- c:\windows\system32\drivers\rdbss.sys

2013-05-04 04:10 . 2013-06-15 07:51 14848 ----a-w- c:\windows\SysWow64\rars.rs

2013-05-02 15:29 . 2013-03-28 17:07 278800 ------w- c:\windows\system32\MpSigStub.exe

2013-04-28 22:28 . 2013-06-17 10:59 915968 ----a-w- c:\windows\system32\uxtheme.dll

2013-04-27 05:20 . 2013-06-16 09:38 733184 ----a-w- c:\windows\system32\win32spl.dll

2013-04-23 23:13 . 2013-06-17 11:04 1013248 ----a-w- c:\windows\SysWow64\certutil.exe

2013-04-23 23:12 . 2013-06-17 11:04 1569792 ----a-w- c:\windows\SysWow64\crypt32.dll

2013-04-23 23:12 . 2013-06-17 11:04 109056 ----a-w- c:\windows\SysWow64\cryptnet.dll

2013-04-23 22:56 . 2013-06-17 11:04 1255936 ----a-w- c:\windows\system32\certutil.exe

2013-04-23 22:55 . 2013-06-17 11:04 68096 ----a-w- c:\windows\system32\cryptsvc.dll

2013-04-23 22:55 . 2013-06-17 11:04 141312 ----a-w- c:\windows\system32\cryptnet.dll

2013-04-23 22:55 . 2013-06-17 11:04 1889280 ----a-w- c:\windows\system32\crypt32.dll

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2013-04-04 22:12 130736 ----a-w- c:\users\Sascha\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2013-04-04 22:12 130736 ----a-w- c:\users\Sascha\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2013-04-04 22:12 130736 ----a-w- c:\users\Sascha\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Facebook Update"="c:\users\Sascha\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2013-03-29 138096]

"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2013-04-21 4288048]

"Spotify Web Helper"="c:\users\Sascha\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-06-23 1104384]

"KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2013-05-23 1561968]

"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-06-03 19604072]

"HP Photosmart 6520 series (NET)"="c:\program files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe" [2012-10-17 2573416]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"RadioController"="c:\program files (x86)\RadioController\RfBtnHelper.exe" [2012-12-19 111216]

"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]

"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2013-04-25 1075296]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]

"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2013-04-28 4408368]

"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2013-05-23 311152]

"Erazer MEDION"="c:\program files (x86)\Erazer\MEDION Gaming Mouse\Hid.exe" [2012-09-24 1507840]

"AllShareAgent"="c:\program files (x86)\Samsung\AllShare\AllShareAgent.exe" [2011-02-18 250768]

"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2011-10-28 49208]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"IsMyWinLockerReboot"="msiexec.exe" [2012-07-26 62976]

.

c:\users\Sascha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Inktwaarschuwingen controleren - HP Photosmart 6520 series (netwerk).lnk - c:\windows\system32\RunDll32.exe "c:\program files\HP\HP Photosmart 6520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3413534C05XP;CONNECTION=NW;MONITOR=1; [2012-7-26 51712]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\

Acer Backup Manager Tray.lnk - c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe -h -k [2012-11-2 624192]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"EnableUIADesktopToggle"= 0 (0x0)

"EnableCursorSuppression"= 1 (0x1)

"ConsentPromptBehaviorUser"= 3 (0x3)

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

.

R0 Avgboota;AVG Early Launch Anti-Malware Driver;c:\windows\system32\DRIVERS\avgboota.sys;c:\windows\SYSNATIVE\DRIVERS\avgboota.sys [x]

R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [x]

R2 KMService;KMService;c:\windows\system32\srvany.exe;c:\windows\SYSNATIVE\srvany.exe [x]

R2 SimpleSlideShowServer;SimpleSlideShowServer;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe [x]

R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]

R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe [x]

R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [x]

R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]

R3 DeviceFastLaneService;Device Fast-lane Service;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [x]

R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]

R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]

R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]

R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]

R3 RZMAELSTROMVADService;Razer Surround Audio Enhancer Service;c:\windows\system32\drivers\RzMaelstromVAD.sys;c:\windows\SYSNATIVE\drivers\RzMaelstromVAD.sys [x]

R3 SGIDGMS;MEDION Gaming Mouse;c:\windows\system32\drivers\SGIDGMS.sys;c:\windows\SYSNATIVE\drivers\SGIDGMS.sys [x]

R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]

R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]

R3 WSDScan;Ondersteuning voor WSD-scan;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]

R3 XENfiltv;XENfiltv;c:\windows\system32\drivers\XENfiltv.sys;c:\windows\SYSNATIVE\drivers\XENfiltv.sys [x]

S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]

S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]

S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]

S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]

S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]

S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]

S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]

S1 Avgwfpa;AVG Firewall Driver;c:\windows\system32\DRIVERS\avgwfpa.sys;c:\windows\SYSNATIVE\DRIVERS\avgwfpa.sys [x]

S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]

S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]

S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]

S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [x]

S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [x]

S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe [x]

S2 BrcmCardReader;Broadcom Card Reader Service;c:\program files\Broadcom\MemoryCard\BrcmCardReader.exe;c:\program files\Broadcom\MemoryCard\BrcmCardReader.exe [x]

S2 CCDMonitorService;CCDMonitorService;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [x]

S2 Cloud Print Service;Cloud Print for Windows Service;c:\program files\Software Devices LLC\Cloud Print for Windows\CloudPrintService.exe;c:\program files\Software Devices LLC\Cloud Print for Windows\CloudPrintService.exe [x]

S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]

S2 ETDService;Elan Service;c:\program files\Elantech\ETDService.exe;c:\program files\Elantech\ETDService.exe [x]

S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [x]

S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]

S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [x]

S2 NIHardwareService;NIHardwareService;c:\program files\Common Files\Native Instruments\Hardware\NIHardwareService.exe;c:\program files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [x]

S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [x]

S2 RfButtonDriverService;Dritek RF Button Command Service;c:\windows\RfBtnSvc64.exe;c:\windows\RfBtnSvc64.exe [x]

S2 SamsungAllShare;Samsung AllShare PC Service;c:\program files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe;c:\program files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe [x]

S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]

S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]

S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\System32\drivers\b57xdbd.sys;c:\windows\SYSNATIVE\drivers\b57xdbd.sys [x]

S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\System32\drivers\b57xdmp.sys;c:\windows\SYSNATIVE\drivers\b57xdmp.sys [x]

S3 bScsiMSa;bScsiMSa;c:\windows\System32\drivers\bScsiMSa.sys;c:\windows\SYSNATIVE\drivers\bScsiMSa.sys [x]

S3 bScsiSDa;bScsiSDa;c:\windows\System32\drivers\bScsiSDa.sys;c:\windows\SYSNATIVE\drivers\bScsiSDa.sys [x]

S3 ePowerSvc;ePower Service;c:\program files\Acer\Acer Power Management\ePowerSvc.exe;c:\program files\Acer\Acer Power Management\ePowerSvc.exe [x]

S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]

S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe;c:\program files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [x]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]

S3 NETwNe64;@oem9.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;c:\windows\system32\DRIVERS\NETwew00.sys;c:\windows\SYSNATIVE\DRIVERS\NETwew00.sys [x]

S3 Ps2Kb2Hid;PS/2 Keyboard to HID Driver;c:\windows\System32\drivers\aPs2Kb2Hid.sys;c:\windows\SYSNATIVE\drivers\aPs2Kb2Hid.sys [x]

.

Inhoud van de 'Gedeelde Taken' map

.

2013-07-17 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-14 09:21]

.

2013-07-14 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2238381935-3211259191-2922195587-1001Core.job

- c:\users\Sascha\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-29 16:42]

.

2013-07-17 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2238381935-3211259191-2922195587-1001UA.job

- c:\users\Sascha\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-29 16:42]

.

--------- X64 Entries -----------

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2013-04-04 22:12 164016 ----a-w- c:\users\Sascha\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2013-04-04 22:12 164016 ----a-w- c:\users\Sascha\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2013-04-04 22:12 164016 ----a-w- c:\users\Sascha\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]

@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]

2013-04-04 22:12 164016 ----a-w- c:\users\Sascha\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-10-23 171040]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-10-23 399392]

"Persistence"="c:\windows\system32\igfxpers.exe" [2012-10-23 441888]

"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184]

"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]

"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]

"Cloud Print Service Controller"="c:\program files\Software Devices LLC\Cloud Print for Windows\CloudPrintController.exe" [2013-07-11 848984]

.

------- Bijkomende Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://acer13.msn.com

mLocal Page = c:\windows\SysWOW64\blank.htm

IE: &Verzenden naar OneNote - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105

IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000

TCP: DhcpNameServer = 195.130.131.2 195.130.130.130 192.168.1.1

FF - ProfilePath - c:\users\Sascha\AppData\Roaming\Mozilla\Firefox\Profiles\a5sw9dkx.default\

FF - ExtSQL: 2013-07-14 13:02; ascsurfingprotection@iobit.com; c:\users\Sascha\AppData\Roaming\Mozilla\Firefox\Profiles\a5sw9dkx.default\extensions\ascsurfingprotection@iobit.com

FF - ExtSQL: 2013-07-14 23:10; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Sascha\AppData\Roaming\Mozilla\Firefox\Profiles\a5sw9dkx.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

FF - user.js: network.http.pipelining.maxrequests - 8

FF - user.js: network.http.request.max-start-delay - 0

FF - user.js: network.http.max-connections - 48

FF - user.js: network.http.max-connections-per-server - 16

FF - user.js: network.http.max-persistent-connections-per-proxy - 16

FF - user.js: network.http.max-persistent-connections-per-server - 8

FF - user.js: browser.turbo.enabled - true

FF - user.js: browser.display.show_image_placeholders - true

FF - user.js: browser.chrome.favicons - false

FF - user.js: browser.urlbar.autocomplete.enabled - true

FF - user.js: browser.cache.memory.capacity - 65536

FF - user.js: content.notify.ontimer - true

FF - user.js: content.interrupt.parsing - true

FF - user.js: content.max.tokenizing.time - 2250000

FF - user.js: content.switch.threshold - 750000

FF - user.js: plugin.expose_full_path - true

FF - user.js: ui.submenuDelay - 0

.

- - - - ORPHANS VERWIJDERD - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKCU-Run-AdobeBridge - (no file)

Wow6432Node-HKLM-Run-LManager - (no file)

Toolbar-Locked - (no file)

HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_USERS\.DefaultCsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Software\Microsoft\Internet Explorer\Approved Extensions]

@Denied: (2) (LocalSystem)

"{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}"=hex:51,66,7a,6c,4c,1d,38,12,26,bd,a8,

0a,e6,f4,22,0e,f1,4c,12,2a,bb,94,a4,70

"{D28C7E56-2CC6-415C-8727-D71334085926}"=hex:51,66,7a,6c,4c,1d,38,12,38,7d,9f,

d6,f4,62,32,04,f8,31,94,53,31,56,1d,32

"{72853161-30C5-4D22-B7F9-0BBC1D38A37E}"=hex:51,66,7a,6c,4c,1d,38,12,0f,32,96,

76,f7,7e,4c,08,c8,ef,48,fc,18,66,e7,6a

"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,

72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57

"{7DB2D5A0-7241-4E79-B68D-6309F01C5231}"=hex:51,66,7a,6c,4c,1d,38,12,ce,d6,a1,

79,73,3c,17,0b,c9,9b,20,49,f5,42,16,25

"{B164E929-A1B6-4A06-B104-2CD0E90A88FF}"=hex:51,66,7a,6c,4c,1d,38,12,47,ea,77,

b5,84,ef,68,0f,ce,12,6f,90,ec,54,cc,eb

"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0,

b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb

"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,

df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd

"{2A541AE1-5BF6-4665-A8A3-CFA9672E4291}"=hex:51,66,7a,6c,4c,1d,38,12,8f,19,47,

2e,c4,15,0b,03,d7,b5,8c,e9,62,70,06,85

.

[HKEY_USERS\.DefaultCsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]

@Denied: (2) (LocalSystem)

"Timestamp"=hex:49,cc,0c,4e,88,38,ce,01

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]

@="?????????????????? v1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]

@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]

@="?????????????????? v2"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]

@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]

@Denied: (A) (Everyone)

"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}]

@Denied: (A) (Everyone)

"Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]

"Key"="ActionsPane"

"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]

"Key"="ActionsPane3"

"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

@SACL=(02 0000)

.

------------------------ Andere Aktieve Processen ------------------------

.

c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe

c:\program files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe

c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

c:\program files (x86)\Launch Manager\LMutilps32.exe

c:\program files (x86)\Launch Manager\LManager.exe

c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe

c:\program files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe

c:\program files (x86)\AVG\AVG2013\avgcfgex.exe

.

**************************************************************************

.

Voltooingstijd: 2013-07-17 21:09:48 - machine werd herstart

ComboFix-quarantined-files.txt 2013-07-17 19:09

.

Pre-Run: 535 241 519 104 bytes free

Post-Run: 535 272 599 552 bytes free

.

- - End Of File - - 32CAA161819AE43B4ED2C5A08F9CFD4D

D41D8CD98F00B204E9800998ECF8427E

- - - Updated - - -

Het is blijkbaar in orde, maar ik wacht voor de zekerheid toch nog op jullie verdere aanwijzingen.

juisterr · 18 juli 2013

Ik zie er niks schokkends in.

Gblue · 19 juli 2013

Ja en ineens is het in orde na die scan.... Alleen kan ik Windows Firewall niet meer inschakelen, er komt: "Windows Firewall kan niet worden ingeschakeld."

juisterr · 19 juli 2013

Eerst maar eens even rommel ruimen.

Download Delfix by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.

Zet nu vinkjes voor de volgende items:

Activate UAC
Remove disinfection tools
Create registry backup
Purge System Restore
Reset system settings

Klik nu op "Run" en wacht geduldig tot de tool gereed is.

Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.

Download AdwCleaner by Xplode naar het bureaublad.

Sluit alle openstaande vensters.
Dubbelklik op AdwCleaner om hem te starten.
Klik vervolgens op Verwijderen.
Klik bij AdwCleaner – Informatie op OK
Klik bij AdwCleaner – Herstarten Noodzakelijk op OK

Dat tijdens de actie de snelkoppelingen verdwijnen, is normaal.

Nadat de PC opnieuw is opgestart, opent een logfile.

Post aansluitend de inhoud van dit log in je volgende bericht.

Gblue · 19 juli 2013

# AdwCleaner v2.306 - Verslag gemaakt op 19/07/2013 om 23:51:14

# Geactualiseerd op 19/07/2013 door Xplode

# Besturingssysteem : Windows 8 (64 bits)

# Gebruiker : Sascha - LAPTOP-SASCHA

# Opstarten Modus : Normale modus

# Gelanceerd vanaf : C:\Users\Sascha\Downloads\adwcleaner.exe

# Optie [Verwijderen]

***** [Diensten] *****

***** [Files / Mappen] *****

***** [Register] *****

Sleutel Verwijderd : HKCU\Software\Conduit

Sleutel Verwijderd : HKCU\Software\OCS

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\secman.DLL

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

***** [browsers] *****

-\\ Internet Explorer v10.0.9200.16537

[OK] Het register bevat geen enkele ongeoorloofde invoer.

-\\ Mozilla Firefox v22.0 (nl)

File : C:\Users\Sascha\AppData\Roaming\Mozilla\Firefox\Profiles\a5sw9dkx.default\prefs.js

C:\Users\Sascha\AppData\Roaming\Mozilla\Firefox\Profiles\a5sw9dkx.default\user.js ... Verwijderd !

[OK] De file bevat geen enkele ongeoorloofde invoer.

*************************

AdwCleaner[s1].txt - [1580 octets] - [19/07/2013 23:51:14]

########## EOF - C:\AdwCleaner[s1].txt - [1640 octets] ##########

juisterr · 20 juli 2013

Prima, nog ergens last van ?

Gblue · 21 juli 2013

Ja, Windows Firewall kan niet worden ingeschakeld, de rest is allemaal in orde Alvast bedankt, nu nog dat ene probleempje

Gblue · 24 juli 2013

Hallo?

Inloggen

De Windows Security Center-service kan niet worden gestart.

Aanbevolen berichten

Link naar reactie

Delen op andere sites

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Welkom op PC Helpforum

Leden statistieken

OVER ONS

SITEMAP

Belangrijke informatie