Zeer traag werkende laptop

[kape]

Download AdwCleaner by Xplode naar het bureaublad (verwijder eerst eventuele aanwezige oudere versies van deze tool op je PC, zodat je nu de meest recente database van AdwCleaner kan gebruiken).

Als de link naar AdwCleaner niet werkt, probeer dan deze link.

De download start automatisch na enkele seconden.

• Sluit alle openstaande vensters.
• Dubbelklik op AdwCleaner om hem te starten.
• Gebruikers van Windows Vista en later dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
• Klik op Scan (Engelse versie) of Scannen (Nederlandstalige versie)
• Mocht u gevonden items willen behouden, verwijder deze dan nu uit het lijstje.
• Klik vervolgens op Clean (Engelse versie) of Verwijderen (Nederlandstalige versie)
• Klik bij popup-scherm "AdwCleaner Herstart" op OK
  

Nadat de PC opnieuw is opgestart, opent meestal onmiddellijk een logfile van AdwCleaner.
Anders is het logfile hier terug te vinden C:\AdwCleaner\....

Logbestand plaatsen

• Voeg de logbestandjes met de naam AdwCleaner[s*].txt en AdwCleaner[C*].txt uit de map C:\AdwCleaner\... als bijlagen toe aan het volgende bericht. (*) staat voor een getal. Staan er meerdere, kies dan dit met het hoogste getal.
• Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
  

Meer informatie vind je in de handleiding.

[Colleke]

C:\AdwCleaner\AdwCleaner[C1].txt - [8138 bytes] - [22/04/2016 20:55:41]

C:\AdwCleaner\AdwCleaner[s1].txt - [9754 bytes] - [22/04/2016 20:48:58]

 

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [8284 bytes] ##########AdwCleanerC1.txt

[kweezie wabbit]

AdwCleaner heeft ook nog een boel rotzooi verwijderd.

 

Heb je ondertussen al iets gedaan om de laptop te "onstoffen"?

Kan je na de poetsbeurt een nieuw speccy logje plaatsen zodat we de temperaturen kunnen vergelijken.

[Colleke]

Nieuw speccy logje:

 

 http://speccy.piriform.com/results/nVcRtWuYWvxOModhnIwIjQV

[kweezie wabbit]

Ik zie dat je Ad-Aware van Lavasoft hebt geinstalleerd.

Waarom eigenlijk?

Je hebt toch als ESET Smart Security als beveiliging.

 

 

Heb je bij de Java update het aanbod voor Amazon uitgevinkt?

Indien niet, mag je onderstaande verwijderen via het configuratiescherm - programma's.

Amazon 1Button App  
Amazon Assistant

 

 

Bij de harde schijf zijn er enkele eigenschappen die een rare waarde weergeven.

Dat kan een aanwijzing zijn dat er iets fout loopt met de harde schijf.

Daarom gaan we de schijf eens testen.

 

Download HD Tune en sla het bestand op.

Installeer HD Tune en start deze na de installatie op.



Vervolgens ga je naar het tabblad Error Scan, selecteer de harde schijf die je wil controleren en druk op Start.

Je moet GEEN vinkje plaatsen bij Quick scan.

De controle kan een hele tijd in beslag nemen afhankelijk van de grootte van de te controleren harde schijf.

Wat is het resultaat van deze test?
Maak een afbeelding van het resultaat en sla deze op.

Ga dan naar de tab Benchmark en doe de test.
Maak ook van dat resultaat een afbeelding.
Voeg beide afbeeldingen als bijlage toe aan je volgend bericht.

[Colleke]

Antwoord op jou twee eerste vragen:

 

Vraag 1:

Ik heb alleen de dingen gedaan die je mij gevraagd heb. Ik ken niet zoveel van computers en ga zeker geen dingen downloaden op eigen houtje.

Ik ben naar de startknop geweest en Ad-Aware en Lavasoft laten zoeken, maar hij vindt dit niet terug. Ik vind het ook niet in de programma's. Raar!

 

Vraag 2:

Ik denk niet dat ik Amazon heb uitgevinkt. Maar ik vind die Amazon 1Button App en Amazon Assistent niet. 

Ik ben ook naar de startknop geweest en vind er niets van terug, behalve Java.

Waar kan ik dit precies vinden. Ik ben naar Configuratiescherm gegaan, daarna Programma's en dan Java aangeklikt, maar vind daar niets van terug.

 

Ik zie dat er nog een PandaPDFConverter staat (vroegere beveiliging). Mag ik dit wegdoen?

 

De harde schijf zal ik deze avond doen.

 

Alvast bedankt om mij te helpen.

[Colleke]

Zie ook vorig bericht ivm de twee eerste vragen die je mij stelde.

 

Test harde schijf:

 

 

Terwijl de test bezig was, kreeg ik de melding: Critical hard disk temperature die tot maximum 58°C gegaan is.

[kweezie wabbit]

Je zal toch nog iets moeten (laten) doen aan de koeling want de temperaturen zijn wel beter maar nog steeds aan de hoge kant.

Eventueel in een winkel binnenbrengen voor een "poetsbeurt" door een technieker.

 

De harde schijf zelf is wel ok op de hoge temperatuur na.

 

Die PandaPDFConverter mag je weg doen als je die niet gebruikt.

 

De Ad-Aware en Amazon gaan we ook nog proberen op te ruimen met behulp van zoek.exe

 

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

• Dubbelklik op Zoek.exe om de tool te starten.
• Gebruikers van Windows Vista en later dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

lavasoft;z
amazon;z
emptyfolderscheck;delete
installedprogs;
standardsearch;
autoclean;

• De optie "Scan All Users" staat standaard aangevinkt.
• Klik nu op de knop "Run script".
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
• Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
• Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

• Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
• Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

[Colleke]

Zoek.exe logbestand

 

Zoek.exe v5.0.0.1 Updated 31-December-2015

Tool run by Geert on ma 25/04/2016 at 12:04:40,56.

Microsoft® Windows Vista™ Home Basic  6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Geert\Downloads\zoek.exe [scan all users] [script inserted] 

 

==== Older Logs ======================

 

C:\zoek-results2016-04-21-181816.log 34701 bytes

 

==== Deleting CLSID Registry Keys ======================

 

 

==== Deleting CLSID Registry Values ======================

 

 

==== Installed Programs ======================

 

32 Bit HP CIO Components Installer  

Acrobat.com  

Adobe AIR  

Adobe Flash Player 10 Plugin  

Adobe Flash Player 21 ActiveX  

Adobe Reader X (10.1.16) - Fran‡ais  

Adobe Refresh Manager  

ALPS Touch Pad Driver  

Belfius Smart Card Reader Chrome-App  

Broadcom Gigabit Integrated Controller  

Camera Center  

CameraHelperMsi  

CCleaner  

Conexant HD Audio  

erLT  

ESET Smart Security  

FileZilla Client 3.10.3  

Google Chrome  

Google Earth  

Google Update Helper  

Google Updater  

HD Tune 2.55  

HDAUDIO Soft Data Fax Modem with SmartCP  

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)  

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)  

HP LJ300-400 color M351-M451  

HP Unified IO  

HP Update  

HPLaserJet300-400ColorM351-M451Series_HelpLearnCenter_SI  

HPLJUTCore  

HPLJUTM351-M451  

hppLaserJetService  

hppM351_M451LaserJetService  

hppToolboxProxyM351  

hpStatusAlerts  

hpStatusAlertsM351_M451  

InstanceFinder  

Intel PROSet Wireless  

Intel® Graphics Media Accelerator Driver  

Intel® PROSet/Wireless WiFi Software  

Intel© Matrix Storage Manager  

InterVideo Register Manager  

InterVideo WinDVD  

Java 8 Update 91  

Java Auto Updater  

JavaFX 2.1.1  

JMicron JMB38X Flash Media Controller  

Lenovo Bluetooth with Enhanced Data Rate Software 6.1.0.5100  

Lenovo Care  

Lenovo Care Supplement  

Lenovo EasyCamera  

Lenovo Registration  

Lenovo System Interface Driver  

Logitech-webcamsoftware  

Logitech Vid HD  

LWS Facebook  

LWS Gallery  

LWS Help_main  

LWS Launcher  

LWS Motion Detection  

LWS Pictures And Video  

LWS Twitter  

LWS Video Mask Maker  

LWS VideoEffects  

LWS Webcam Software  

LWS WLM Plugin  

LWS YouTube Plugin  

Message Center  

Message Center Plus  

Microsoft .NET Framework 3.5 Language Pack SP1 - nld  

Microsoft .NET Framework 3.5 SP1  

Microsoft .NET Framework 4.5.2  

Microsoft .NET Framework 4.5.2 (Nederlands)  

Microsoft .NET Framework 4.5.2 (NLD)  

Microsoft Office Access MUI (Dutch) 2007  

Microsoft Office Excel MUI (Dutch) 2007  

Microsoft Office InfoPath MUI (Dutch) 2007  

Microsoft Office Outlook MUI (Dutch) 2007  

Microsoft Office PowerPoint MUI (Dutch) 2007  

Microsoft Office Professional Plus 2007  

Microsoft Office Proof (Dutch) 2007  

Microsoft Office Proof (English) 2007  

Microsoft Office Proof (French) 2007  

Microsoft Office Proof (German) 2007  

Microsoft Office Proofing (Dutch) 2007  

Microsoft Office Publisher MUI (Dutch) 2007  

Microsoft Office Shared MUI (Dutch) 2007  

Microsoft Office Word MUI (Dutch) 2007  

Microsoft SQL Server Native Client  

Microsoft SQL Server Setup Support Files (English)  

Microsoft SQL Server VSS Writer  

Microsoft Visual C++ 2005 Redistributable  

Mozilla Firefox 43.0.1 (x86 nl)  

Mozilla Maintenance Service  

msvcrt_installer  

MSXML 4.0 SP2 (KB954430)  

MSXML 4.0 SP2 (KB973688)  

Nero 7 Lite 7.7.5.1  

Nokia Connectivity Cable Driver  

Notepad++  

On Screen Display  

PC-Doctor 5 for Windows  

PM Driver  

Power Ux Customization  

Presentation Director  

Product Recovery Disc Burning Utility  

Registry patch for Windows Vista USB S3 PM Enablement  

Registry patch of Changing Timing of IDLE IRP by Finger Print Driver for Windows Vista   

Registry Patch of Enabling Device Initiated Power Management(DIPM) on SATA for Windows Vista  

Registry patch to improve USB device detection on resume from sleep for Windows Vista  

Rescue and Recovery  

Revo Uninstaller 1.80  

Samsung Printer Live Update  

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)  

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)  

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)  

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3023224)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3035490)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3048077)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3072310)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3074230)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3074550)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3097996)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3098781)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3099869)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3122656)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3127229)  

Security Update for Microsoft .NET Framework 4.5.2 (KB3135996)  

Sitecom LN-031  

SkypeT 7.6  

Speccy  

Spelling Dictionaries Support For Adobe Reader 9  

System Migration Assistant  

System Update  

Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL  

ThinkPad Hotkey Features Setup  

ThinkVantage Access Connections  

ThinkVantage Status Gadget  

ThinkVantage Technologies Welcome Message  

ToolboxProxy  

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)  

Van Dale Grote woordenboeken 2009  

Van Dale Grote woordenboeken Engels  

Van Dale Grote woordenboeken Frans  

Van Dale Grote woordenboeken versie 4.5  

VASCO Card Reader Plug-In (32-Bit)  

VASCO Smart Card Reader Plug-In (User)  

Visual C++ 2008 x86 Runtime - (v9.0.30729)  

Visual C++ 2008 x86 Runtime - v9.0.30729.01  

VLC media player 0.9.9  

Wallpapers  

WinDirStat 1.1.2  

 

==== Running Processes ======================

 

C:\Windows\System32\smss.exe

C:\Windows\system32\csrss.exe

C:\Windows\SYSTEM32\wininit.exe

C:\Windows\system32\csrss.exe

C:\Windows\SYSTEM32\winlogon.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\WLANExt.exe

C:\Windows\SYSTEM32\taskeng.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\brss01a.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\Apoint2K\Apoint.exe

C:\Program Files\Lenovo\NPDIRECT\tpfnf7sp.exe

C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe

C:\Program Files\CONEXANT\SmartAudio\SmAudio.exe

C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe

C:\Program Files\Lenovo\LenovoCare\LPMGR.EXE

C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe

C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe

C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe

C:\Program Files\ESET\ESET Smart Security\ekrn.exe

C:\Program Files\Intel\WiFi\bin\EvtEng.exe

C:\Program Files\LENOVO\HOTKEY\FNF5SVC.exe

C:\Windows\system32\hasplms.exe

C:\Windows\SYSTEM32\taskeng.exe

C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe

C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe

C:\Program Files\Lenovo\PMDriver\PMSveH.exe

C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

c:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe

C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe

C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe

C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe

c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe

C:\Windows\system32\igfxsrvc.exe

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\DRIVERS\xaudio.exe

C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

C:\Program Files\Lenovo\System Update\SUService.exe

C:\Program Files\Google\Update\1.3.29.5\GoogleCrashHandler.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files\Lenovo\PMDriver\PMHandler.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files\ESET\ESET Smart Security\egui.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\HP\HP Software Update\hpwuschd2.exe

C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Apoint2K\ApMsgFwd.exe

C:\Program Files\Apoint2K\Apntex.exe

C:\Users\Geert\Downloads\zoek.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k bthsvcs

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

 

==== Deleting Services ======================

 

 

==== Folders Found ======================

 

2009-04-08 20:50:29 2010-07-23 15:53:43 -------- d-----w- C:\ProgramData\Lavasoft

2009-04-08 20:50:29 2010-07-23 15:53:43 -------- d-----w- C:\Users\All Users\Lavasoft

 

==== Files Found ======================

 

 

--- C:\Firefox\toolbar@ask.com\chrome\skin\amazon_16x.png ---

Company: ------

File Description: ------

File Version: ------

Product Name: ------

Copyright: ------

Original Filename: ------

File type: -c----w-

File size: 796

Created time: 2012-10-16 23:43:06

Modified time: 2012-10-16 23:43:06

MD5: 7D985C2CD00B8229A6394483A599B0A8

SHA1: C8096EA6718ADAD5E7EA18BC082B128E2264CCFD

 

 

--- C:\Users\Geert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.amazon.com_0.localstorage ---

Company: ------

File Description: ------

File Version: ------

Product Name: ------

Copyright: ------

Original Filename: ------

File type: ----a-w-

File size: 3072

Created time: 2016-02-11 12:31:48

Modified time: 2016-04-19 14:02:07

MD5: 680D20362AF9A78AB7DE804C8D218CB5

SHA1: EDBFC71D4F25E5884ABE7515BB0EC2A14BD31BF2

 

 

--- C:\Users\Geert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.amazon.com_0.localstorage-journal ---

Company: ------

File Description: ------

File Version: ------

Product Name: ------

Copyright: ------

Original Filename: ------

File type: ----a-w-

File size: 0

Created time: 2016-02-11 12:31:48

Modified time: 2016-04-19 14:02:07

MD5: D41D8CD98F00B204E9800998ECF8427E

SHA1: DA39A3EE5E6B4B0D3255BFEF95601890AFD80709

 

 

==== System Specs ======================

 

Windows: Windows Vista Home Basic Edition Service Pack 2 (Build 6002)

Memory (RAM): 2008 MB

CPU Info: Genuine Intel® CPU             575  @ 2.00GHz

CPU Speed: 2001,6 MHz

Sound Card: Luidsprekers (Conexant High Def | 

Display Adapters: Mobile Intel® 4 Series Express Chipset Family | Mobile Intel® 4 Series Express Chipset Family | RDPDD Chained DD | RDP Encoder Mirror Driver

Monitors: 1x; Algemeen PnP-beeldscherm | 

Screen Resolution: 1280 X 768 - 32 bit

Network: Network Present

Network Adapters: Intel® Wireless WiFi Link 5100 | Broadcom NetLink Fast Ethernet

CD / DVD Drives: 1x (D: | ) D: HL-DT-STDVDRAM GSA-T50N

Ports: COM3 LPT Port NOT Present. 

Mouse: 3 Button Wheel Mouse Present

Hard Disks: C:  137,8GB | Q:  9,8GB | S:  1,5GB

Hard Disks - Free: C:  22,2GB | Q:  2,3GB | S:  585,1MB

Manufacturer *: LENOVO

BIOS Info: AT/AT COMPATIBLE | 01/28/10 | LENOVO - 0

Time Zone: Romance (standaardtijd)

Motherboard *: LENOVO KIWDX

Country: Belgi‰ 

Language: NLB 

 

==== System Specs (Software) ======================

 

AV: ESET Smart Security 4.2 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}

SP: ESET Smart Security 4.2 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: ESET Personal firewall *Enabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}

Default Browser: Google Chrome 49.0.2623.112

Internet Explorer Version: 9.0.8112.16421 

Mozilla Firefox version: 43.0.1 (x86 nl)

Google Chrome version: 49.0.2623.112

Adobe Reader version: 10.1.16.13

Sun Java version: 1.8.0_91 (32-bit) 

 

==== Files Recently Created / Modified ======================

 

====== C:\Windows ====

====== C:\Users\Geert\AppData\Local\Temp ====

2016-04-22 18:54:47 D41D8CD98F00B204E9800998ECF8427E 0 -c--a-w- C:\Users\Geert\AppData\Local\Temp\zowlakzy.dll

====== Java Cache =====

====== C:\Windows\system32 =====

2016-04-21 07:36:02 F321650316B2AB7D5562705B5AF71A89 501760 ----a-w- C:\Windows\System32\kerberos.dll

2016-04-19 18:29:25 95BCEF4C0F685CDADDD6F3C143DC7FE6 1253376 ----a-w- C:\Windows\System32\msxml3.dll

2016-04-19 18:26:32 50C22CD47F6E7A3A2BEEC05580AB210F 206336 ----a-w- C:\Windows\System32\ncrypt.dll

2016-04-19 18:26:18 EE38397559808BE103EA5D1E790F4B97 72704 ----a-w- C:\Windows\System32\secur32.dll

2016-04-19 18:26:17 23FF265796AE724D41832CA95195A144 57344 ----a-w- C:\Windows\System32\samlib.dll

2016-04-19 18:26:15 0F16F94B10EE0246E51B92CC75ECB1EB 486912 ----a-w- C:\Windows\System32\samsrv.dll

2016-04-19 18:26:13 0975988CB3B7B6CE00DDFFC00D485930 1259520 ----a-w- C:\Windows\System32\lsasrv.dll

2016-04-19 18:24:15 7FA44D16D6F5471B586693552C6E1258 2048 ----a-w- C:\Windows\System32\tzres.dll

2016-04-19 17:04:35 27FA730227F9BAE751277BEFADE66FDB 1316864 ----a-w- C:\Windows\System32\ole32.dll

2016-04-19 17:04:34 A14BE5B772474BD68734EFA0F9426134 1208568 ----a-w- C:\Windows\System32\ntdll.dll

2016-04-19 17:04:34 09DEC1D7DB89FAC3719DCF0AF7CD363F 894976 ----a-w- C:\Windows\System32\kernel32.dll

2016-04-19 17:02:06 DF9F45804C71EF831A309233F0649D14 180224 ----a-w- C:\Windows\System32\msorcl32.dll

2016-04-19 17:02:05 A978034EB69D0D6683FFF03D11D33682 105472 ----a-w- C:\Windows\System32\mtxoci.dll

2016-04-19 17:01:29 935F004EBD0AF2B59AC7BFCF54DD7DDD 2070016 ----a-w- C:\Windows\System32\win32k.sys

2016-04-19 14:55:06 62F04451011BF49AF9D68FCD40A9D8F8 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll

2016-04-19 14:55:02 FB95C4EE795477F15816EB88EB97DAEE 11776 ----a-w- C:\Windows\System32\mshta.exe

2016-04-19 14:55:02 B960F75D0FF99BB25CFAA3395ECA0570 1140224 ----a-w- C:\Windows\System32\urlmon.dll

2016-04-19 14:55:02 B42F7A5BE1172033091225D005054A8B 10752 ----a-w- C:\Windows\System32\msfeedssync.exe

2016-04-19 14:55:01 D61BCA3E64C4A0976E0CA9964AFEA7C6 142848 ----a-w- C:\Windows\System32\ieUnatt.exe

2016-04-19 14:55:01 C1A9525FF0BEF206F95BEF525D8E0EAC 607744 ----a-w- C:\Windows\System32\msfeeds.dll

2016-04-19 14:55:01 B12C304FD2A16FF1C0FA538723ACCC14 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2016-04-19 14:55:01 82DC9484318346679083716C50191BBA 65536 ----a-w- C:\Windows\System32\jsproxy.dll

2016-04-19 14:55:00 BCAC4522554A85D266D6DC83B2E25765 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl

2016-04-19 14:55:00 4075A76FF501A9D9AE54A4E78F82A91D 1804800 ----a-w- C:\Windows\System32\iertutil.dll

2016-04-19 14:55:00 19FDBE2995B1EFA68BBEEB88BA6B0AF3 231936 ----a-w- C:\Windows\System32\url.dll

2016-04-19 14:54:59 EE5BCB206136E8C4B9A9898809DD8143 9753600 ----a-w- C:\Windows\System32\ieframe.dll

2016-04-19 14:54:59 9AC0B7CE169F703FA95148B76DA4128A 354304 ----a-w- C:\Windows\System32\dxtmsft.dll

2016-04-19 14:54:57 B4F0580786BEB44A7F39CA23E33FC590 1129984 ----a-w- C:\Windows\System32\wininet.dll

2016-04-19 14:54:57 5B5E38F2F1453834DB8FF27E48E4F8A7 424960 ----a-w- C:\Windows\System32\vbscript.dll

2016-04-19 14:54:52 AF661E55EBC3634FDC90D9CB61E1898D 176640 ----a-w- C:\Windows\System32\ieui.dll

2016-04-19 14:54:52 47C20EB9B1BDCB7BCD397FA29F40F50F 223744 ----a-w- C:\Windows\System32\dxtrans.dll

2016-04-19 14:54:51 887F9DDE0014787F69595694160B0807 367616 ----a-w- C:\Windows\System32\html.iec

2016-04-19 14:54:50 E248C677CC8C4E9DF1A82F684EFAC2E0 718848 ----a-w- C:\Windows\System32\jscript.dll

2016-04-19 14:54:50 34F70F99DF12F939E78D8C15F09CAB6B 72704 ----a-w- C:\Windows\System32\mshtmled.dll

2016-04-19 14:54:49 71F586526F70898280DF44699027F829 12841472 ----a-w- C:\Windows\System32\mshtml.dll

2016-04-19 14:54:48 BCA8FA2367DC9D6109F511D7141C3B10 1815552 ----a-w- C:\Windows\System32\jscript9.dll

====== C:\Windows\system32\drivers =====

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2016-04-24 17:34:00 -------- dc----w- C:\Program Files\HD Tune

2016-04-20 17:52:32 -------- dc----w- C:\Program Files\Common Files\Java

2016-04-19 18:48:19 -------- dc----w- C:\Program Files\Speccy

2016-04-19 18:00:50 -------- dc----w- C:\Program Files\trend micro

2016-03-29 13:39:16 -------- dc----w- C:\Program Files\Mozilla Maintenance Service

======= C: =====

====== C:\Users\Geert\AppData\Roaming ======

2016-04-21 18:12:25 -------- dc----w- C:\Users\Geert\AppData\Local\Temp

2016-04-21 18:12:25 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Temp

2016-04-21 18:12:25 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp

2016-04-21 18:12:25 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp

2016-04-21 18:12:25 -------- d-----w- C:\Users\Default\AppData\Local\Temp

2016-04-21 18:12:25 -------- d-----w- C:\Users\Default User\AppData\Local\Temp

2016-04-20 17:52:21 -------- d-----w- C:\Users\Geert\AppData\Roaming\Sun

2016-04-19 19:14:16 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm

2016-04-19 18:48:55 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking

2016-03-29 13:39:32 -------- d-----w- C:\Users\Geert\AppData\Roaming\Mozilla

2016-03-29 13:39:32 -------- d-----w- C:\Users\Geert\AppData\Local\Mozilla

====== C:\Users\Geert ======

2016-04-24 17:34:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune

2016-04-24 17:31:42 088812A121E0A9CEB40CE9C808C8A90C 642632 ----a-w- C:\Users\Geert\Downloads\hdtune_255.exe

2016-04-22 18:46:14 61BB991D842F89B5999C54435FDD115B 3683904 ----a-w- C:\Users\Geert\Downloads\adwcleaner_5.112.exe

2016-04-20 17:52:21 -------- d-----w- C:\Users\Geert\.oracle_jre_usage

2016-04-20 17:29:33 0CB6F89AFC44CECD411191296383A85B 738368 ----a-w- C:\Users\Geert\Downloads\chromeinstall-8u91.exe

2016-04-19 18:58:20 FF70EB133BE86B9F9EB18E274DAA6B6C 5111240 ----a-w- C:\Users\Geert\Downloads\spsetup129 (2).exe

2016-04-19 18:58:05 FF70EB133BE86B9F9EB18E274DAA6B6C 5111240 ----a-w- C:\Users\Geert\Downloads\spsetup129 (1).exe

2016-04-19 18:48:25 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy

2016-04-19 18:38:40 FF70EB133BE86B9F9EB18E274DAA6B6C 5111240 ----a-w- C:\Users\Geert\Downloads\spsetup129.exe

2016-04-19 17:58:43 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT (5).exe

2016-04-19 17:58:33 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT (4).exe

2016-04-19 17:55:33 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT (3).exe

2016-04-19 17:54:06 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT (2).exe

2016-04-19 17:53:46 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT (1).exe

2016-04-19 17:49:01 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT.exe

 

====== C: exe-files ==

2016-04-24 17:34:00 F8FC2D14DF813CC920A39B3CB7E59CBC 401408 -c--a-w- C:\Program Files\HD Tune\HDTune.exe

2016-04-24 17:34:00 CEFC20D14D9940D53505E9B9769139E7 682266 -c--a-w- C:\Program Files\HD Tune\unins000.exe

2016-04-24 17:31:42 088812A121E0A9CEB40CE9C808C8A90C 642632 ----a-w- C:\Users\Geert\Downloads\hdtune_255.exe

2016-04-22 18:46:14 61BB991D842F89B5999C54435FDD115B 3683904 ----a-w- C:\Users\Geert\Downloads\adwcleaner_5.112.exe

2016-04-20 17:51:21 6C58D1081EC589813A197E81CA5CB85C 159296 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\unpack200.exe

2016-04-20 17:51:21 1F3D5C9A2D230CDE5B2120AA0F3721B6 16448 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\tnameserv.exe

2016-04-20 17:51:20 76E017B33C2C0F72CBBDB77251B00658 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\rmid.exe

2016-04-20 17:51:20 56B31942246558D41498912CA9868DF2 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\servertool.exe

2016-04-20 17:51:20 2C02E97DF732010028B565DA92F3CB0F 51776 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\ssvagent.exe

2016-04-20 17:51:20 1CB2916C0CC541F2A4AC28DAC03F1833 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\rmiregistry.exe

2016-04-20 17:51:19 BA45896DE4744CC7AB7EAECF59D6758C 16448 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\orbd.exe

2016-04-20 17:51:19 AFB89E0B881A2F9F0135AB8984B9FC53 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\pack200.exe

2016-04-20 17:51:19 38E67313028C22B78E26D7860494015E 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\policytool.exe

2016-04-20 17:51:17 D8065554BA4D664A55F57F76E1B4F9E3 77888 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\jp2launcher.exe

2016-04-20 17:51:17 D26A12768BFA19B5565F82DF16B85192 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\kinit.exe

2016-04-20 17:51:17 B6AAFABF90E5FE4683690793F2963388 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\keytool.exe

2016-04-20 17:51:17 2EBB23647400B52B56815FEBC59DCCF7 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\ktab.exe

2016-04-20 17:51:17 2ABC222E2C3E728136516D6390BDF447 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\klist.exe

2016-04-20 17:51:16 DE2D3B374C6EFA769028B811A1203FB1 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\jjs.exe

2016-04-20 17:51:14 D117B71E46E9156F1C88146E6F5EDB03 191552 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\javaw.exe

2016-04-20 17:51:14 CCCE1ACFFBFCB34B5F3CD157A78522F8 68672 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\javacpl.exe

2016-04-20 17:51:14 28AC474C021D764DF31736CB9B47DD88 191040 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\java.exe

2016-04-20 17:51:14 0BA64EAF4F4080DA2FB79DCC05CB2A14 268352 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\javaws.exe

2016-04-20 17:51:13 AFD756C629D5527D1CFE3BE9D6EBB416 30784 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\jabswitch.exe

2016-04-20 17:51:13 09EABD6F36ECC85644DCE5C3BD709F29 15936 ----a-w- C:\Program Files\Java\jre1.8.0_91\bin\java-rmi.exe

2016-04-20 17:29:33 0CB6F89AFC44CECD411191296383A85B 738368 ----a-w- C:\Users\Geert\Downloads\chromeinstall-8u91.exe

2016-04-19 18:58:20 FF70EB133BE86B9F9EB18E274DAA6B6C 5111240 ----a-w- C:\Users\Geert\Downloads\spsetup129 (2).exe

2016-04-19 18:58:05 FF70EB133BE86B9F9EB18E274DAA6B6C 5111240 ----a-w- C:\Users\Geert\Downloads\spsetup129 (1).exe

2016-04-19 18:38:40 FF70EB133BE86B9F9EB18E274DAA6B6C 5111240 ----a-w- C:\Users\Geert\Downloads\spsetup129.exe

2016-04-19 18:24:14 51F09F22C781D1034435B2A0B79D7005 19456 ----a-w- C:\Windows\servicing\GC32\tzupd.exe

2016-04-19 18:00:51 9A2347903D6EDB84C10F288BC0578C1C 388608 -c--a-w- C:\Program Files\trend micro\Geert.exe

2016-04-19 17:58:43 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT (5).exe

2016-04-19 17:58:33 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT (4).exe

2016-04-19 17:55:33 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT (3).exe

2016-04-19 17:54:06 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT (2).exe

2016-04-19 17:53:46 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT (1).exe

2016-04-19 17:49:01 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Geert\Downloads\RSIT.exe

2016-04-19 17:00:25 D5398E977AFE8871CB4F8EDC7E0B0C59 299160 ----a-w- C:\Windows\System32\XPSViewer\XPSViewer.exe

2016-04-19 14:55:05 8784A951253723B318DABE02E10E631D 223232 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe

2016-04-19 14:55:02 FB95C4EE795477F15816EB88EB97DAEE 11776 ----a-w- C:\Windows\System32\mshta.exe

2016-04-19 14:55:02 B42F7A5BE1172033091225D005054A8B 10752 ----a-w- C:\Windows\System32\msfeedssync.exe

2016-04-19 14:55:02 93B5982552DE463C297F5D444760183C 22528 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe

2016-04-19 14:55:01 D61BCA3E64C4A0976E0CA9964AFEA7C6 142848 ----a-w- C:\Windows\System32\ieUnatt.exe

2016-04-19 14:55:00 C089892C9F9D2630585E14D8335411FB 474624 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe

2016-04-19 14:54:58 596E41110232A86D73E3E2EBF8B9FC41 758512 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2016-04-18 20:10:26 F4FF5B6ABB94537232B49ADDB8D87EE1 1581016 ----a-w- C:\Users\Geert\AppData\Local\Google\Chrome\User Data\SwReporter\6.48.4\software_reporter_tool.exe

=== C: other files ==

2016-04-20 17:51:21 CB600FFB53D99A9B07EB870111BA7470 14130 ----a-w- C:\Program Files\Java\jre1.8.0_91\lib\deploy\ffjcext.zip

2016-04-19 17:01:29 935F004EBD0AF2B59AC7BFCF54DD7DDD 2070016 ----a-w- C:\Windows\System32\win32k.sys

 

==== Startup Registry Enabled ======================

 

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

 

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

 

[HKEY_USERS\S-1-5-21-3840249230-3880042740-1327267179-1003\Software\Microsoft\Windows\CurrentVersion\Run]

"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Apoint"="C:\Program Files\Apoint2K\Apoint.exe"

"TPFNF7"="C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r"

"TPWAUDAP"="C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe"

"SmartAudio"="C:\Program Files\CONEXANT\SMARTAUDIO\SMAUDIO.EXE /c"

"TVT Scheduler Proxy"="C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe"

"LPManager"="C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe"

"AMSG"="C:\Program Files\ThinkVantage\AMSG\Amsg.exe /startup"

"ACTray"="C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe"

"ACWlIcon"="C:\Program Files\ThinkPad\ConnectUtilities\ACWlIcon.exe"

"PMHandler"="C:\PROGRA~1\Lenovo\PMDriver\PMHandler.exe"

"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe"

"egui"="C:\Program Files\ESET\ESET Smart Security\egui.exe /hide /waitservice"

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe"

"StatusAlerts"="C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on"

"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"

"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"

 

==== Startup Registry Disabled ======================

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Adobe ARM"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CameraApplicationLauncher]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="CameraApplicationLauncher"

"hkey"="HKLM"

"command"="C:\\Program Files\\Lenovo\\Camera Center\\bin\\CameraApplicationLaunchpadLauncher.exe"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Logitech Vid]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Logitech Vid"

"hkey"="HKCU"

"command"="\"C:\\Program Files\\Logitech\\Vid HD\\Vid.exe\" -bootmode"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LWS]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="LWS"

"hkey"="HKLM"

"command"="C:\\Program Files\\Logitech\\LWS\\Webcam Software\\LWS.exe -hide"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Message Center Plus]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Message Center Plus"

"hkey"="HKLM"

"command"="C:\\Program Files\\LENOVO\\Message Center Plus\\MCPLaunch.exe /start"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Skype"

"hkey"="HKCU"

"command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /minimized /regrun"

 

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]

"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Bluetooth.lnk"

"backup"="C:\\Windows\\pss\\Bluetooth.lnk.CommonStartup"

"backupExtension"=".CommonStartup"

"command"="C:\\PROGRA~1\\Lenovo\\BLUETO~1\\BTTray.exe "

"item"="Bluetooth"

 

 

==== Task Scheduler Jobs ======================

 

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [08/04/2016 13:34]

C:\Windows\tasks\Google Software Updater.job --a------ C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [11/11/2011 20:12]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [28/08/2015 19:48]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [28/08/2015 19:48]

 

==== Other Scheduled Tasks ======================

 

"C:\Windows\system32\tasks\Ad-Aware Update (Daily 1)" [C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe]

"C:\Windows\system32\tasks\Ad-Aware Update (Daily 2)" [C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe]

"C:\Windows\system32\tasks\Ad-Aware Update (Daily 3)" [C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe]

"C:\Windows\system32\tasks\Ad-Aware Update (Daily 4)" [C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe]

"C:\Windows\system32\tasks\Ad-Aware Update (Weekly)" [C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe]

"C:\Windows\system32\tasks\Adobe Acrobat Update Task" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe]

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\system32\tasks\Google Software Updater" [C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\HPLJCustParticipation" ["C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe"]

"C:\Windows\system32\tasks\User_Feed_Synchronization-{37AA65E8-0AC0-44D3-BF90-2732BD0CE5B7}" [C:\Windows\system32\msfeedssync.exe]

 

==== Firefox Extensions Registry ======================

 

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [08/08/2009 14:57]

 

==== Firefox Extensions ======================

 

AppDir: C:\Program Files\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

 

==== Firefox Plugins ======================

 

Profilepath: C:\Users\Geert\AppData\Roaming\Mozilla\Firefox\Profiles\zc6wg3ci.default

F169116C1BA501AB4D0D66D41FF496B5 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat

FC5D7AF1FC3A63782E19B375E2312D1C - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat

AF8A94BCB98C299C49B28CC12EBC0ED2 - C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll - Google Update

358878E398AB0FB8B1EE176C2E3EDF48 - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll - Google Updater

AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation

0205ADAFFDDF04F0F69200E5CFB5FFD9 - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll - Google Earth Plugin

F8EFDCFC440A420D6C1ECD245AB20207 - C:\Windows\system32\Macromed\Flash\NPSWF32.dll - Shockwave Flash

CAF78E18A9E1380A0A38065B3B1210E0 - C:\Users\Geert\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin.dll - VASCO Card Reader Plugin

 

 

==== Chromium Look ======================

 

Google Chrome Version: 46.0.2490.86

 

 

Belfius Smart Card Reader Chrome Extension - Geert\AppData\Local\Google\Chrome\User Data\Default\Extensions\agicnfmechmlphpjmeefookfjhifbmhi

Google Docs - Geert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - Geert\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - Geert\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - Geert\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Docs Offline - Geert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi

Chrome Web Store Payments - Geert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - Geert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

 

==== Chromium Fix ======================

 

C:\Users\Geert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully

C:\Users\Geert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully

 

==== Set IE to Default ======================

 

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.be/"

 

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.be/"

 

==== All HKLM and HKCU SearchScopes ======================

 

HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://search.live.com/results.aspx?q={searchTerms}&FORM=LENIE

HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}

HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

HKCU\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} - No_Url_Value

HKCU\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - No_Url_Value

 

==== HijackThis Entries ======================

 

O1 - Hosts: ::1 localhost

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe

O4 - HKLM\..\Run: [TPFNF7] C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r

O4 - HKLM\..\Run: [TPWAUDAP] C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe

O4 - HKLM\..\Run: [smartAudio] C:\Program Files\CONEXANT\SMARTAUDIO\SMAUDIO.EXE /c

O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe

O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe

O4 - HKLM\..\Run: [AMSG] C:\Program Files\ThinkVantage\AMSG\Amsg.exe /startup

O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe

O4 - HKLM\..\Run: [ACWlIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWlIcon.exe

O4 - HKLM\..\Run: [PMHandler] C:\PROGRA~1\Lenovo\PMDriver\PMHandler.exe

O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [statusAlerts] "C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe

O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\Windows\system32\brsvc01a.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

O23 - Service: Fn+F5 Service (FNF5SVC) - Lenovo. - C:\Program Files\LENOVO\HOTKEY\FNF5SVC.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HASP License Manager (hasplms) - Aladdin Knowledge Systems Ltd. - C:\Windows\system32\hasplms.exe

O23 - Service: HP LaserJet Service - HP - C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: PMSveH - Lenovo - C:\Program Files\Lenovo\PMDriver\PMSveH.exe

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

O23 - Service: System Update (SUService) - Lenovo Group Limited - C:\Program Files\Lenovo\System Update\SUService.exe

O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe

O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe

O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe

O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe

O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe

O23 - Service: TVT Windows Update Monitor (TVT_UpdateMonitor) - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe

O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

 

==== Empty IE Cache ======================

 

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Geert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Geert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

 

==== Empty FireFox Cache ======================

 

C:\Users\Geert\AppData\Local\Mozilla\Firefox\Profiles\zc6wg3ci.default\cache2 emptied successfully

 

==== Empty Chrome Cache ======================

 

C:\Users\Geert\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

 

==== Empty All Flash Cache ======================

 

Flash Cache Emptied Successfully

 

==== Empty All Java Cache ======================

 

Java Cache cleared successfully

 

==== C:\zoek_backup content ======================

 

C:\zoek_backup (files=3842 folders=514 1563436901 bytes)

 

==== Empty Temp Folders ======================

 

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\Geert\AppData\Local\Temp will be emptied at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Windows\Temp will be emptied at reboot

 

==== After Reboot ======================

 

==== Empty Temp Folders ======================

 

C:\Windows\Temp successfully emptied

C:\Users\Geert\AppData\Local\Temp successfully emptied

 

==== Empty Recycle Bin ======================

 

C:\$RECYCLE.BIN successfully emptied

 

==== Deleting Files / Folders ======================

 

"C:\Users\Geert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

 

==== EOF on ma 25/04/2016 at 12:35:26,11 ======================

 

Zoek-results.log:

 

zoek-results.txt

[kweezie wabbit]

Je Firefox is verouderd.

Open Firefox en druk achtereenvolgens op de toetsen alt, h en f.

De update naar de recentste versie wordt nu gedownload en geinstalleerd.

Na de installatie moet je Firefox herstarten.

 

Ook de chrome browser is een oudere versie.

Open chrome en typ chrome://help/ in de adresbalk.

Je komt dan op de help pagina en er wordt automatisch een controle gedaan naar updates.

 

 

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

• Dubbelklik op Zoek.exe om de tool te starten.
• Gebruikers van Windows Vista en later dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

C:\ProgramData\Lavasoft;fs
C:\Users\All Users\Lavasoft;fs
C:\Firefox\toolbar@ask.com;fs
C:\Users\Geert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.amazon.com_0.localstorage;f
C:\Users\Geert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.amazon.com_0.localstorage-journal;f
C:\Users\Geert\Downloads\chromeinstall-8u91.exe;f
C:\Users\Geert\Downloads\spsetup129 (2).exe;f
C:\Users\Geert\Downloads\spsetup129 (1).exe;f
C:\Users\Geert\Downloads\RSIT (5).exe;f
C:\Users\Geert\Downloads\RSIT (4).exe;f
C:\Users\Geert\Downloads\RSIT (3).exe;f
C:\Users\Geert\Downloads\RSIT (2).exe;f
C:\Users\Geert\Downloads\RSIT (1).exe;f
C:\Windows\system32\tasks\Ad-Aware Update (Daily 1);f
C:\Windows\system32\tasks\Ad-Aware Update (Daily 2);f
C:\Windows\system32\tasks\Ad-Aware Update (Daily 3);f
C:\Windows\system32\tasks\Ad-Aware Update (Daily 4);f
C:\Windows\system32\tasks\Ad-Aware Update (Weekly);f
{483830EE-A4CD-4b71-B0A3-3D82E62A6909};c
{6A1806CD-94D4-4689-BA73-E35EA1EA9990};c

• De optie "Scan All Users" staat standaard aangevinkt.
• Klik nu op de knop "Run script".
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
• Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
• Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

• Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
• Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.