Archief - Taakbeheer niet mee zichtbaar

Het archief is een bevroren moment uit een vorige versie van dit forum, met andere regels en andere bazen. Deze posts weerspiegelen op geen enkele manier onze huidige ideeën, waarden of wereldbeelden en zijn op sommige plaatsen gecensureerd wegens ontoelaatbaar. Veel zijn in een andere tijdsgeest gemaakt, al dan niet ironisch - zoals in het ironische subforum Off-Topic - en zouden op dit moment niet meer gepost (mogen) worden. Toch bieden we dit archief nog graag aan als informatiedatabank en naslagwerk. Lees er hier meer over of start een gesprek met anderen.
i

iLu_RoX

Legacy Member
ctrl alt delete .. ik zie nergens taakbeheer staan . Rechtermuisknop op taakbalk staat het hrijs ( Win7)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:39:46, on 7/01/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
E:\Program Files\FileServe Manager\FSStarter.exe
E:\Program Files\LWS\Webcam Software\LWS.exe
E:\Program Files\FileServe Manager\FileManager.exe
E:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
E:\Program Files\LWS\Webcam Software\CameraHelperShell.exe
E:\Program Files\AVG\AVG2012\avgui.exe
C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Davy\AppData\Local\Google\Chrome\Application\chrome.exe
E:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 212.24.55.19:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: FileServeManager - {00000001-AB3B-4334-9DA2-EC6B2A02AFC6} - E:\Program Files\FileServe Manager\FileServeBHO.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - E:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Microsoft Web Test Recorder 10.0 Helper - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - F:\Program Files\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [FileServe Manager Task] "E:\Program Files\FileServe Manager\FSStarter.exe"
O4 - HKLM\..\Run: [Zboard] C:\Program Files (x86)\Ideazon\ZEngine\Zboard.exe
O4 - HKLM\..\Run: [LWS] E:\Program Files\LWS\Webcam Software\LWS.exe -hide
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AVG_TRAY] "E:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Davy\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [] E:\Downloads\Unknown Logger V Public\Unknown Logger V Public\Unknown Logger V Public\pirox.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Logitech . Productregistratie.lnk = E:\Program Files\Ereg\eReg.exe
O4 - Global Startup: UltraMon.lnk = ?
O8 - Extra context menu item: Download with FileServe Manager - E:\Program Files\FileServe Manager\GetUrl.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Users\Davy\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Davy\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - E:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - E:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - E:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11363 bytes
[/CODE]
J

Juisterr

Legacy Member
1. Klik met de rechtermuisknop op de taakbalk en kies eigenschappen.
2. Open het tabblad "menustart" en kies de optie aanpassen.
3. Klik hier op de knop Standaardinstellingen gebruiken en klik op "Toepassen" en "Ok""

4ed7b20e6d812-Menustart.png
J

Juisterr

Legacy Member
Download ComboFix van één van deze locaties:

Link 1
Link 2


* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op.
>>Hier<< kunt u lezen hoe u Combofix dient te gebruiken.



4de6eab6867f3-Combofix.JPG


1. Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix.

* (hier of hier staat een handleiding over hoe je deze kan uitschakelen: )

2. Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.
3. Dubbelklik op "Combofix.exe" om de tool te starten.
4. Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

* Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion." herstart dan de computer.

5. Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.
a

andy85

Legacy Member
Juisterr zei:
Download ComboFix van één van deze locaties:

Link 1
Link 2


* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op.
>>Hier<< kunt u lezen hoe u Combofix dient te gebruiken.



4de6eab6867f3-Combofix.JPG


1. Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix.

* (hier of hier staat een handleiding over hoe je deze kan uitschakelen: )

2. Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.
3. Dubbelklik op "Combofix.exe" om de tool te starten.
4. Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

* Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion." herstart dan de computer.

5. Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.
Klik om te vergroten...

hoi ik heb ook een probleem. ik vind men taakbheer bestand nergens. ik denk dat ik met een virus zit ooK.
a

andy85

Legacy Member
ComboFix 14-09-29.02 - Andy 29/09/2014 2:04.1.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.8140.5526 [GMT 2:00]
Gestart vanuit: c:\users\Andy\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
SP: Microsoft Security Essentials *Disabled/Updated* {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\END
c:\program files (x86)\GoSaavoe
c:\program files (x86)\GoSaavoe\kDyocL3Giu02oZ.dat
c:\program files (x86)\GoSaavoe\kDyocL3Giu02oZ.tlb
c:\program files (x86)\YouUteubeeAdBloceke
c:\program files (x86)\YouUteubeeAdBloceke\wKLT5n4VuM3atq.dat
c:\program files (x86)\YouUteubeeAdBloceke\wKLT5n4VuM3atq.tlb
c:\programdata\DDownload keeper
c:\programdata\DDownload keeper\SiYdkJDtL.dat
c:\programdata\Downloaadd keePer
c:\programdata\Downloaadd keePer\jJ8BDwZ.dat
c:\programdata\GoSaavoe
c:\programdata\GoSaavoe\LPZX7B6OWHCaFyH.dat
c:\programdata\Microsoft Services
c:\programdata\Microsoft Services\svcmgr.exe
c:\programdata\Microsoft Services\symgr.exe
c:\programdata\Microsoft.com
c:\programdata\YouUteubeeAdBloceke
c:\programdata\YouUteubeeAdBloceke\7zMdzlb8SEfyZyV.dat
c:\users\Andy\AppData\Local\Temp\VPN_4A1B\B7091C83.dll
c:\users\Andy\AppData\Local\Temp\VPN_98C6\B7091C83.dll
c:\windows\SysWow64\X86
c:\windows\TEMP\VPN_173D\B7091C83.dll
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NETHFDRV
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2014-08-28 to 2014-09-29 ))))))))))))))))))))))))))))))
.
.
2014-09-28 23:45 . 2014-09-09 02:05 11578928 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{40E87CBD-F31A-4090-87E7-429157BBD7E6}\mpengine.dll
2014-09-28 14:06 . 2014-09-09 02:05 11578928 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-09-27 23:53 . 2014-09-27 23:53 -------- d-----w- c:\programdata\AVS4YOU
2014-09-27 23:53 . 2014-09-27 23:53 -------- d-----w- c:\users\Andy\AppData\Roaming\AVS4YOU
2014-09-27 23:52 . 2014-09-28 00:56 -------- d-----w- c:\program files (x86)\Common Files\AVSMedia
2014-09-27 23:52 . 2011-06-23 11:26 1700352 ----a-w- c:\windows\SysWow64\GdiPlus.dll
2014-09-27 23:52 . 2011-06-23 11:25 24576 ----a-w- c:\windows\SysWow64\msxml3a.dll
2014-09-27 14:39 . 2014-09-27 18:51 -------- d-----w- c:\users\Andy\AppData\Local\sabnzbd
2014-09-27 14:38 . 2014-09-27 14:38 -------- d-----w- c:\users\Andy\AppData\Local\Spotnet
2014-09-27 14:33 . 2014-09-27 14:33 -------- d-----w- c:\program files (x86)\SABnzbd
2014-09-27 14:32 . 2014-09-27 15:53 -------- d-----w- c:\programdata\Spotnet
2014-09-27 14:32 . 2014-09-27 14:32 -------- d-----w- c:\program files (x86)\Spotnet
2014-09-27 14:28 . 2014-09-28 22:45 -------- d-----w- c:\users\Andy\AppData\Roaming\dvdcss
2014-09-27 14:24 . 2014-09-28 23:36 -------- d-----w- c:\users\Andy\AppData\Roaming\vlc
2014-09-27 14:24 . 2014-09-27 14:24 -------- d-----w- c:\program files (x86)\VideoLAN
2014-09-27 14:09 . 2014-09-27 14:09 -------- d-----w- c:\users\Andy\AppData\Local\Aiseesoft Studio
2014-09-27 14:08 . 2014-09-27 14:08 -------- d-----w- c:\programdata\Aiseesoft Studio
2014-09-27 14:08 . 2014-09-27 14:08 -------- d-----w- c:\program files (x86)\Aiseesoft Studio
2014-09-27 11:46 . 2014-09-27 11:46 -------- dc-h--w- c:\programdata\{60143F1F-63C8-4CC1-A37B-28EB1FC6C10F}
2014-09-27 11:46 . 2014-09-27 11:46 -------- d-----w- c:\program files\Native Instruments
2014-09-27 11:46 . 2014-09-27 11:46 -------- d-----w- c:\program files (x86)\Common Files\Native Instruments
2014-09-26 14:46 . 2014-09-17 12:26 1188440 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{39A3F29D-19EF-4349-9A71-C1D2237E724E}\gapaengine.dll
2014-09-25 13:20 . 2013-02-15 20:44 8043008 ----a-w- c:\windows\system32\DxtoryCodec.dll
2014-09-25 13:20 . 2013-02-15 20:44 8300544 ----a-w- c:\windows\SysWow64\DxtoryCodec.dll
2014-09-25 13:13 . 2014-09-25 13:13 -------- d-----w- c:\users\Andy\AppData\Roaming\TS3Client
2014-09-25 04:38 . 2014-09-27 01:26 -------- d-----w- c:\users\Andy\AppData\Local\PunkBuster
2014-09-25 04:38 . 2014-09-25 04:38 -------- d-----w- c:\users\Andy\AppData\Local\ESN
2014-09-25 04:28 . 2014-09-25 04:28 -------- d-----w- c:\users\Andy\AppData\Local\Realmware
2014-09-24 18:24 . 2014-09-28 23:22 -------- d-----w- c:\users\Andy\AppData\Local\CrashDumps
2014-09-24 18:13 . 2014-09-24 18:13 -------- d-----w- c:\users\Andy\AppData\Local\Diagnostics
2014-09-24 18:07 . 2014-09-25 13:20 -------- d-----w- c:\users\Andy\AppData\Local\Dxtory Software
2014-09-24 18:06 . 2014-09-28 23:23 122584 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-09-24 18:06 . 2014-09-28 09:41 -------- d-----r- c:\users\Public
2014-09-24 18:05 . 2014-09-24 18:06 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-09-24 18:05 . 2014-05-12 05:26 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-09-24 18:05 . 2014-05-12 05:26 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-09-24 18:05 . 2014-09-24 18:05 -------- d-----w- c:\users\Andy\AppData\Local\Programs
2014-09-24 17:58 . 2014-09-24 17:58 -------- d-----w- c:\users\Andy\AppData\Roaming\RadeonPro
2014-09-24 17:49 . 2014-09-24 17:49 -------- d-----w- c:\users\Andy\AppData\Roaming\Publish Providers
2014-09-24 17:49 . 2014-09-24 17:49 -------- d-----w- c:\users\Andy\AppData\Roaming\Sony
2014-09-24 17:49 . 2014-09-24 17:49 -------- d-----w- c:\users\Andy\AppData\Local\Sony
2014-09-24 17:47 . 2014-09-24 17:47 -------- d-----w- c:\users\Andy\AppData\Local\VirtualStore
2014-09-24 17:37 . 2014-09-24 17:47 -------- d-----w- c:\users\Andy\AppData\Roaming\Origin
2014-09-24 17:37 . 2014-09-24 17:37 -------- d-----w- c:\users\Andy\AppData\Roaming\ATI
2014-09-24 17:37 . 2014-09-24 17:37 -------- d-----w- c:\users\Andy\AppData\Local\Razer
2014-09-24 17:37 . 2014-09-24 17:37 -------- d-----w- c:\users\Andy\AppData\Local\ATI
2014-09-24 17:37 . 2014-09-24 17:37 -------- d-----w- c:\users\Andy\AppData\Roaming\Intel Corporation
2014-09-24 07:05 . 2014-09-09 22:11 2048 ----a-w- c:\windows\system32\tzres.dll
2014-09-24 07:05 . 2014-09-09 21:47 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2014-09-22 10:20 . 2014-09-27 10:54 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2014-09-20 04:27 . 2014-09-27 10:54 704136 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2014-09-18 16:10 . 2014-09-18 16:10 -------- d-----w- c:\program files (x86)\Common Files\DVDVideoSoft
2014-09-17 19:46 . 2014-09-25 13:31 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2014-09-17 19:46 . 2014-09-25 14:31 704136 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2014-09-16 14:42 . 2014-09-16 14:42 715038 ----a-w- c:\windows\unins000.exe
2014-09-16 14:42 . 2011-12-07 17:37 148992 ----a-w- c:\windows\system32\lagarith.dll
2014-09-16 14:42 . 2011-12-07 17:32 216064 ----a-w- c:\windows\SysWow64\lagarith.dll
2014-09-13 20:20 . 2014-09-14 10:24 -------- d-----w- c:\programdata\boost_interprocess
2014-09-12 21:09 . 2014-09-12 21:09 -------- d-----w- c:\program files (x86)\Pioneer
2014-09-12 20:24 . 2014-09-12 20:24 -------- d-----w- c:\program files (x86)\VirtualDJ
2014-09-10 10:52 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2014-09-10 10:52 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2014-09-10 02:29 . 2014-08-01 11:53 1031168 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-09-10 02:29 . 2014-08-01 11:35 793600 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-09-10 02:29 . 2014-06-24 03:29 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2014-09-10 02:29 . 2014-06-24 02:59 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2014-09-10 02:29 . 2014-07-07 02:06 728064 ----a-w- c:\windows\system32\kerberos.dll
2014-09-10 02:29 . 2014-07-07 02:06 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2014-09-10 02:29 . 2014-07-07 01:40 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2014-09-10 02:29 . 2014-07-07 01:40 550912 ----a-w- c:\windows\SysWow64\kerberos.dll
2014-09-10 02:29 . 2014-07-07 01:39 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2014-09-10 02:29 . 2014-09-05 02:10 578048 ----a-w- c:\windows\system32\aepdu.dll
2014-09-10 02:29 . 2014-09-05 02:05 424448 ----a-w- c:\windows\system32\aeinv.dll
2014-09-09 09:53 . 2014-09-09 09:53 -------- d--h--w- c:\windows\msdownld.tmp
2014-09-06 12:46 . 2014-09-24 14:47 -------- d-----w- c:\users\Andy\Traktor 2
2014-09-06 12:30 . 2014-09-27 11:46 -------- d-----w- c:\programdata\Native Instruments
2014-09-06 12:30 . 2014-09-27 11:40 -------- d-----w- c:\program files\Common Files\Native Instruments
2014-09-05 01:03 . 2014-09-25 04:36 -------- d-----w- c:\users\Andy\AppData\Local\Origin
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-28 17:26 . 2013-10-27 13:48 215416 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-09-28 17:26 . 2013-10-27 13:48 215416 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2014-09-28 09:52 . 2013-11-09 22:28 76152 ----a-w- c:\windows\system32\PnkBstrA.exe
2014-09-28 09:31 . 2013-10-27 13:48 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2014-09-25 04:38 . 2013-10-27 17:37 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2014-09-22 06:42 . 2010-11-21 03:27 278152 ------w- c:\windows\system32\MpSigStub.exe
2014-09-17 12:26 . 2013-11-06 18:32 1188440 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-09-10 10:52 . 2013-10-26 15:47 101694776 ----a-w- c:\windows\system32\MRT.exe
2014-08-23 02:07 . 2014-08-28 07:55 404480 ----a-w- c:\windows\system32\gdi32.dll
2014-08-23 01:45 . 2014-08-28 07:55 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2014-08-23 00:59 . 2014-08-28 07:55 3163648 ----a-w- c:\windows\system32\win32k.sys
2014-07-25 00:35 . 2014-07-25 00:35 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2014-07-24 21:47 . 2014-07-24 21:47 869544 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2014-07-17 16:05 . 2014-07-17 16:05 269008 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2014-07-17 16:05 . 2013-06-18 19:50 125584 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2014-07-14 02:02 . 2014-08-15 13:00 1216000 ----a-w- c:\windows\system32\rpcrt4.dll
2014-07-14 01:40 . 2014-08-15 13:00 664064 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2014-07-09 15:52 . 2014-07-09 15:52 127872 ----a-w- c:\windows\system32\amdhcp64.dll
2014-07-09 15:52 . 2014-07-09 15:52 117560 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2014-07-09 15:52 . 2014-07-09 15:52 78432 ----a-w- c:\windows\system32\atimpc64.dll
2014-07-09 15:52 . 2014-07-09 15:52 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2014-07-09 15:52 . 2014-07-09 15:52 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2014-07-09 15:52 . 2014-07-09 15:52 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2014-07-09 15:52 . 2013-12-06 22:04 143304 ----a-w- c:\windows\system32\atiuxp64.dll
2014-07-09 15:52 . 2014-07-09 15:52 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2014-07-09 15:52 . 2014-07-09 15:52 117584 ----a-w- c:\windows\system32\atiu9p64.dll
2014-07-09 15:52 . 2013-10-24 23:04 99520 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2014-07-09 15:52 . 2013-11-07 17:39 1330912 ----a-w- c:\windows\system32\aticfx64.dll
2014-07-09 15:52 . 2013-10-24 23:04 1110992 ----a-w- c:\windows\SysWow64\aticfx32.dll
2014-07-09 15:52 . 2013-12-06 22:00 10519584 ----a-w- c:\windows\system32\atidxx64.dll
2014-07-09 15:52 . 2014-07-09 15:52 9016760 ----a-w- c:\windows\SysWow64\atidxx32.dll
2014-07-09 15:51 . 2013-10-24 23:04 7102496 ----a-w- c:\windows\SysWow64\atiumdva.dll
2014-07-09 15:51 . 2013-10-24 23:04 6879016 ----a-w- c:\windows\SysWow64\atiumdag.dll
2014-07-09 15:51 . 2014-07-09 15:51 7892000 ----a-w- c:\windows\system32\atiumd6a.dll
2014-07-09 15:51 . 2014-07-09 15:51 8108312 ----a-w- c:\windows\system32\atiumd64.dll
2014-07-09 15:47 . 2014-07-09 15:47 276192 ----a-w- c:\windows\system32\drivers\amdacpksd.sys
2014-07-09 15:45 . 2014-07-09 15:45 15950848 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2014-07-09 15:35 . 2014-07-09 15:35 231424 ----a-w- c:\windows\system32\clinfo.exe
2014-07-09 15:35 . 2014-07-09 15:35 995342 ----a-w- c:\windows\SysWow64\amdocl_as32.exe
2014-07-09 15:35 . 2014-07-09 15:35 798734 ----a-w- c:\windows\SysWow64\amdocl_ld32.exe
2014-07-09 15:35 . 2014-07-09 15:35 1187342 ----a-w- c:\windows\system32\amdocl_as64.exe
2014-07-09 15:35 . 2014-07-09 15:35 1061902 ----a-w- c:\windows\system32\amdocl_ld64.exe
2014-07-09 15:35 . 2014-07-09 15:35 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2014-07-09 15:35 . 2014-07-09 15:35 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2014-07-09 15:35 . 2014-07-09 15:35 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2014-07-09 15:35 . 2014-07-09 15:35 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2014-07-09 15:35 . 2014-07-09 15:35 32876544 ----a-w- c:\windows\system32\amdocl64.dll
2014-07-09 15:34 . 2014-07-09 15:34 27843072 ----a-w- c:\windows\SysWow64\amdocl.dll
2014-07-09 15:34 . 2014-07-09 15:34 65024 ----a-w- c:\windows\system32\OpenCL.dll
2014-07-09 15:34 . 2014-07-09 15:34 58880 ----a-w- c:\windows\SysWow64\OpenCL.dll
2014-07-09 15:33 . 2013-10-24 22:24 27529216 ----a-w- c:\windows\system32\atio6axx.dll
2014-07-09 15:31 . 2014-07-09 15:31 127488 ----a-w- c:\windows\system32\mantle64.dll
2014-07-09 15:31 . 2014-07-09 15:31 113664 ----a-w- c:\windows\SysWow64\mantle32.dll
2014-07-09 15:31 . 2014-07-09 15:31 5225472 ----a-w- c:\windows\system32\amdmantle64.dll
2014-07-09 15:28 . 2014-07-09 15:28 366592 ----a-w- c:\windows\system32\atiapfxx.exe
2014-07-09 15:28 . 2014-07-09 15:28 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2014-07-09 15:28 . 2014-07-09 15:28 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2014-07-09 15:28 . 2014-07-09 15:28 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2014-07-09 15:28 . 2014-07-09 15:28 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2014-07-09 15:28 . 2014-07-09 15:28 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2014-07-09 15:28 . 2014-07-09 15:28 4180992 ----a-w- c:\windows\SysWow64\amdmantle32.dll
2014-07-09 15:28 . 2014-07-09 15:28 23028224 ----a-w- c:\windows\SysWow64\atioglxx.dll
2014-07-09 15:27 . 2014-07-09 15:27 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2014-07-09 15:26 . 2014-07-09 15:26 48128 ----a-w- c:\windows\system32\amdmmcl6.dll
2014-07-09 15:26 . 2014-07-09 15:26 37888 ----a-w- c:\windows\SysWow64\amdmmcl.dll
2014-07-09 15:25 . 2014-07-09 15:25 91648 ----a-w- c:\windows\system32\mantleaxl64.dll
2014-07-09 15:25 . 2014-07-09 15:25 85504 ----a-w- c:\windows\SysWow64\mantleaxl32.dll
2014-07-09 15:24 . 2014-07-09 15:24 442368 ----a-w- c:\windows\system32\atidemgy.dll
2014-07-09 15:24 . 2014-07-09 15:24 31232 ----a-w- c:\windows\system32\atimuixx.dll
2014-07-09 15:24 . 2014-07-09 15:24 588800 ----a-w- c:\windows\system32\atieclxx.exe
2014-07-09 15:24 . 2014-07-09 15:24 239616 ----a-w- c:\windows\system32\atiesrxx.exe
2014-07-09 15:23 . 2014-07-09 15:23 190976 ----a-w- c:\windows\system32\atitmm64.dll
2014-07-09 15:21 . 2014-07-09 15:21 826368 ----a-w- c:\windows\system32\coinst_14.20.dll
2014-07-09 15:20 . 2014-07-09 15:20 1207296 ----a-w- c:\windows\system32\atiadlxx.dll
2014-07-09 15:20 . 2014-04-18 01:09 898560 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2014-07-09 15:19 . 2014-07-09 15:19 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2014-07-09 15:19 . 2014-07-09 15:19 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2014-07-09 15:19 . 2013-10-24 21:30 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2014-07-09 15:19 . 2014-07-09 15:19 95744 ----a-w- c:\windows\system32\amdave64.dll
2014-07-09 15:19 . 2013-10-24 21:30 146944 ----a-w- c:\windows\system32\atig6txx.dll
2014-07-09 15:19 . 2014-07-09 15:19 90112 ----a-w- c:\windows\SysWow64\amdave32.dll
2014-07-09 15:19 . 2014-07-09 15:19 133632 ----a-w- c:\windows\SysWow64\atigktxx.dll
2014-07-09 15:19 . 2014-07-09 15:19 89088 ----a-w- c:\windows\system32\atisamu64.dll
2014-07-09 15:19 . 2014-07-09 15:19 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll
2014-07-09 15:19 . 2014-07-09 15:19 557056 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2014-07-09 15:17 . 2014-07-09 15:17 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2014-07-09 09:39 . 2014-07-09 09:39 51200 ----a-w- c:\windows\system32\kdbsdk64.dll
2014-07-09 09:37 . 2014-07-09 09:37 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
2014-07-09 02:03 . 2014-08-15 13:00 7168 ----a-w- c:\windows\system32\KBDYAK.DLL
2014-07-09 02:03 . 2014-08-15 13:00 7168 ----a-w- c:\windows\system32\KBDTAT.DLL
2014-07-09 02:03 . 2014-08-15 13:00 7168 ----a-w- c:\windows\system32\KBDRU1.DLL
2014-07-09 02:03 . 2014-08-15 13:00 6656 ----a-w- c:\windows\system32\KBDRU.DLL
2014-07-09 02:03 . 2014-08-15 13:00 7168 ----a-w- c:\windows\system32\KBDBASH.DLL
2014-07-09 01:31 . 2014-08-15 13:00 7168 ----a-w- c:\windows\SysWow64\KBDYAK.DLL
2014-07-09 01:31 . 2014-08-15 13:00 6656 ----a-w- c:\windows\SysWow64\KBDBASH.DLL
.
a

andy85

Legacy Member
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\users\Andy\AppData\Roaming\uTorrent\uTorrent.exe" [2014-08-25 1329744]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2014-09-23 1938112]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2014-09-16 3600216]
"DAEMON Tools Ultra Agent"="c:\program files (x86)\DAEMON Tools Ultra\DTAgent.exe" [2013-06-25 3128352]
"ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2013-11-20 59720]
"Dxtory Update Checker 2.0"="e:\dxtory2.0\UpdateChecker.exe" [2010-10-17 93696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-10-26 292088]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-07-09 767200]
"Razer Synapse"="c:\program files (x86)\Razer\Synapse\RzSynapse.exe" [2013-11-17 442712]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
ISCTSystray.lnk - c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2013-8-1 5545448]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.8.150\SSScheduler.exe [2014-4-9 332016]
SoftEther VPN Client Manager Startup.lnk - c:\program files\SoftEther VPN Client\vpncmgr_x64.exe /startup [2013-10-29 4498488]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux9"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R1 MpKslc8f2637a;MpKslc8f2637a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{40E87CBD-F31A-4090-87E7-429157BBD7E6}\MpKslc8f2637a.sys;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{40E87CBD-F31A-4090-87E7-429157BBD7E6}\MpKslc8f2637a.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 Disc Soft Bus Service;Disc Soft Bus Service;c:\program files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe;c:\program files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [x]
R3 GPU-Z;GPU-Z;c:\users\Andy\AppData\Local\Temp\GPU-Z.sys;c:\users\Andy\AppData\Local\Temp\GPU-Z.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSCamd64.sys [x]
R3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSRamd64.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.150\McCHSvc.exe;c:\program files\McAfee Security Scan\3.8.150\McCHSvc.exe [x]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys;c:\windows\SYSNATIVE\DRIVERS\MijXfilt.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Netwerkinspectie;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 RzFilter;RzFilter;c:\windows\system32\drivers\RzFilter.sys;c:\windows\SYSNATIVE\drivers\RzFilter.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO64A.SYS;c:\windows\SYSNATIVE\drivers\HWiNFO64A.SYS [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 ISCTAgent;Intel(R) Smart Connect Technology Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe ;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [x]
S2 RadeonPro Support Service;RadeonPro Support Service;c:\program files (x86)\RadeonPro\RadeonProSupport.exe;c:\program files (x86)\RadeonPro\RadeonProSupport.exe [x]
S2 RzOvlMon;Razer Overlay Subsystem Emergency Service;c:\program files (x86)\Razer\Core\64bit\rzovlmon.exe;c:\program files (x86)\Razer\Core\64bit\rzovlmon.exe [x]
S2 SEVPNCLIENT;SoftEther VPN Client;c:\program files\SoftEther VPN Client\vpnclient_x64.exe;c:\program files\SoftEther VPN Client\vpnclient_x64.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 dtscsibus;DAEMON Tools Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtscsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtscsibus.sys [x]
S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys;c:\windows\SYSNATIVE\DRIVERS\ikbevent.sys [x]
S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys;c:\windows\SYSNATIVE\DRIVERS\imsevent.sys [x]
S3 INETMON;INETMON;c:\windows\System32\Drivers\INETMON.sys;c:\windows\SYSNATIVE\Drivers\INETMON.sys [x]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD64.sys [x]
S3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 Neo_VPN;VPN Client Device Driver - VPN;c:\windows\system32\DRIVERS\Neo_0077.sys;c:\windows\SYSNATIVE\DRIVERS\Neo_0077.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 RzDxgk;RzDxgk;c:\windows\system32\drivers\RzDxgk.sys;c:\windows\SYSNATIVE\drivers\RzDxgk.sys [x]
S3 rzudd;Razer Mouse Driver;c:\windows\system32\DRIVERS\rzudd.sys;c:\windows\SYSNATIVE\DRIVERS\rzudd.sys [x]
.
.
--- Andere Services/Drivers In Geheugen ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-04-11 04:44 1077576 ----a-w- c:\program files (x86)\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe
.
Inhoud van de 'Gedeelde Taken' map
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoftEther VPN Client UI Helper"="c:\program files\SoftEther VPN Client\vpnclient_x64.exe" [2013-10-28 4308024]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2014-05-30 7575256]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-08-22 1331288]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2012-11-29 7406392]
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = Google
uDefault_Search_URL = hxxp://www.google.com
mDefault_Search_URL = Google
mDefault_Page_URL = Google
mStart Page = Google
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.istartsurf.com/web/?type=ds&ts=1411577853&from=smt&uid=SamsungXSSDX840XEVOX250GB_S1DBNSAD980717J&q={searchTerms}
mSearch Bar = hxxp://www.google.com
uSearchURL,(Default) = hxxp://www.google.com/
mCustomizeSearch = Google
mSearchAssistant = Google
TCP: DhcpNameServer = 195.130.130.132 195.130.131.132
.
- - - - ORPHANS VERWIJDERD - - - -
.
BHO-{B7AB83FA-8C19-79B3-6E8B-B08E1AF3C534} - c:\program files (x86)\ver4SpeeditUp\178.dll
Wow6432Node-HKCU-Run-Overwolf - c:\program files (x86)\Overwolf\Overwolf.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-DApp - c:\program files\PCDApp\start.vbs
Wow6432Node-HKLM-Run-beid - c:\program files (x86)\Belgium Identity Card\beid35gui.exe
BHO-{02B1C6AD-E2B5-A901-15C5-4D7B9E146695} - c:\program files (x86)\DDoWnload keeper\wrNR8MrL.x64.dll
BHO-{0A27E33C-0092-1E8D-0DFB-DFC62D769183} - c:\program files (x86)\Downloaadd keeper\0rYNAk.x64.dll
BHO-{24670E43-F4B2-0035-2354-8B32021B4C5B} - c:\program files (x86)\DowonloAd keuepeer\2Sem_Ul1B.x64.dll
BHO-{3BB13E36-916F-3FDD-B821-B2D84D5A2B4C} - c:\program files (x86)\YoutubeAdblocker\aqmvYCm.x64.dll
BHO-{49011927-13EA-E9EB-149A-EF72FD56011F} - c:\program files (x86)\DownolloAd KeePer\eq2jOD.x64.dll
BHO-{5ab6f859-94b9-4962-99cd-ba20c248180a} - c:\program files (x86)\GoSaavoe\kDyocL3Giu02oZ.x64.dll
BHO-{65639B8A-BFBA-C956-E699-B85C372E2B62} - c:\program files (x86)\Searcch-NNEwTTab\Ok8SJJRk.x64.dll
BHO-{68329F99-795C-B9EC-6ABE-E24BD757A94F} - c:\program files (x86)\YoutubeAdblocker\G9JRWo.x64.dll
BHO-{8053330A-4093-9FDF-4C0F-46A9FD5678D8} - c:\program files (x86)\Dowwnload keeeepeer\SMI.x64.dll
BHO-{873CF7C0-1A65-7239-F5FB-905ADDEF2835} - c:\program files (x86)\YoutubeAdblocker\3PkVE.x64.dll
BHO-{A1F485CF-2900-A2A4-4E5C-F2DB53893E8E} - c:\program files (x86)\YoutubeAdblocker\SyAhJnrCC.x64.dll
BHO-{B7AB83FA-8C19-79B3-6E8B-B08E1AF3C534} - c:\program files (x86)\ver4SpeeditUp\178_x64.dll
BHO-{CFEE1C03-8E99-ECF1-657B-CE622EAC1FD0} - c:\program files (x86)\Downlioad akeepere\KV1I.x64.dll
BHO-{DC4D367A-170E-FB0D-9649-8B983998398A} - c:\program files (x86)\Dowinlaoad keepeR\9M.x64.dll
BHO-{E4C623B7-7D74-7EEB-50E6-48DD999D6BD2} - c:\program files (x86)\YoutubeAdblocker\8.x64.dll
BHO-{eb12fb83-7dcf-4043-8367-a3cbdb7bfe8d} - c:\program files (x86)\YouUteubeeAdBloceke\wKLT5n4VuM3atq.x64.dll
BHO-{EF5E59BF-0349-6127-F6A2-0A0961D2A64C} - c:\program files (x86)\YoutubeAdblocker\GjbpwFJ.x64.dll
BHO-{F0C95299-8896-1BBB-4F68-5CEADEF5C7C0} - c:\program files (x86)\YoutubeAdblocker\9rzEHM.x64.dll
BHO-{FFE32E77-0D4D-604A-6C89-11CAC448AE15} - c:\program files (x86)\YoutubeAdblocker\zhcK7vpQcK.x64.dll
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
AddRemove-Activeris AntiMalware_is1 - c:\program files (x86)\Activeris AntiMalware\unins000.exe
AddRemove-Murdered - Soul Suspect_R.G. Mechanics_is1 - c:\users\Andy\AppData\Roaming\Murdered - Soul Suspect\Uninstall\unins000.exe
AddRemove-Q2FzdGxldmFuaWFMb3Jkc29mU2hhZG93Mg==_is1 - e:\steamlibrary\Castlevania Lords of Shadow 2\unins000.exe
AddRemove-V29sZmVuc3RlaW5UaGVOZXdPcmRlcg==_is1 - e:\steamlibrary\Wolfenstein The New Order\unins000.exe
AddRemove-{0886900B-B2F3-452C-B580-60F1253F7F80} - c:\programdata\{BD26D777-CA21-4BDD-A581-6BCFE4F0F941}\Controller Editor Setup PC.exe
AddRemove-{0B8565BA-BAD5-4732-B122-5FD78EFC50A9} - c:\programdata\{C6A355F5-168B-4EEC-AB7C-75594F783EDB}\Service Center Setup PC.exe
AddRemove-Java Runtime Environment Packages - c:\users\Andy\AppData\Roaming\0F1F1C2Y1H1P1C0I0T\Java Runtime Environment Packages\uninstaller.exe
AddRemove-Steam Packages - c:\users\Andy\AppData\Roaming\0F1F1C2Y1H1P1C0I0T\Steam Packages\uninstaller.exe
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,17,7f,37,fc,e7,e8,8b,47,92,2e,bf,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,17,7f,37,fc,e7,e8,8b,47,92,2e,bf,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\system32\PnkBstrA.exe
.
**************************************************************************
.
Voltooingstijd: 2014-09-29 02:07:50 - machine werd herstart
ComboFix-quarantined-files.txt 2014-09-29 00:07
.
Pre-Run: 139.551.719.424 bytes beschikbaar
Post-Run: 139.239.038.976 bytes beschikbaar
.
- - End Of File - - DD6D5F0FB136B95CB2CF1D6506AE164F
J

Juisterr

Legacy Member
Je reageert op een oud topic, daarbij ben ik hier niet meer actief.
Het archief is een bevroren moment uit een vorige versie van dit forum, met andere regels en andere bazen. Deze posts weerspiegelen op geen enkele manier onze huidige ideeën, waarden of wereldbeelden en zijn op sommige plaatsen gecensureerd wegens ontoelaatbaar. Veel zijn in een andere tijdsgeest gemaakt, al dan niet ironisch - zoals in het ironische subforum Off-Topic - en zouden op dit moment niet meer gepost (mogen) worden. Toch bieden we dit archief nog graag aan als informatiedatabank en naslagwerk. Lees er hier meer over of start een gesprek met anderen.
Terug
Bovenaan