• Hulpvragenden in dit forumonderdeel worden enkel geholpen door daartoe bevoegde teamleden.
    Dit is belangrijk, zodat de hulpvragende goed geholpen kan worden zonder (goedbedoelde) aanvullende berichten van andere leden.
    Reageren op andermans discussie is daarom uitgeschakeld.
  • De afgelopen dagen zijn er meerdere fora waarop bestaande accounts worden overgenomen door spammers. De gebruikersnamen en wachtwoorden zijn via een hack of een lek via andere sites buitgemaakt. Via have i been pwned? kan je controleren of jouw gegeven ook zijn buitgemaakt. Wijzig bij twijfel jouw wachtwoord of schakel de twee-staps-verificatie in.

popups

Status
Niet open voor verdere reacties.
berno

berno

Gevestigd lid
Lid geworden
12 jan 2007
Berichten
297
Waarderingsscore
0
krijg iedere keer andere webpagina,s oa trendy traveller. com beesearch buzzborn.com windows7 pc reparatie en ook veel popups van u hebt prijs gewonnen en u computer is traag hopelijk kan er iemand mij hepen groetjes
 
Topic verplaatst van Algemeen naar HijackThis.
Wacht op instructies van abbs of Abraham54.
 
ok is goed
 
We gaan kijken.

Download
51a5f5d096dae-icon_RSIT.png
RSIT van de onderstaande locaties en sla deze op het bureablad op.
Hier staat een beschrijving hoe u kunt kijken of u een 32 of 64 bit versie van Windows heeft.

RSIT Downloaden
RSIT Uitvoeren
  • Dubbelklik op RSIT.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Als u RSIT de eerste keer uitvoert zal HijackThis gedownload worden als deze niet aanwezig is, sta dit vervolgens toe.
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" geopend.
RSIT Logbestanden plaatsen
  • Post de inhoud van zowel het logbestand met de naam Log.txt als ook het logbestand met de naam "Info.txt in uw volgende bericht. (Deze logbestanden kunt u tevens terug vinden in de map "C:\rsit")"
 
Logfile of random's system information tool 1.10 (written by random/random)
Run by Gebruiker at 2014-11-10 09:33:21
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 24 GB (63%) free of 38 GB
Total RAM: 1536 MB (10% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:34:00, on 10-11-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16584)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\SOUNDMAN.EXE
C:\Windows\System32\wscript.exe
C:\Program Files\AppEnable\bin\AppEnable.BrowserAdapter.exe
C:\Program Files\AppEnable\bin\AppEnable.BOASHelper.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\AppEnable\bin\AppEnable.BOASPRT.exe
C:\Program Files\AppEnable\bin\AppEnable.BOASPRT.exe
C:\Program Files\AppEnable\bin\AppEnable.BOAS.exe
C:\Program Files\AppEnable\bin\AppEnable.BOAS.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\AppEnable\bin\AppEnable.BOASPRT.exe
C:\Program Files\AppEnable\bin\AppEnable.BOAS.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\AppEnable\bin\AppEnable.BOASPRT.exe
C:\Program Files\AppEnable\bin\AppEnable.BOAS.exe
C:\Program Files\AppEnable\bin\AppEnable.BOASPRT.exe
C:\Program Files\AppEnable\bin\AppEnable.BOAS.exe
C:\Users\Gebruiker\Downloads\RSIT(3).exe
C:\Program Files\trend micro\Gebruiker.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.nl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AppEnable - {23d4646c-263a-4e2d-a08c-6c704557973d} - C:\Program Files\AppEnable\AppEnablebho.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKCU\..\RunOnce: [WSE_Lasaoren] wscript /E:vbscript /B "C:\Users\GEBRUI~1\AppData\Roaming\WSE_Lasaoren\UpdateProc\bkup.dat"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: MaintainerSvc4.00.5030318 - Unknown owner - C:\ProgramData\e25f457c-9287-4f2d-b5a8-8cd714c55009\maintainer.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Update AppEnable - Unknown owner - C:\Program Files\AppEnable\updateAppEnable.exe
O23 - Service: Util AppEnable - Unknown owner - C:\Program Files\AppEnable\bin\utilAppEnable.exe

--
End of file - 3572 bytes

======Scheduled tasks folder======

C:\Windows\tasks\WSE_Lasaoren.job - C:\Users\GEBRUI~1\AppData\Roaming\WSE_LA~1\UPDATE~1\UPDATE~1.EXE /Check

=========Mozilla firefox=========

ProfilePath - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\r1cjzs73.default

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{23d4646c-263a-4e2d-a08c-6c704557973d}]
AppEnable - C:\Program Files\AppEnable\AppEnablebho.dll [2014-11-08 250096]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\Windows\SOUNDMAN.EXE [2009-04-14 604704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WSE_Lasaoren"=wscript /E:vbscript /B C:\Users\GEBRUI~1\AppData\Roaming\WSE_Lasaoren\UpdateProc\bkup.dat []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-10 09:28:44 ----SHD---- C:\Config.Msi
2014-11-10 09:10:28 ----D---- C:\Program Files\trend micro
2014-11-10 09:10:27 ----D---- C:\rsit
2014-11-09 14:06:12 ----A---- C:\Windows\system32\drivers\{60795004-05ce-4992-8494-ff332d4bc1e6}Gw.sys
2014-11-09 14:02:16 ----D---- C:\Program Files\Realtek AC97
2014-11-09 14:02:16 ----A---- C:\Windows\system32\RTLCPL.EXE
2014-11-09 14:02:15 ----A---- C:\Windows\system32\RTLCPAPI.dll
2014-11-09 14:02:15 ----A---- C:\Windows\system32\RtkPgExt.dll
2014-11-09 14:02:15 ----A---- C:\Windows\system32\RtkCfg.dll
2014-11-09 14:02:15 ----A---- C:\Windows\system32\RtkAPO.dll
2014-11-09 14:02:15 ----A---- C:\Windows\system32\drivers\RTKVAC.SYS
2014-11-09 14:02:15 ----A---- C:\Windows\SOUNDMAN.EXE
2014-11-09 14:02:15 ----A---- C:\Windows\alcupd.exe
2014-11-09 14:02:15 ----A---- C:\Windows\alcrmv.exe
2014-11-09 14:02:14 ----HD---- C:\Program Files\InstallShield Installation Information
2014-11-09 14:02:10 ----A---- C:\Windows\RtlExUpd.dll
2014-11-09 14:02:10 ----A---- C:\Windows\HideWin.exe
2014-11-09 14:02:03 ----D---- C:\Program Files\Common Files\InstallShield
2014-11-09 13:29:18 ----D---- C:\Program Files\Mozilla Firefox
2014-11-09 11:52:37 ----A---- C:\Windows\system32\drivers\{3b8bbf2f-2888-4db1-9de7-5eeb1a213421}Gw.sys
2014-11-09 10:14:48 ----D---- C:\Users\Gebruiker\AppData\Roaming\Malwarebytes
2014-11-09 10:14:02 ----D---- C:\ProgramData\Malwarebytes
2014-11-09 10:14:01 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-11-09 08:34:39 ----D---- C:\ProgramData\e25f457c-9287-4f2d-b5a8-8cd714c55009
2014-11-09 08:19:15 ----A---- C:\Windows\system32\shell32.dll
2014-11-09 08:19:14 ----A---- C:\Windows\system32\shdocvw.dll
2014-11-09 08:19:14 ----A---- C:\Windows\system32\consent.exe
2014-11-09 08:19:14 ----A---- C:\Windows\system32\authui.dll
2014-11-09 08:19:14 ----A---- C:\Windows\system32\appinfo.dll
2014-11-08 22:16:14 ----D---- C:\Program Files\AppEnable
2014-11-08 22:16:01 ----D---- C:\Users\Gebruiker\AppData\Roaming\WSE_Lasaoren
2014-11-08 21:09:26 ----D---- C:\Program Files\Intel
2014-11-08 21:08:39 ----D---- C:\ProgramData\Package Cache
2014-11-08 20:10:36 ----D---- C:\Program Files\FinalWire
2014-11-08 20:06:30 ----D---- C:\Program Files\QuickPar
2014-11-08 20:05:04 ----D---- C:\Users\Gebruiker\AppData\Roaming\WinRAR
2014-11-08 20:04:45 ----D---- C:\Program Files\WinRAR
2014-11-08 17:04:38 ----D---- C:\Users\Gebruiker\AppData\Roaming\GrabIt
2014-11-08 17:01:51 ----D---- C:\Program Files\GrabIt
2014-11-08 16:39:37 ----SHD---- C:\Windows\system32\AI_RecycleBin
2014-11-08 16:39:29 ----D---- C:\ProgramData\Spotnet
2014-11-08 16:39:29 ----D---- C:\Program Files\Spotnet
2014-11-08 16:32:10 ----D---- C:\Program Files\Microsoft.NET
2014-11-08 16:31:47 ----SHD---- C:\Windows\Installer
2014-11-08 16:30:39 ----D---- C:\Users\Gebruiker\AppData\Roaming\Spotnet
2014-11-08 15:30:06 ----D---- C:\Users\Gebruiker\AppData\Roaming\Thunderbird
2014-11-08 15:30:06 ----D---- C:\Users\Gebruiker\AppData\Roaming\Mozilla
2014-11-08 15:30:00 ----D---- C:\ProgramData\Mozilla
2014-11-08 15:30:00 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-08 15:29:57 ----D---- C:\Program Files\Mozilla Thunderbird
2014-11-08 13:47:55 ----D---- C:\Users\Gebruiker\AppData\Roaming\Identities
2014-11-08 13:47:37 ----SD---- C:\Users\Gebruiker\AppData\Roaming\Microsoft
2014-11-08 13:47:37 ----D---- C:\Users\Gebruiker\AppData\Roaming\Media Center Programs
2014-11-08 13:42:34 ----A---- C:\Windows\system32\wininet.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\wextract.exe
2014-11-08 13:42:34 ----A---- C:\Windows\system32\webcheck.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\vbscript.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\urlmon.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\url.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-11-08 13:42:34 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-11-08 13:42:34 ----A---- C:\Windows\system32\pngfilt.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\occache.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\msrating.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\msls31.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\mshtmler.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\mshtml.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\mshta.exe
2014-11-08 13:42:34 ----A---- C:\Windows\system32\msfeedssync.exe
2014-11-08 13:42:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\licmgr10.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\jscript9.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\jscript.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\inseng.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\imgutil.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\iexpress.exe
2014-11-08 13:42:34 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-08 13:42:34 ----A---- C:\Windows\system32\ieui.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\iesysprep.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\iesetup.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\iertutil.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\iernonce.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\iepeers.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\ieframe.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\ieapfltr.dat
2014-11-08 13:42:34 ----A---- C:\Windows\system32\ieakui.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\ieaksie.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\ieakeng.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-08 13:42:34 ----A---- C:\Windows\system32\icardie.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-08 13:42:34 ----A---- C:\Windows\system32\admparse.dll
2014-11-08 13:40:17 ----A---- C:\Windows\system32\wups2.dll
2014-11-08 13:40:17 ----A---- C:\Windows\system32\wucltux.dll
2014-11-08 13:40:17 ----A---- C:\Windows\system32\wuauclt.exe
2014-11-08 13:40:16 ----A---- C:\Windows\system32\wuaueng.dll
2014-11-08 13:39:56 ----A---- C:\Windows\system32\wups.dll
2014-11-08 13:39:56 ----A---- C:\Windows\system32\wudriver.dll
2014-11-08 13:39:55 ----A---- C:\Windows\system32\wuapi.dll
2014-11-08 13:39:44 ----A---- C:\Windows\system32\wuwebv.dll
2014-11-08 13:39:44 ----A---- C:\Windows\system32\wuapp.exe
2014-11-08 13:39:28 ----SHD---- C:\Recovery
2014-11-08 13:39:28 ----SHD---- C:\ProgramData\Sjablonen
2014-11-08 13:39:28 ----SHD---- C:\ProgramData\Menu Start
2014-11-08 13:39:28 ----SHD---- C:\ProgramData\Favorieten
2014-11-08 13:39:28 ----SHD---- C:\ProgramData\Documenten
2014-11-08 13:39:28 ----SHD---- C:\ProgramData\Bureaublad
2014-11-08 13:28:11 ----D---- C:\Windows\Prefetch
2014-11-08 13:27:22 ----ASH---- C:\pagefile.sys
2014-11-08 13:27:21 ----SHD---- C:\System Volume Information
2014-11-08 13:27:21 ----ASH---- C:\hiberfil.sys
2014-11-08 13:26:10 ----D---- C:\Windows\Panther
2014-11-08 13:25:58 ----RASH---- C:\BOOTSECT.BAK
2014-11-08 13:25:55 ----SHD---- C:\Boot

======List of files/folders modified in the last 1 month======

2014-11-10 09:33:55 ----RSD---- C:\Windows\assembly
2014-11-10 09:30:01 ----D---- C:\Windows\Temp
2014-11-10 09:29:43 ----D---- C:\Windows\System32
2014-11-10 09:29:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-10 09:29:42 ----D---- C:\Windows\inf
2014-11-10 09:25:47 ----D---- C:\Windows\winsxs
2014-11-10 09:16:01 ----D---- C:\Windows\system32\catroot2
2014-11-10 09:16:01 ----D---- C:\Windows\system32\catroot
2014-11-10 09:10:28 ----RD---- C:\Program Files
2014-11-10 09:10:12 ----D---- C:\Windows\Logs
2014-11-10 09:04:26 ----D---- C:\Windows\Microsoft.NET
2014-11-10 08:42:17 ----D---- C:\Windows
2014-11-10 08:35:33 ----A---- C:\Windows\win.ini
2014-11-10 08:31:50 ----D---- C:\Windows\system32\GroupPolicy
2014-11-10 08:30:28 ----D---- C:\Windows\system32\config
2014-11-10 08:30:06 ----D---- C:\Windows\system32\nl-NL
2014-11-09 23:42:04 ----D---- C:\Windows\SoftwareDistribution
2014-11-09 14:06:12 ----D---- C:\Windows\system32\drivers
2014-11-09 14:02:29 ----D---- C:\Windows\system32\DriverStore
2014-11-09 14:02:03 ----D---- C:\Program Files\Common Files
2014-11-09 11:16:41 ----D---- C:\Windows\system32\Tasks
2014-11-09 10:37:06 ----HD---- C:\ProgramData
2014-11-08 22:16:16 ----D---- C:\Windows\Tasks
2014-11-08 16:32:11 ----D---- C:\Windows\system32\en-US
2014-11-08 14:34:17 ----D---- C:\Windows\rescache
2014-11-08 13:56:37 ----D---- C:\Windows\system32\CodeIntegrity
2014-11-08 13:47:52 ----SHD---- C:\$Recycle.Bin
2014-11-08 13:47:37 ----RD---- C:\Users
2014-11-08 13:44:35 ----D---- C:\Windows\system32\wdi
2014-11-08 13:44:19 ----D---- C:\Program Files\Internet Explorer
2014-11-08 13:44:18 ----D---- C:\Windows\system32\wbem
2014-11-08 13:44:18 ----D---- C:\Windows\system32\migration
2014-11-08 13:44:18 ----D---- C:\Windows\PolicyDefinitions
2014-11-08 13:39:28 ----D---- C:\Windows\system32\Recovery
2014-11-08 13:39:28 ----D---- C:\Program Files\Windows NT
2014-11-08 13:39:24 ----D---- C:\Windows\debug
2014-11-08 13:35:31 ----SD---- C:\ProgramData\Microsoft
2014-11-08 13:31:54 ----D---- C:\Windows\system32\sysprep
2014-11-08 13:28:41 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2013-03-22 173400]
R1 {3b8bbf2f-2888-4db1-9de7-5eeb1a213421}Gw;{3b8bbf2f-2888-4db1-9de7-5eeb1a213421}Gw; C:\Windows\system32\drivers\{3b8bbf2f-2888-4db1-9de7-5eeb1a213421}Gw.sys [2014-11-08 43144]
R1 {60795004-05ce-4992-8494-ff332d4bc1e6}Gw;{60795004-05ce-4992-8494-ff332d4bc1e6}Gw; C:\Windows\system32\drivers\{60795004-05ce-4992-8494-ff332d4bc1e6}Gw.sys [2014-11-09 43144]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2013-03-22 389632]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS [2009-06-19 4172832]
R3 E100B;Intel(R) PRO-adapterstuurprogramma; C:\Windows\system32\DRIVERS\e100b325.sys [2009-07-13 159232]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver; \??\C:\Program Files\FinalWire\AIDA64 Extreme Edition\kerneld.x32 [2013-06-02 32592]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b06diag;Broadcom NetXtreme II Diag Driver; C:\Windows\system32\drivers\bxdiagx.sys [2012-03-08 75816]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BFN7x86;Bigfoot Networks Killer Gaming Service; C:\Windows\system32\drivers\Xeno7x86.sys [2012-02-22 130152]
S3 bxfcoe;bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [2012-02-22 150568]
S3 bxois;bxois; C:\Windows\system32\drivers\bxois.sys [2012-02-22 435240]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 IFCoEMP;IFCoEMP; C:\Windows\system32\drivers\ifM60x32.sys [2012-04-21 334096]
S3 IFCoEVB;IFCoEVB; C:\Windows\system32\drivers\ifP60X32.sys [2012-04-21 69392]
S3 ioatdma1;ioatdma1; C:\Windows\System32\Drivers\qd16032.sys [2009-11-16 36552]
S3 ioatdma2;Intel(R) QuickData Technology device ver.2; C:\Windows\System32\Drivers\qd26032.sys [2009-11-16 37576]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2013-03-22 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-20 25600]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2013-03-22 21504]
R2 MaintainerSvc4.00.5030318;MaintainerSvc4.00.5030318; C:\ProgramData\e25f457c-9287-4f2d-b5a8-8cd714c55009\maintainer.exe [2014-11-10 123632]
R2 Update AppEnable;Update AppEnable; C:\Program Files\AppEnable\updateAppEnable.exe [2014-11-10 526064]
R2 Util AppEnable;Util AppEnable; C:\Program Files\AppEnable\bin\utilAppEnable.exe [2014-11-10 526064]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2013-03-22 21504]
S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-06 114288]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2013-03-22 21504]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2013-03-22 21504]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------
 
Jouw Windows zit vol met adware.
En waarom kan ik geen antivirussoftware vinden, gebruik je soms niets of enkel MSE - Microsoft Security Essentials?
 
sorry ik moet microsoft security nog instaleren ik had pas nieuw windows geinstaleerd maar die popups zijn gekomen toen ik een programma had gedownload om drivers te instaleren maar dat lukte niet gelukkig hebt u mij kunnen helpen met de goede driver
 
Driverupdaters etc. staan meestal stijf van de adware. Gewoon kijken wat erin zit met speccy en dan bij de fabrikanten daarvan de drivers zoeken.
 
computer is compaq evo heb 360 internet security al gedownload en geinstaleerd heeft al veel gevonden en verwijderd
 
Compaq evo en welk type, want dat is belangrijk om op de HewlettPackard site naar drivers te zoeken.

Download
51f51523a23a0-OTL_Canned_Nieuw.png
OTL.exe

Downloadlokatie: Dit programma absoluut naar het bureaublad downloaden of anders naar het bureaublad verplaatsen!
Sluit voordat OTL.exe gaat scannen, eerst alle andere openstaande vensters!

OTL.exe gebruiken:
    • Windows 2000 en Windows XP: dubbelklik op OTL.exe.
    • Windows Vista, Windows 7 en Windows 8: via rechtsklik op OTL.exe en kies voor "Als Administrator uitvoeren".

  • Zet een vinkje bij Scan All Users, LOP Check en bij PURITY Check.
  • Kopieer onderstaande in de Code-kader staande tekst en plak deze in het kader onder
    4f9111a6d2a6c-OTL-2.png


    Code: 
    services.*
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
netsvcs
BASESERVICES
DRIVES
msconfig
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\system32\*.exe /lockedfiles
%PROGRAMFILES%\*
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
CREATERESTOREPOINT
  • Klik vervolgens op de knop
    50cd93c69be5b-OTL_-_Run_Scan_knop.jpg
    .
  • Verander verder geen andere instellingen in OTL, alleen tenzij ik hiervoor specifiek instructies geef.
  • De scan zal niet heel erg lang duren.
    • Er zullen twee Kladblok-vensters geopend worden wanneer de scan klaar is: OTL.Txt en Extras.txt.
    • Kopieer vervolgens de inhoud van zowel OTL.txt alsmede Extras.txt en plak die gegevens in je volgende bericht.


Notabene: indien het log niet in n bericht past, spreidt het dan over twee of meer berichten.
 
OTL logfile created on: 10-11-2014 15:18:04 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Gebruiker\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17358)
Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy

1,50 Gb Total Physical Memory | 0,83 Gb Available Physical Memory | 55,06% Memory free
3,00 Gb Paging File | 2,10 Gb Available in Paging File | 69,95% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 37,27 Gb Total Space | 22,67 Gb Free Space | 60,84% Space Free | Partition Type: NTFS
Drive D: | 76,33 Gb Total Space | 29,59 Gb Free Space | 38,77% Space Free | Partition Type: NTFS

Computer Name: GEBRUIK-6VVOLE3 | User Name: Gebruiker | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014-11-10 14:57:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Gebruiker\Downloads\OTL.exe
PRC - [2014-11-10 10:09:42 | 001,880,752 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
PRC - [2014-11-10 08:56:23 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2014-11-06 12:09:04 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2014-05-12 10:36:15 | 003,452,232 | ---- | M] (Qihu 360 Software Co., Ltd.) -- C:\Program Files\360\360 Internet Security\360sd.exe
PRC - [2014-05-07 08:47:39 | 000,235,848 | ---- | M] (Qihu 360 Software Co., Ltd.) -- C:\Program Files\360\360 Internet Security\360rps.exe
PRC - [2014-05-07 08:47:35 | 000,484,680 | ---- | M] (Qihu 360 Software Co., Ltd.) -- C:\Program Files\360\360 Internet Security\360rp.exe
PRC - [2014-04-30 07:06:00 | 000,596,808 | ---- | M] (Qihu 360 Software Co., Ltd.) -- C:\Program Files\360\360 Internet Security\safemon\360Tray.exe
PRC - [2014-04-23 08:27:09 | 000,236,360 | ---- | M] (Qihu 360 Software Co., Ltd.) -- C:\Program Files\360\360 Internet Security\deepscan\QHActiveDefense.exe
PRC - [2013-03-22 11:22:00 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009-07-14 02:14:46 | 000,115,200 | ---- | M] () -- \\?\C:\Windows\System32\wbem\WMIADAP.EXE
PRC - [2009-04-14 15:43:42 | 000,604,704 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SOUNDMAN.EXE


========== Modules (No Company Name) ==========

MOD - [2014-11-10 10:09:41 | 016,832,176 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_15_0_0_189.dll
MOD - [2014-11-06 12:09:28 | 003,649,648 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll


========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\AppEnable\bin\utilAppEnable.exe -- (Util AppEnable)
SRV - File not found [Auto | Stopped] -- C:\Program Files\AppEnable\updateAppEnable.exe -- (Update AppEnable)
SRV - File not found [Auto | Stopped] -- C:\ProgramData\e25f457c-9287-4f2d-b5a8-8cd714c55009\maintainer.exe -- (MaintainerSvc4.00.5030318)
SRV - [2014-11-10 10:09:42 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014-11-10 09:01:22 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014-11-06 12:09:21 | 000,114,288 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014-05-07 08:47:39 | 000,235,848 | ---- | M] (Qihu 360 Software Co., Ltd.) [Auto | Running] -- C:\Program Files\360\360 Internet Security\360rps.exe -- (360rp)
SRV - [2014-04-25 05:05:23 | 000,335,176 | ---- | M] (S.C. BitDefender S.R.L) [On_Demand | Stopped] -- C:\Program Files\360\360 Internet Security\scan.dll -- (scan)
SRV - [2014-04-23 08:27:09 | 000,236,360 | ---- | M] (Qihu 360 Software Co., Ltd.) [Auto | Running] -- C:\Program Files\360\360 Internet Security\deepscan\QHActiveDefense.exe -- (ZhuDongFangYu)
SRV - [2013-05-27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009-07-14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [File_System | On_Demand | Stopped] -- C:\Windows\system32\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV - [2014-05-14 10:40:59 | 000,022,992 | ---- | M] (Qihu 360 Software Co., Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\efimon.sys -- (EfiMon)
DRV - [2014-05-14 07:57:57 | 000,233,808 | ---- | M] (Qihu 360 Software Co., Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\qutmdrv.sys -- (qutmdserv)
DRV - [2014-05-14 07:44:03 | 000,043,984 | ---- | M] (Qihu 360 Software Co., Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\qutmipc.sys -- (qutmipc)
DRV - [2014-05-07 09:21:32 | 000,165,192 | ---- | M] (Qihu 360 Software Co., Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\360SelfProtection.sys -- (360SelfProtection)
DRV - [2014-04-29 04:50:31 | 000,035,920 | ---- | M] (Qihu 360 Software Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\360Camera.sys -- (360Camera)
DRV - [2014-04-28 11:27:24 | 000,192,080 | ---- | M] (Qihu 360 Software Co., Ltd.) [File_System | System | Running] -- C:\Windows\System32\drivers\360Box.sys -- (360Box)
DRV - [2014-04-23 09:32:52 | 000,056,912 | ---- | M] (Qihu 360 Software Co., Ltd.) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\360AvFlt.sys -- (360AvFlt)
DRV - [2014-04-21 14:22:20 | 000,054,856 | ---- | M] (360????) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hookport.sys -- (HookPort)
DRV - [2014-04-21 07:38:13 | 000,086,608 | ---- | M] (Qihu 360 Software Co., Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\360AntiHacker.sys -- (360AntiHacker)
DRV - [2014-04-14 07:41:51 | 000,165,968 | ---- | M] (Qihu 360 Software Co., Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\BAPIDRV.SYS -- (BAPIDRV)
DRV - [2013-06-02 21:21:20 | 000,032,592 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\FinalWire\AIDA64 Extreme Edition\kerneld.x32 -- (AIDA64Driver)
DRV - [2012-04-21 00:19:27 | 000,069,392 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ifP60x32.sys -- (IFCoEVB)
DRV - [2012-04-21 00:19:21 | 000,334,096 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ifM60x32.sys -- (IFCoEMP)
DRV - [2012-03-08 10:09:40 | 000,075,816 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bxdiagx.sys -- (b06diag)
DRV - [2012-02-22 17:33:32 | 000,435,240 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bxois.sys -- (bxois)
DRV - [2012-02-22 17:05:54 | 000,150,568 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bxfcoe.sys -- (bxfcoe)
DRV - [2012-02-22 15:27:02 | 000,130,152 | ---- | M] (Bigfoot Networks, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Xeno7x86.sys -- (BFN7x86)
DRV - [2010-11-20 22:29:34 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010-11-20 22:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 22:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 22:29:03 | 000,112,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - [2010-11-20 22:29:03 | 000,077,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV - [2010-11-20 22:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010-11-20 22:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 22:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 22:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010-11-20 22:29:03 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)
DRV - [2010-11-20 22:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 22:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009-11-16 15:27:59 | 000,037,576 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\qd26032.sys -- (ioatdma2)
DRV - [2009-11-16 15:27:57 | 000,036,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\qd16032.sys -- (ioatdma1)
DRV - [2009-07-14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009-06-19 03:45:02 | 004,172,832 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVAC.SYS -- (ALCXWDM)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_ir_14_45_ie&cd=2XzuyEtN2Y1L1QzutDtDtD0B0C0DtBtCyDtCtC0EtCtBtDtCtN0D0Tzu0StCtDyEtAtN1L2XzutAtFyCtFtCtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StC0EyB0CtDtC0BtCtGyEyD0A0EtGtD0E0DyBtGyD0DyDyBtGyEyE0CtDtDyC0AyCzyzz0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyC0EtAtAyB0AzytAtGtC0EtB0FtGyEtDyEzytGzyyBtAtBtGzy0F0B0Azy0F0BtA0DyD0CyE2Q&cr=1395289977&ir=
IE - HKLM\..\SearchScopes\{A25AC313-DD19-4238-ACA2-401D6BEE4321}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1952274102-203843243-2931807281-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.nl
IE - HKU\S-1-5-21-1952274102-203843243-2931807281-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.nl/
IE - HKU\S-1-5-21-1952274102-203843243-2931807281-1000\..\SearchScopes,DefaultScope = {A25AC313-DD19-4238-ACA2-401D6BEE4321}
IE - HKU\S-1-5-21-1952274102-203843243-2931807281-1000\..\SearchScopes\{A25AC313-DD19-4238-ACA2-401D6BEE4321}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-1952274102-203843243-2931807281-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: "false"
FF - prefs.js..extensions.enabledAddons: %7B60795004-05ce-4992-8494-ff332d4bc1e6%7D:1.0.1
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:33.0.3
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_189.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.0.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.0.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 31.2.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 31.2.0\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2014-11-08 15:30:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gebruiker\AppData\Roaming\mozilla\Extensions
[2014-11-09 14:39:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gebruiker\AppData\Roaming\mozilla\Firefox\Profiles\r1cjzs73.default\extensions
[2014-11-09 14:39:57 | 000,006,909 | ---- | M] () (No name found) -- C:\Users\Gebruiker\AppData\Roaming\mozilla\firefox\profiles\r1cjzs73.default\extensions\{60795004-05ce-4992-8494-ff332d4bc1e6}.xpi
[2014-11-09 13:29:20 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014-11-09 13:29:20 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

O1 HOSTS File: ([2009-06-10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [360sd] C:\Program Files\360\360 Internet Security\360sdrun.exe (Qihu 360 Software Co., Ltd.)
O4 - HKLM..\Run: [SoundMan] C:\Windows\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.54.40.25 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9810A8F9-9829-43CD-A3C9-2FBDB68C4DFD}: DhcpNameServer = 212.54.40.25 192.168.0.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found


CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2014-11-10 11:56:09 | 000,000,000 | -HSD | C] -- C:\360Rec
[2014-11-10 11:55:48 | 000,056,912 | ---- | C] (Qihu 360 Software Co., Ltd.) -- C:\Windows\System32\drivers\360AvFlt.sys
[2014-11-10 11:55:46 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\360SD
[2014-11-10 11:55:45 | 000,000,000 | ---D | C] -- C:\ProgramData\360SD
[2014-11-10 11:55:44 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\360safe
[2014-11-10 11:55:39 | 000,165,192 | ---- | C] (Qihu 360 Software Co., Ltd.) -- C:\Windows\System32\drivers\360SelfProtection.sys
[2014-11-10 11:55:37 | 000,000,000 | RHSD | C] -- C:\360SANDBOX
[2014-11-10 11:55:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Internet Security
[2014-11-10 11:55:36 | 000,192,080 | ---- | C] (Qihu 360 Software Co., Ltd.) -- C:\Windows\System32\drivers\360Box.sys
[2014-11-10 11:55:36 | 000,043,984 | ---- | C] (Qihu 360 Software Co., Ltd.) -- C:\Windows\System32\drivers\qutmipc.sys
[2014-11-10 11:54:53 | 000,233,808 | ---- | C] (Qihu 360 Software Co., Ltd.) -- C:\Windows\System32\drivers\qutmdrv.sys
[2014-11-10 11:54:51 | 000,165,968 | ---- | C] (Qihu 360 Software Co., Ltd.) -- C:\Windows\System32\drivers\BAPIDRV.SYS
[2014-11-10 11:54:48 | 000,086,608 | ---- | C] (Qihu 360 Software Co., Ltd.) -- C:\Windows\System32\drivers\360AntiHacker.sys
[2014-11-10 11:54:48 | 000,054,856 | ---- | C] (360????) -- C:\Windows\System32\drivers\hookport.sys
[2014-11-10 11:54:48 | 000,035,920 | ---- | C] (Qihu 360 Software Co., Ltd.) -- C:\Windows\System32\drivers\360Camera.sys
[2014-11-10 11:54:48 | 000,022,992 | ---- | C] (Qihu 360 Software Co., Ltd.) -- C:\Windows\System32\drivers\efimon.sys
[2014-11-10 11:54:05 | 000,000,000 | ---D | C] -- C:\Program Files\360
[2014-11-10 11:14:29 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014-11-10 10:39:03 | 011,154,256 | ---- | C] (Microsoft Corporation) -- C:\Users\Gebruiker\Desktop\MSEInstall_NL.exe
[2014-11-10 10:11:11 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\Macromedia
[2014-11-10 10:11:11 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\Macromedia
[2014-11-10 10:11:11 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\Adobe
[2014-11-10 10:10:00 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2014-11-10 10:09:42 | 000,701,104 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014-11-10 10:09:42 | 000,071,344 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014-11-10 10:09:38 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2014-11-10 10:08:48 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\Adobe
[2014-11-10 09:57:31 | 000,099,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2014-11-10 09:57:28 | 000,008,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2014-11-10 09:57:20 | 000,619,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2014-11-10 09:57:18 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsWpfWrp.exe
[2014-11-10 09:51:45 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2014-11-10 09:10:28 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014-11-10 09:10:27 | 000,000,000 | ---D | C] -- C:\rsit
[2014-11-10 09:01:31 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014-11-10 09:01:31 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\elshyph.dll
[2014-11-10 09:01:30 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsIntl.dll
[2014-11-10 09:01:29 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014-11-10 09:01:29 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2014-11-10 09:01:29 | 000,365,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014-11-10 09:01:29 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2014-11-10 09:01:29 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014-11-10 09:01:29 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2014-11-10 09:01:29 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014-11-10 09:01:29 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2014-11-10 09:01:29 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014-11-10 09:01:29 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014-11-10 09:01:28 | 002,017,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014-11-10 09:01:28 | 001,068,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014-11-10 09:01:28 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014-11-10 09:01:28 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014-11-10 09:01:28 | 000,331,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014-11-10 09:01:28 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2014-11-10 09:01:28 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2014-11-10 09:01:28 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2014-11-10 09:01:28 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2014-11-10 09:01:28 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014-11-10 09:01:28 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014-11-10 09:01:28 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2014-11-10 09:01:23 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014-11-10 09:01:23 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014-11-10 09:01:23 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2014-11-10 09:01:22 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014-11-10 09:01:22 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014-11-10 09:01:22 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014-11-10 09:01:22 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014-11-10 09:01:21 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2014-11-10 09:01:21 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2014-11-10 09:01:21 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2014-11-10 09:01:21 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2014-11-10 09:01:20 | 004,201,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014-11-10 09:01:20 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014-11-10 09:01:20 | 000,440,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014-11-10 09:01:20 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2014-11-10 09:01:20 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2014-11-10 09:01:20 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2014-11-10 09:01:20 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2014-11-10 08:58:31 | 003,973,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2014-11-10 08:58:31 | 003,918,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2014-11-10 08:58:31 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2014-11-10 08:58:31 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2014-11-10 08:58:31 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidapi.dll
[2014-11-10 08:58:31 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2014-11-10 08:58:31 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidcertstorecheck.exe
[2014-11-10 08:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apisetschema.dll
[2014-11-10 08:56:23 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2014-11-10 08:54:01 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2014-11-10 08:54:01 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2014-11-10 08:54:01 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014-11-10 08:54:01 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014-11-10 08:54:01 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014-11-10 08:54:01 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014-11-10 08:54:01 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2014-11-10 08:54:01 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014-11-10 08:54:01 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2014-11-10 08:54:01 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014-11-10 08:54:01 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014-11-10 08:54:00 | 003,419,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2014-11-10 08:54:00 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2014-11-10 08:54:00 | 001,247,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2014-11-10 08:54:00 | 001,080,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2014-11-10 08:54:00 | 000,604,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2014-11-10 08:54:00 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2014-11-10 08:54:00 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2014-11-10 08:54:00 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2014-11-10 08:54:00 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2014-11-10 08:54:00 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2014-11-10 08:53:59 | 001,988,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2014-11-10 08:53:59 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2014-11-10 08:53:59 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2014-11-10 08:48:48 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2014-11-09 18:58:35 | 000,448,512 | ---- | C] (OldTimer Tools) -- C:\Users\Gebruiker\Desktop\TFC(2).exe
[2014-11-09 14:07:03 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\QuickPar
[2014-11-09 14:02:16 | 010,975,264 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTLCPL.EXE
[2014-11-09 14:02:16 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97
[2014-11-09 14:02:15 | 019,036,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\ALSNDMGR.CPL
[2014-11-09 14:02:15 | 004,172,832 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVAC.SYS
[2014-11-09 14:02:15 | 002,510,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll
[2014-11-09 14:02:15 | 000,965,664 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll
[2014-11-09 14:02:15 | 000,604,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SOUNDMAN.EXE
[2014-11-09 14:02:15 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\alcupd.exe
[2014-11-09 14:02:15 | 000,223,776 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\alcrmv.exe
[2014-11-09 14:02:15 | 000,141,856 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCfg.dll
[2014-11-09 14:02:14 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2014-11-09 14:02:10 | 000,524,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2014-11-09 14:02:10 | 000,319,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\HideWin.exe
[2014-11-09 14:02:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2014-11-09 13:29:29 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\Mozilla
[2014-11-09 13:29:18 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014-11-09 10:14:48 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\Malwarebytes
[2014-11-09 10:14:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014-11-09 10:14:01 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2014-11-09 08:34:39 | 000,000,000 | ---D | C] -- C:\ProgramData\e25f457c-9287-4f2d-b5a8-8cd714c55009
[2014-11-09 08:24:28 | 002,358,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014-11-09 08:24:27 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2014-11-09 08:24:20 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2014-11-09 08:24:20 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2014-11-09 08:24:20 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2014-11-09 08:24:16 | 001,806,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2014-11-09 08:24:16 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll
[2014-11-09 08:24:16 | 000,102,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2014-11-09 08:24:10 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2014-11-09 08:24:10 | 000,240,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2014-11-09 08:24:09 | 000,187,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2014-11-09 08:24:07 | 000,156,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2014-11-09 08:24:07 | 000,081,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2014-11-09 08:23:23 | 000,657,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2014-11-09 08:23:23 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2014-11-09 08:23:14 | 000,919,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorets.dll
[2014-11-09 08:23:14 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2014-11-09 08:23:13 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprt.exe
[2014-11-09 08:23:13 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorekmts.dll
[2014-11-09 08:23:13 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2014-11-09 08:22:51 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2014-11-09 08:22:51 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2014-11-09 08:22:51 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2014-11-09 08:22:51 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2014-11-09 08:22:51 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2014-11-09 08:22:51 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2014-11-09 08:22:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2014-11-09 08:22:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2014-11-09 08:22:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2014-11-09 08:22:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2014-11-09 08:22:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2014-11-09 08:22:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2014-11-09 08:22:49 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2014-11-09 08:22:47 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2014-11-09 08:22:43 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2014-11-09 08:22:42 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2014-11-09 08:22:42 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2014-11-09 08:20:27 | 000,685,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2014-11-09 08:20:27 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2014-11-09 08:20:27 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2014-11-09 08:20:25 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll
[2014-11-09 08:20:25 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
[2014-11-09 08:20:25 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2014-11-08 22:16:14 | 000,000,000 | ---D | C] -- C:\Program Files\AppEnable
[2014-11-08 22:16:01 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\WSE_Lasaoren
[2014-11-08 22:11:59 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\Programs
[2014-11-08 21:10:51 | 002,619,768 | ---- | C] (Intel(R) Corporation) -- C:\Users\Gebruiker\Documents\SetupChipset.exe
[2014-11-08 21:10:31 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\ElevatedDiagnostics
[2014-11-08 21:09:26 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2014-11-08 21:08:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2014-11-08 20:10:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
[2014-11-08 20:10:36 | 000,000,000 | ---D | C] -- C:\Program Files\FinalWire
[2014-11-08 20:06:31 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar
[2014-11-08 20:06:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickPar
[2014-11-08 20:06:30 | 000,000,000 | ---D | C] -- C:\Program Files\QuickPar
[2014-11-08 20:05:04 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\WinRAR
[2014-11-08 20:04:47 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014-11-08 20:04:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014-11-08 20:04:45 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2014-11-08 17:04:38 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\GrabIt
[2014-11-08 17:01:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GrabIt
[2014-11-08 17:01:51 | 000,000,000 | ---D | C] -- C:\Program Files\GrabIt
[2014-11-08 16:41:19 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\Spotnet
[2014-11-08 16:39:37 | 000,000,000 | -HSD | C] -- C:\Windows\System32\AI_RecycleBin
[2014-11-08 16:39:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Spotnet
[2014-11-08 16:39:29 | 000,000,000 | ---D | C] -- C:\Program Files\Spotnet
[2014-11-08 16:32:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2014-11-08 16:31:47 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2014-11-08 16:30:39 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\Spotnet
[2014-11-08 15:30:06 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\Thunderbird
[2014-11-08 15:30:06 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\Thunderbird
[2014-11-08 15:30:06 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\Mozilla
[2014-11-08 15:30:00 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2014-11-08 15:30:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2014-11-08 15:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2014-11-08 13:48:05 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Searches
[2014-11-08 13:48:05 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014-11-08 13:48:05 | 000,000,000 | -H-D | C] -- C:\Users\Gebruiker\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2014-11-08 13:47:55 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\Identities
[2014-11-08 13:47:52 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Contacts
[2014-11-08 13:47:46 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014-11-08 13:47:39 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\VirtualStore
[2014-11-08 13:47:37 | 000,000,000 | --SD | C] -- C:\Users\Gebruiker\AppData\Roaming\Microsoft
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Videos
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Saved Games
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Pictures
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Music
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Links
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Favorites
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Downloads
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Documents
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\Desktop
[2014-11-08 13:47:37 | 000,000,000 | R--D | C] -- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\AppData\Local\Temporary Internet Files
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Sjablonen
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\SendTo
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Recent
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Netwerkprinteromgeving
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\NetHood
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Documents\Mijn video's
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Documents\Mijn muziek
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Mijn documenten
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Documents\Mijn afbeeldingen
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Menu Start
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Local Settings
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\AppData\Local\Geschiedenis
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Cookies
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\Application Data
[2014-11-08 13:47:37 | 000,000,000 | -HSD | C] -- C:\Users\Gebruiker\AppData\Local\Application Data
[2014-11-08 13:47:37 | 000,000,000 | -H-D | C] -- C:\Users\Gebruiker\AppData
[2014-11-08 13:47:37 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\Temp
[2014-11-08 13:47:37 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Local\Microsoft
[2014-11-08 13:47:37 | 000,000,000 | ---D | C] -- C:\Users\Gebruiker\AppData\Roaming\Media Center Programs
[2014-11-08 13:40:17 | 002,425,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2014-11-08 13:40:17 | 000,045,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2014-11-08 13:39:56 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2014-11-08 13:39:56 | 000,036,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2014-11-08 13:39:55 | 000,581,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2014-11-08 13:39:44 | 000,179,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2014-11-08 13:39:44 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2014-11-08 13:39:28 | 000,000,000 | -HSD | C] -- C:\ProgramData\Sjablonen
[2014-11-08 13:39:28 | 000,000,000 | -HSD | C] -- C:\Recovery
[2014-11-08 13:39:28 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mijn video's
[2014-11-08 13:39:28 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mijn muziek
[2014-11-08 13:39:28 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mijn afbeeldingen
[2014-11-08 13:39:28 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start
[2014-11-08 13:39:28 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favorieten
[2014-11-08 13:39:28 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documenten
[2014-11-08 13:39:28 | 000,000,000 | -HSD | C] -- C:\ProgramData\Bureaublad
[2014-11-08 13:28:11 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2014-11-08 13:27:21 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2014-11-08 13:26:10 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2014-11-08 13:25:55 | 000,000,000 | -HSD | C] -- C:\Boot

========== Files - Modified Within 30 Days ==========

[2014-11-10 15:20:59 | 000,025,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014-11-10 15:20:59 | 000,025,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014-11-10 15:20:47 | 000,742,826 | ---- | M] () -- C:\Windows\System32\perfh013.dat
[2014-11-10 15:20:47 | 000,651,672 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014-11-10 15:20:47 | 000,151,942 | ---- | M] () -- C:\Windows\System32\perfc013.dat
[2014-11-10 15:20:47 | 000,120,604 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014-11-10 15:16:00 | 000,000,306 | ---- | M] () -- C:\Windows\tasks\WSE_Lasaoren.job
[2014-11-10 15:12:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014-11-10 15:11:51 | 1207,607,296 | -HS- | M] () -- C:\hiberfil.sys
[2014-11-10 14:59:33 | 000,001,077 | ---- | M] () -- C:\Users\Gebruiker\Desktop\OTL - Snelkoppeling.lnk
[2014-11-10 14:41:00 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014-11-10 13:10:42 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014-11-10 12:43:09 | 000,027,648 | ---- | M] () -- C:\Users\Gebruiker\Documents\internet-security.html
[2014-11-10 11:55:37 | 000,001,127 | ---- | M] () -- C:\Users\Public\Desktop\360 Internet Security.lnk
[2014-11-10 11:05:53 | 000,270,080 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014-11-10 10:50:28 | 000,002,153 | ---- | M] () -- C:\Windows\epplauncher.mif
[2014-11-10 10:39:04 | 011,154,256 | ---- | M] (Microsoft Corporation) -- C:\Users\Gebruiker\Desktop\MSEInstall_NL.exe
[2014-11-10 10:21:29 | 000,000,468 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2014-11-10 10:09:42 | 000,701,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014-11-10 10:09:42 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014-11-10 09:01:31 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014-11-10 09:01:31 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\elshyph.dll
[2014-11-10 09:01:30 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsIntl.dll
[2014-11-10 09:01:29 | 000,678,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014-11-10 09:01:29 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2014-11-10 09:01:29 | 000,365,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014-11-10 09:01:29 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2014-11-10 09:01:29 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014-11-10 09:01:29 | 000,182,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2014-11-10 09:01:29 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014-11-10 09:01:29 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2014-11-10 09:01:29 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014-11-10 09:01:29 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014-11-10 09:01:28 | 002,017,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014-11-10 09:01:28 | 001,068,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014-11-10 09:01:28 | 000,677,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014-11-10 09:01:28 | 000,607,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014-11-10 09:01:28 | 000,331,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014-11-10 09:01:28 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2014-11-10 09:01:28 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2014-11-10 09:01:28 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2014-11-10 09:01:28 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2014-11-10 09:01:28 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014-11-10 09:01:28 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014-11-10 09:01:28 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2014-11-10 09:01:28 | 000,016,284 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2014-11-10 09:01:23 | 002,724,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014-11-10 09:01:23 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014-11-10 09:01:23 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2014-11-10 09:01:22 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014-11-10 09:01:22 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014-11-10 09:01:22 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014-11-10 09:01:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014-11-10 09:01:21 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2014-11-10 09:01:21 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2014-11-10 09:01:21 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2014-11-10 09:01:21 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2014-11-10 09:01:20 | 004,201,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014-11-10 09:01:20 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014-11-10 09:01:20 | 000,440,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014-11-10 09:01:20 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2014-11-10 09:01:20 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2014-11-10 09:01:20 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2014-11-10 09:01:20 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2014-11-10 08:58:31 | 003,973,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2014-11-10 08:58:31 | 003,918,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2014-11-10 08:58:31 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2014-11-10 08:58:31 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2014-11-10 08:58:31 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidapi.dll
[2014-11-10 08:58:31 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2014-11-10 08:58:31 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidcertstorecheck.exe
[2014-11-10 08:58:31 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apisetschema.dll
[2014-11-10 08:56:23 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2014-11-10 08:54:01 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2014-11-10 08:54:01 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2014-11-10 08:54:01 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014-11-10 08:54:01 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014-11-10 08:54:01 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014-11-10 08:54:01 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014-11-10 08:54:01 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2014-11-10 08:54:01 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014-11-10 08:54:01 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2014-11-10 08:54:01 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014-11-10 08:54:01 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014-11-10 08:54:00 | 003,419,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2014-11-10 08:54:00 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2014-11-10 08:54:00 | 001,247,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2014-11-10 08:54:00 | 001,080,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2014-11-10 08:54:00 | 000,604,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2014-11-10 08:54:00 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2014-11-10 08:54:00 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2014-11-10 08:54:00 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2014-11-10 08:54:00 | 000,207,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2014-11-10 08:54:00 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2014-11-10 08:53:59 | 001,988,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2014-11-10 08:53:59 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2014-11-10 08:53:59 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2014-11-10 08:48:48 | 001,505,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2014-11-09 18:58:47 | 000,448,512 | ---- | M] (OldTimer Tools) -- C:\Users\Gebruiker\Desktop\TFC(2).exe
[2014-11-09 14:02:10 | 000,319,488 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\HideWin.exe
[2014-11-09 13:29:22 | 000,001,105 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014-11-09 08:16:02 | 000,000,044 | ---- | M] () -- C:\Users\Gebruiker\AppData\Roaming\WB.CFG
[2014-11-08 21:17:54 | 000,226,516 | ---- | M] () -- C:\Users\Gebruiker\Documents\29802801.pdf
[2014-11-08 21:10:52 | 002,619,768 | ---- | M] (Intel(R) Corporation) -- C:\Users\Gebruiker\Documents\SetupChipset.exe
[2014-11-08 20:10:41 | 000,001,189 | ---- | M] () -- C:\Users\Gebruiker\Desktop\AIDA64 Extreme Edition.lnk
[2014-11-08 20:06:31 | 000,000,965 | ---- | M] () -- C:\Users\Gebruiker\Desktop\QuickPar.lnk
[2014-11-08 18:58:15 | 000,001,147 | ---- | M] () -- C:\Users\Gebruiker\Desktop\Continuar con la instalacin de AIDA32 3.94.2.lnk
[2014-11-08 17:01:52 | 000,000,937 | ---- | M] () -- C:\Users\Gebruiker\Desktop\GrabIt.lnk
[2014-11-08 16:39:33 | 000,001,001 | ---- | M] () -- C:\Users\Public\Desktop\Spotnet.lnk
[2014-11-08 15:30:30 | 000,002,056 | ---- | M] () -- C:\Users\Gebruiker\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk
[2014-11-08 15:30:01 | 000,002,032 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2014-11-08 13:50:38 | 000,001,395 | ---- | M] () -- C:\Users\Gebruiker\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2014-11-08 13:41:27 | 000,339,826 | RHS- | M] () -- C:\IWTUL
[2014-11-08 13:35:28 | 000,202,236 | ---- | M] () -- C:\Windows\System32\license.rtf
[2014-11-08 13:25:58 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK

========== Files Created - No Company Name ==========

[2014-11-10 14:59:33 | 000,001,077 | ---- | C] () -- C:\Users\Gebruiker\Desktop\OTL - Snelkoppeling.lnk
[2014-11-10 13:10:42 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014-11-10 12:43:07 | 000,027,648 | ---- | C] () -- C:\Users\Gebruiker\Documents\internet-security.html
[2014-11-10 11:55:37 | 000,001,127 | ---- | C] () -- C:\Users\Public\Desktop\360 Internet Security.lnk
[2014-11-10 10:43:55 | 000,002,153 | ---- | C] () -- C:\Windows\epplauncher.mif
[2014-11-10 10:21:24 | 000,000,468 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2014-11-10 10:09:44 | 000,000,940 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014-11-10 09:01:28 | 000,016,284 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2014-11-09 14:02:16 | 000,141,016 | ---- | C] () -- C:\Windows\System32\ALSNDMGR.WAV
[2014-11-09 14:02:15 | 000,154,144 | ---- | C] () -- C:\Windows\System32\RTLCPAPI.dll
[2014-11-09 13:29:22 | 000,001,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2014-11-09 13:29:22 | 000,001,105 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014-11-09 08:16:02 | 000,000,044 | ---- | C] () -- C:\Users\Gebruiker\AppData\Roaming\WB.CFG
[2014-11-08 22:16:16 | 000,000,306 | ---- | C] () -- C:\Windows\tasks\WSE_Lasaoren.job
[2014-11-08 21:17:54 | 000,226,516 | ---- | C] () -- C:\Users\Gebruiker\Documents\29802801.pdf
[2014-11-08 20:10:41 | 000,001,189 | ---- | C] () -- C:\Users\Gebruiker\Desktop\AIDA64 Extreme Edition.lnk
[2014-11-08 20:06:31 | 000,000,965 | ---- | C] () -- C:\Users\Gebruiker\Desktop\QuickPar.lnk
[2014-11-08 18:58:15 | 000,001,147 | ---- | C] () -- C:\Users\Gebruiker\Desktop\Continuar con la instalacin de AIDA32 3.94.2.lnk
[2014-11-08 17:01:52 | 000,000,937 | ---- | C] () -- C:\Users\Gebruiker\Desktop\GrabIt.lnk
[2014-11-08 16:39:33 | 000,001,001 | ---- | C] () -- C:\Users\Public\Desktop\Spotnet.lnk
[2014-11-08 15:30:01 | 000,002,056 | ---- | C] () -- C:\Users\Gebruiker\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk
[2014-11-08 15:30:01 | 000,002,044 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
[2014-11-08 15:30:01 | 000,002,032 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2014-11-08 13:50:38 | 000,001,395 | ---- | C] () -- C:\Users\Gebruiker\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2014-11-08 13:48:07 | 000,001,401 | ---- | C] () -- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014-11-08 13:47:37 | 000,000,290 | ---- | C] () -- C:\Users\Gebruiker\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2014-11-08 13:47:37 | 000,000,272 | ---- | C] () -- C:\Users\Gebruiker\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2014-11-08 13:41:26 | 000,339,826 | RHS- | C] () -- C:\IWTUL
[2014-11-08 13:33:33 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2014-11-08 13:33:25 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2014-11-08 13:27:21 | 1207,607,296 | -HS- | C] () -- C:\hiberfil.sys
[2014-11-08 13:25:58 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2014-11-08 13:25:56 | 000,383,786 | RHS- | C] () -- C:\bootmgr
[2013-03-22 11:30:32 | 000,082,944 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2013-03-22 11:30:32 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2013-03-22 10:45:42 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll

========== ZeroAccess Check ==========

[2009-07-14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014-03-25 03:18:50 | 012,877,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 22:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014-11-10 14:57:54 | 000,000,000 | ---D | M] -- C:\Users\Gebruiker\AppData\Roaming\360safe
[2014-11-10 11:55:46 | 000,000,000 | ---D | M] -- C:\Users\Gebruiker\AppData\Roaming\360SD
[2014-11-08 17:06:57 | 000,000,000 | ---D | M] -- C:\Users\Gebruiker\AppData\Roaming\GrabIt
[2014-11-08 16:41:04 | 000,000,000 | ---D | M] -- C:\Users\Gebruiker\AppData\Roaming\Spotnet
[2014-11-08 15:30:06 | 000,000,000 | ---D | M] -- C:\Users\Gebruiker\AppData\Roaming\Thunderbird
[2014-11-08 22:16:14 | 000,000,000 | ---D | M] -- C:\Users\Gebruiker\AppData\Roaming\WSE_Lasaoren

========== Purity Check ==========



========== Custom Scans ==========

< services.* >
[2009-07-14 05:53:46 | 000,005,842 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009-07-14 05:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2014-11-08 22:16:16 | 000,000,306 | ---- | C] () -- C:\Windows\Tasks\WSE_Lasaoren.job
[2014-11-10 10:09:44 | 000,000,940 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< explorer.exe >

< winlogon.exe >

< Userinit.exe >

< svchost.exe >

========== Base Services ==========
SRV - [2009-07-14 02:14:53 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2013-02-27 05:27:08 | 000,047,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2009-07-14 02:14:11 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2013-03-22 11:18:23 | 000,586,240 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2013-10-12 02:55:55 | 000,496,128 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2014-04-12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009-07-14 02:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2013-03-22 11:09:40 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2013-10-05 02:52:03 | 000,142,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2013-03-22 11:30:30 | 000,376,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2013-03-22 11:26:05 | 000,256,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2013-03-22 11:13:17 | 000,132,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2009-07-14 02:15:13 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009-07-14 02:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2013-03-22 11:36:05 | 000,300,032 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2010-11-20 22:29:07 | 000,350,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV - [2013-03-22 11:26:55 | 000,314,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2009-07-14 02:15:41 | 000,049,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2009-07-14 02:16:03 | 000,280,576 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2009-07-14 02:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2013-03-22 11:30:29 | 000,242,176 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2009-07-14 02:16:11 | 000,019,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2013-03-22 11:12:36 | 000,293,888 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2013-03-22 11:30:28 | 000,317,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2014-04-12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV - [2009-07-14 02:16:12 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2013-03-22 11:01:43 | 000,286,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2013-03-22 11:30:30 | 000,376,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2013-03-22 11:03:14 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2014-04-12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009-07-14 02:16:20 | 000,073,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2013-03-22 11:30:26 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2013-03-22 10:36:30 | 000,329,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV - [2013-03-22 11:34:16 | 000,751,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2013-03-22 11:26:25 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2010-08-22 12:19:15 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2013-03-22 11:30:28 | 000,176,128 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2013-03-22 11:38:03 | 001,025,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2013-03-22 11:28:29 | 000,473,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2013-03-22 11:28:29 | 000,473,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2010-11-20 22:29:49 | 000,125,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2013-05-27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013-03-22 11:37:38 | 001,089,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (eventlog)
SRV - [2010-11-20 22:29:06 | 000,566,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2010-11-20 22:29:41 | 000,463,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiaservc.dll -- (StiSvc)
SRV - [2010-11-20 22:29:20 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009-07-14 02:16:19 | 000,168,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2014-05-14 17:23:32 | 001,973,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2013-03-22 11:30:30 | 000,215,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009-07-14 02:16:19 | 000,829,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2010-11-20 22:29:07 | 000,084,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)

========== Drive Information ==========

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: Maxtor 6E040L0 ATA Device
Partitions: 1
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: Maxtor 6Y080P0 ATA Device
Partitions: 1
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 37,00GB
Starting Offset: 32256
Hidden sectors: 0


DeviceID: Disk #1, Partition #0
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 76,00GB
Starting Offset: 32256
Hidden sectors: 0


< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2014-04-21 07:38:13 | 000,086,608 | ---- | M] (Qihu 360 Software Co., Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\360AntiHacker.sys
[2014-04-23 09:32:52 | 000,056,912 | ---- | M] (Qihu 360 Software Co., Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\360AvFlt.sys
[2014-04-28 11:27:24 | 000,192,080 | ---- | M] (Qihu 360 Software Co., Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\360Box.sys
[2014-04-29 04:50:31 | 000,035,920 | ---- | M] (Qihu 360 Software Co., Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\360Camera.sys
[2014-05-07 09:21:32 | 000,165,192 | ---- | M] (Qihu 360 Software Co., Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\360SelfProtection.sys
[2014-04-14 07:41:51 | 000,165,968 | ---- | M] (Qihu 360 Software Co., Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\BAPIDRV.SYS
[2014-05-14 10:40:59 | 000,022,992 | ---- | M] (Qihu 360 Software Co., Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\efimon.sys
[2014-04-21 14:22:20 | 000,054,856 | ---- | M] (360????) Unable to obtain MD5 -- C:\Windows\system32\drivers\hookport.sys
[2014-05-14 07:57:57 | 000,233,808 | ---- | M] (Qihu 360 Software Co., Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\qutmdrv.sys
[2014-05-14 07:44:03 | 000,043,984 | ---- | M] (Qihu 360 Software Co., Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\qutmipc.sys

< %systemroot%\system32\*.exe /lockedfiles >

< %PROGRAMFILES%\* >
[2009-07-14 05:41:57 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2014-11-06 12:54:14 | 000,905,712 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2014-11-06 12:54:14 | 000,905,712 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2014-11-06 12:54:14 | 000,905,712 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" [2014-11-06 12:09:04 | 000,275,568 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2014-11-06 12:09:04 | 000,275,568 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2014-11-06 12:09:04 | 000,275,568 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\System32\ie4uinit.exe" -show [2014-11-10 09:01:28 | 000,677,888 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\System32\ie4uinit.exe" -reinstall [2014-11-10 09:01:28 | 000,677,888 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\System32\ie4uinit.exe" -hide [2014-11-10 09:01:28 | 000,677,888 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2014-11-10 09:01:29 | 000,812,736 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: iexplore.exe

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2014-11-06 12:54:14 | 000,905,712 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2014-11-06 12:54:14 | 000,905,712 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2014-11-06 12:54:14 | 000,905,712 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" [2014-11-06 12:09:04 | 000,275,568 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2014-11-06 12:09:04 | 000,275,568 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2014-11-06 12:09:04 | 000,275,568 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\System32\ie4uinit.exe" -show [2014-11-10 09:01:28 | 000,677,888 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\System32\ie4uinit.exe" -reinstall [2014-11-10 09:01:28 | 000,677,888 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\System32\ie4uinit.exe" -hide [2014-11-10 09:01:28 | 000,677,888 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2014-11-10 09:01:29 | 000,812,736 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: iexplore.exe

< End of report >
 
Ik mis het tweede log, genaamd Extra's.txt.

En kijk op de stickers van jouw Compaq PC om erachter te komen welk tye EVO het nu is, want daar zijn velen van!
 
OTL Extras logfile created on: 10-11-2014 15:18:04 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Gebruiker\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17358)
Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy

1,50 Gb Total Physical Memory | 0,83 Gb Available Physical Memory | 55,06% Memory free
3,00 Gb Paging File | 2,10 Gb Available in Paging File | 69,95% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 37,27 Gb Total Space | 22,67 Gb Free Space | 60,84% Space Free | Partition Type: NTFS
Drive D: | 76,33 Gb Total Space | 29,59 Gb Free Space | 38,77% Space Free | Partition Type: NTFS

Computer Name: GEBRUIK-6VVOLE3 | User Name: Gebruiker | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1952274102-203843243-2931807281-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{4365AA1E-8100-40A1-8667-B4BF262FEB56}" = protocol=17 | dir=in | app=c:\program files\360\360 internet security\safemon\360tray.exe |
"{6E5E7FD7-8D49-4079-9898-D1E1F0C8353E}" = protocol=6 | dir=in | app=c:\program files\360\360 internet security\safemon\360tray.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{2617FA1F-0C04-3ABB-AF64-7D5B6620C341}" = Microsoft .NET Framework 4 Client Profile NLD Language Pack
"{31A358AF-DCC5-4455-93BC-146FE354FF6F}" = Spotnet
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4F2D3995-1EC5-3C05-B7E5-3449F802E6DE}" = Microsoft .NET Framework 4 Extended NLD Language Pack
"{74307B42-C023-46C8-B9F8-1BDD3A043973}" = Intel(R) Chipset Device Software
"{e48a2f61-851a-4155-82f9-af1b04db8c3b}" = Software voor Intel Chipset-apparaten
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"360 Internet Security" = 360 Internet Security
"Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin
"AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v3.00
"AppEnable" = AppEnable
"GrabIt_is1" = GrabIt 1.7.2 Beta 6 (build 1008)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile NLD Language Pack" = Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended NLD Language Pack" = Taalpakket voor Microsoft .NET Framework 4 Extended - NLD
"Mozilla Firefox 33.0.3 (x86 nl)" = Mozilla Firefox 33.0.3 (x86 nl)
"Mozilla Thunderbird 31.2.0 (x86 nl)" = Mozilla Thunderbird 31.2.0 (x86 nl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"QuickPar" = QuickPar 0.9
"WinRAR archiver" = WinRAR 5.00 (32-bit)

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 10-11-2014 5:50:31 | Computer Name = GEBRUIK-6VVOLE3 | Source = Microsoft Security Client Setup | ID = 100
Description = HRESULT:0x8004FF00 Description:Cannot complete the Microsoft Security
Essentials Setup Wizard. Another Windows installer is already running on your computer.
Please close the other program or restart your computer, and then try running
this wizard again. Error code:0x8004FF00.

Error - 10-11-2014 6:02:19 | Computer Name = GEBRUIK-6VVOLE3 | Source = WinMgmt | ID = 10
Description =

Error - 10-11-2014 6:06:33 | Computer Name = GEBRUIK-6VVOLE3 | Source = WinMgmt | ID = 10
Description =

Error - 10-11-2014 6:08:55 | Computer Name = GEBRUIK-6VVOLE3 | Source = WinMgmt | ID = 10
Description =

Error - 10-11-2014 6:21:09 | Computer Name = GEBRUIK-6VVOLE3 | Source = WinMgmt | ID = 10
Description =

Error - 10-11-2014 6:48:05 | Computer Name = GEBRUIK-6VVOLE3 | Source = Application Error | ID = 1000
Description = Naam van toepassing met fout: plugin-container.exe, versie: 33.0.3.5422,
tijdstempel: 0x545b5277 Naam van module met fout: mozalloc.dll, versie: 33.0.3.5422,
tijdstempel: 0x545b2aeb Uitzonderingscode: 0x80000003 Foutoffset: 0x00001425 Id van
proces met fout: 0xba4 Starttijd van toepassing met fout: 0x01cffcd06d54890c Pad
naar toepassing met fout: C:\Program Files\Mozilla Firefox\plugin-container.exe Pad
naar module met fout: C:\Program Files\Mozilla Firefox\mozalloc.dll Rapport-id:
0c3da09b-68c7-11e4-a009-000bcd21511e

Error - 10-11-2014 7:03:17 | Computer Name = GEBRUIK-6VVOLE3 | Source = Application Error | ID = 1000
Description = Naam van toepassing met fout: firefox.exe, versie: 33.0.3.5422, tijdstempel:
0x545b5201 Naam van module met fout: ntdll.dll, versie: 6.1.7601.22436, tijdstempel:
0x521eaab0 Uitzonderingscode: 0xc0000005 Foutoffset: 0x000533bf Id van proces met
fout: 0x950 Starttijd van toepassing met fout: 0x01cffcd454f93410 Pad naar toepassing
met fout: C:\Program Files\Mozilla Firefox\firefox.exe Pad naar module met fout:
C:\Windows\SYSTEM32\ntdll.dll Rapport-id: 2c35991c-68c9-11e4-a009-000bcd21511e

Error - 10-11-2014 7:09:23 | Computer Name = GEBRUIK-6VVOLE3 | Source = Application Error | ID = 1000
Description = Naam van toepassing met fout: thunderbird.exe, versie: 31.2.0.5398,
tijdstempel: 0x543ae92c Naam van module met fout: 6079500405ce49928494.dll, versie:
0.0.0.0, tijdstempel: 0x5447a20e Uitzonderingscode: 0xc0000005 Foutoffset: 0x0001a5ab
Id
van proces met fout: 0xfec Starttijd van toepassing met fout: 0x01cffcd037b11d84
Pad
naar toepassing met fout: C:\Program Files\Mozilla Thunderbird\thunderbird.exe Pad
naar module met fout: C:\Program Files\AppEnable\bin\6079500405ce49928494.dll Rapport-id:
067bc2ae-68ca-11e4-a009-000bcd21511e

Error - 10-11-2014 7:13:57 | Computer Name = GEBRUIK-6VVOLE3 | Source = WinMgmt | ID = 10
Description =

Error - 10-11-2014 10:13:39 | Computer Name = GEBRUIK-6VVOLE3 | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 10-11-2014 6:23:04 | Computer Name = GEBRUIK-6VVOLE3 | Source = DCOM | ID = 10016
Description =

Error - 10-11-2014 6:23:08 | Computer Name = GEBRUIK-6VVOLE3 | Source = DCOM | ID = 10016
Description =

Error - 10-11-2014 6:51:56 | Computer Name = GEBRUIK-6VVOLE3 | Source = DCOM | ID = 10016
Description =

Error - 10-11-2014 6:53:19 | Computer Name = GEBRUIK-6VVOLE3 | Source = DCOM | ID = 10016
Description =

Error - 10-11-2014 7:13:10 | Computer Name = GEBRUIK-6VVOLE3 | Source = Service Control Manager | ID = 7000
Description = De MaintainerSvc4.00.5030318-service kan vanwege de volgende fout
niet worden gestart: %%2

Error - 10-11-2014 7:13:10 | Computer Name = GEBRUIK-6VVOLE3 | Source = Service Control Manager | ID = 7000
Description = De Update AppEnable-service kan vanwege de volgende fout niet worden
gestart: %%2

Error - 10-11-2014 7:13:10 | Computer Name = GEBRUIK-6VVOLE3 | Source = Service Control Manager | ID = 7000
Description = De Util AppEnable-service kan vanwege de volgende fout niet worden
gestart: %%2

Error - 10-11-2014 10:12:14 | Computer Name = GEBRUIK-6VVOLE3 | Source = Service Control Manager | ID = 7000
Description = De MaintainerSvc4.00.5030318-service kan vanwege de volgende fout
niet worden gestart: %%2

Error - 10-11-2014 10:12:14 | Computer Name = GEBRUIK-6VVOLE3 | Source = Service Control Manager | ID = 7000
Description = De Update AppEnable-service kan vanwege de volgende fout niet worden
gestart: %%2

Error - 10-11-2014 10:12:14 | Computer Name = GEBRUIK-6VVOLE3 | Source = Service Control Manager | ID = 7000
Description = De Util AppEnable-service kan vanwege de volgende fout niet worden
gestart: %%2


< End of report >
 
Sluit voordat
51f51523a23a0-OTL_Canned_Nieuw.png
OTL de fix gaat doen, eerst alle andere openstaande vensters!
  • Windows 2000 en Windows XP: dubbelklik op OTL.exe.
  • Windows Vista, Windows 7 en Windows 8: via rechtsklik op OTL.exe en kies voor "Als Administrator uitvoeren".
    [*]Kopieer onderstaande in de Code-kader staande tekst en plak deze in het venster onder
    4f9111a6d2a6c-OTL-2.png

Code: 
:OTL 
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_ir_14_45_ie& cd=2XzuyEtN2Y1L1QzutDtDtD0B0C0DtBtCyDtCtC0EtCtBtDt CtN0D0Tzu0StCtDyEtAtN1L2XzutAtFyCtFtCtFtDtN1L1Czut CyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StC0EyB0CtDtC0 BtCtGyEyD0A0EtGtD0E0DyBtGyD0DyDyBtGyEyE0CtDtDyC0Ay Czyzz0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyC0EtAtAyB0Azyt AtGtC0EtB0FtGyEtDyEzytGzyyBtAtBtGzy0F0B0Azy0F0BtA0 DyD0CyE2Q&cr=1395289977&ir=
IE - HKLM\..\SearchScopes\{A25AC313-DD19-4238-ACA2-401D6BEE4321}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVer sion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Inter net Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1952274102-203843243-2931807281-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.nl
IE - HKU\S-1-5-21-1952274102-203843243-2931807281-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.nl/
IE - HKU\S-1-5-21-1952274102-203843243-2931807281-1000\..\SearchScopes,DefaultScope = {A25AC313-DD19-4238-ACA2-401D6BEE4321}
IE - HKU\S-1-5-21-1952274102-203843243-2931807281-1000\..\SearchScopes\{A25AC313-DD19-4238-ACA2-401D6BEE4321}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-1952274102-203843243-2931807281-1000\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings: "ProxyEnable" = 0
FF - prefs.js..browser.search.useDBForOrder: "false"
FF - user.js - File not found
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKCU\..\RunOnce: [WSE_Lasaoren] wscript /E:vbscript /B "C:\Users\GEBRUI~1\AppData\Roaming\WSE_Lasaoren\Up dateProc\bkup.dat"
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
[2014-11-10 15:16:00 | 000,000,306 | ---- | M] () -- C:\Windows\tasks\WSE_Lasaoren.job
[2014-11-09 08:16:02 | 000,000,044 | ---- | M] () -- C:\Users\Gebruiker\AppData\Roaming\WB.CFG


:Services


:Reg


:Files
ipconfig /flushdns /c
C:\Windows\System32\browserchoice.exe
E:vbscript /B
C:\Users\GEBRUI~1\AppData\Roaming\WSE_Lasaoren

:Commands
[purity]
[emptytemp]
[resethosts]
[emptyjava]
[emptyflash]
[createrestorepoint]
[reboot]


  • Klik daarna bovenaan op
    4f911cee9da59-OTL-4.png
  • Laat het programma ongestoord zijn werk doen.
  • OTL zal na de scan melden dat de PC opnieuw opgestart gaat worden. Sta dat dus toe.
  • Klik op OK
  • Na het opnieuw opstarten wordt enkel een nieuw log geopend.
  • Post via kopiren en plakken de inhoud van dat OTL-scanlog.
 
Status
Niet open voor verdere reacties.
Steun Ons

Nieuwste berichten

Terug
Bovenaan