PC traag, hapert,

[VistaVamp]

Dag allemaal,

Ik heb een nogal oude laptop maar nog even geen geld voor een nieuwe. Tenminste, als ik het ding kan fixen zou dat even beter uitkomen.

Hij is namelijk laatste maanden erg traag, en volgens mij lopen er programma's mee te draaien terwijl dit niet moet.
Ik heb CCleaner erop gezet, heb systeem opgeschoond, virusscanners erop los gelaten enz.

Maar het helpt niet zo of alleen maar 1 dag.
Het duurt ook steeds langer voordat een pagina geladen wordt en geluid afspelen doet hij wel maar het hapert vaak.
Nu de laatste week, als ik de pc aanzet, maakt hij geen internetverbinding....ik blijf het dan proberen en dan na minuut of 5 of 10 ineens weer wel.

Als ik Windows wil openen of iets anders duurt het enorm lang voordat hij dat doet.....alles duurt gewoon erg lang.
Ik heb al flink gezocht op internet maar ben bang dat ik iets onherstelbaars doe....
CPU gebruik van svchost is hoog, zie ook een heleboel netsvcs?

Heb pas ook Defender eraf gegooid want die pakte helemaal al mijn geheugen........

Maar het probleem komt steeds terug.
Is het handig als ik hier een hijack-file neerzet of wat is nu de beste manier om hulp te krijgen?

Heb Windows Vista Home Basic 2007
HP Presario C500 32 bits.

Ik hoor graag....
thanks !!!!

 

[dorado]

• Download PC Info naar je bureaublad.
• Unzip en klik op SetupPC Info.
• 
• Doorloop het installatieproces.

.
Dubbelklik op PC Info.
De scanning wordt nu ingezet...
Na de scanning selecteer je de tab: Logs
Vervolgens check je uitsluitend deze items:
.

• Software
• Hardware
• Software Installed List
• Startup List
• Running Processes
• Expert Mode
• Sig Check
• Registry Scan
• Services

.
Klik nu op 'Create a log' kopieer en plak deze in je volgende posting.

 

[VistaVamp]

Dat wil ik best doen maar als ik klik op PC Info krijg ik dit: Not Found

The requested URL /E%20Dev/Tools/PCInfo/pcinfo.html was not found on this server.
www.antimalwarehelp.be

 

[bassie9]

Er zit een foutje in de link. Hier is de juiste: klikkerdeklik!

 

[VistaVamp]

Ok, komt een enorme lap tekst aan ;-) Hoop niet dat er gevoelige info in staat???

Voor de duidelijkheid: deze laptop was van mijn zoon, die toen veel games speelde. Is inmiddels volwassen en het huis uit dus das niet meer nodig.
Ik hoor wel of de laptop nog beter gemaakt kan worden...alvast mijn dank !!

==================== OS INFO ====================================

OS version         : Windows Vista
Edition            : Home Basic
Service Pack       : 2
Build version      : 6.0.6002.131072
Windows OS Bits    : 32 *

Update detected     : 2013-12-21 11:04:58
Update downloaded   : 2013-12-20 09:43:36
Update installed    : 2013-12-20 09:48:15

==================== GENERAL INFO ===============================

Windows Directory  : C:\Windows
User Profile       : C:\Users\Taki
Java Version       : 1.7.0_45
Antivirus          : n/a
Anti Spam          : Windows Defender [Updated -  Running ]
Firewall           : Windows Firewall

==================== HARDWARE ===================================

GenuineIntel x86 Family 6 Model 14 Stepping 12
Genuine Intel(R) CPU           T2080  @ 1.73GHz

Mainboard          : Hewlett-Packard

Model              : Presario C500 (GF853EA#ABH)       

Bios Version       : F.16 (Hewlett-Packard)

RAM Present        : 1013 MB / 1 GB
RAM Free           : 176 Mb  ( 17 % Free )

Videocard          : Mobile Intel(R) 945GM Express Chipset Family
Memory             : 0Mb
Driver version     : 7.14.10.1114

==================== APP LIST ===================================

C:\ Fixed -  - NTFS - 106 Gb (Free : 478 Mb / 0 Gb )
D:\ Fixed - PRESARIO_RP - NTFS - 4 Gb (Free : 332 Mb / 0 Gb )

==================== INSTALLED SOFTWARE LIST ====================


 Update for Microsoft Office 2007 (KB2508958)
Adobe Flash Player 11 ActiveX  11.9.900.117
Adobe Flash Player 11 Plugin  11.9.900.152
Adobe Reader 8.3.1  8.3.1
Adobe Shockwave Player 11.5  11.5.9.620
Apple Application Support  2.3.6
Apple Mobile Device Support  7.0.0.117
Apple Software Update  2.1.3.127
ASL_HS_Installer32  1.0.9
Beveiligingsupdate voor Windows Media Player (KB2845142)
CCleaner  4.07
Compatibility Pack for the 2007 Office system  12.0.6612.1000
Conexant HD Audio  4.36.7.62
D3DX10  15.4.2368.0902
Driver Installer   3.0.3.1034
Driver Installer  3.0.3.1034
ESU for Microsoft Vista  1.0.3.1
FormatFactory 2.96  2.96
Free YouTube Download version 3.1.38.1005  3.1.38.1005
FTDownloader  2.1 Build 26473
Google Toolbar for Internet Explorer  1.0.0
Google Toolbar for Internet Explorer  7.5.4805.320
Google Update Helper  1.3.22.3
Google Updater  2.4.2432.1652
HDAUDIO Soft Data Fax Modem with SmartCP
Hewlett-Packard Active Check for Health Check  1.1.15.2
Hewlett-Packard Asset Agent for Health Check  2.0.64.0
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)  1
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)  1
HP Active Support Library  1.0.21
HP Customer Experience Enhancements  1.00.0000
HP DVD Play 3.0
HP Easy Setup - Core  1.00.0000
HP Easy Setup - Frontend  5.00.0000
HP Help and Support  1.0.0
HP Quick Launch Buttons 6.10 C1  6.10 C1
HP Update  4.000.012.001
HP User Guide 0039  1.02.0003
HP Wireless Assistant  3.00 C2
Intel(R) Graphics Media Accelerator Driver
iTunes  10.6.3.25
Jasc Paint Shop Pro 9  9.00.0000
Java 7 Update 45  7.0.450
Java Auto Updater  2.1.9.8
Java(TM) 6 Update 2  1.6.0.20
Java(TM) 6 Update 3  1.6.0.30
Java(TM) 6 Update 7  1.6.0.70
Java(TM) SE Runtime Environment 6  1.6.0.0
Junk Mail filter update  15.4.3502.0922
LiveUpdate 3.2 (Symantec Corporation)  3.2.0.68
LiveUpdate Notice (Symantec Corporation)  1.4.5
McAfee Security Scan Plus  3.8.130.10
Media Go  1.4.269
MediaBar  3.0.0.114772
Mesh Runtime  15.4.5722.2
Messenger Companion  15.4.3502.0922
Microsoft .NET Framework 3.5 Language Pack SP1 - nld  3.5.30729
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1  3.5.30729
Microsoft .NET Framework 4 Client Profile  4.0.30319
Microsoft .NET Framework 4 Client Profile NLD Language Pack  4.0.30319
Microsoft Application Error Reporting  12.0.6012.5000
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (Dutch) 2007  12.0.6612.1000
Microsoft Office Access MUI (English) 2007  12.0.6612.1000
Microsoft Office Access Setup Metadata MUI (English) 2007  12.0.6612.1000
Microsoft Office Accounting 2008  3.0.8627.1
Microsoft Office Accounting 2008 Equifax Addin  3.0.8231.0
Microsoft Office Accounting 2008 Fixed Asset Manager  3.0.8231.0
Microsoft Office Accounting 2008 PayPal Addin  3.0.8231.0
Microsoft Office Accounting ADP Payroll Addin  0.0.0.0
Microsoft Office Enterprise 2007  12.0.6612.1000
Microsoft Office Excel MUI (Dutch) 2007  12.0.6612.1000
Microsoft Office Excel MUI (English) 2007  12.0.6612.1000
Microsoft Office File Validation Add-In  14.0.5130.5003
Microsoft Office Groove MUI (English) 2007  12.0.6612.1000
Microsoft Office Groove Setup Metadata MUI (English) 2007  12.0.6612.1000
Microsoft Office InfoPath MUI (Dutch) 2007  12.0.6612.1000
Microsoft Office InfoPath MUI (English) 2007  12.0.6612.1000
Microsoft Office Live Add-in 1.5  2.0.4024.1
Microsoft Office OneNote MUI (English) 2007  12.0.6612.1000
Microsoft Office Outlook Connector  14.0.5118.5000
Microsoft Office Outlook MUI (Dutch) 2007  12.0.6612.1000
Microsoft Office Outlook MUI (English) 2007  12.0.6612.1000
Microsoft Office PowerPoint MUI (Dutch) 2007  12.0.6612.1000
Microsoft Office PowerPoint MUI (English) 2007  12.0.6612.1000
Microsoft Office PowerPoint Viewer 2007 (Dutch)  12.0.6612.1000
Microsoft Office Professional Plus 2007  12.0.6612.1000
Microsoft Office Proof (Dutch) 2007  12.0.6612.1000
Microsoft Office Proof (English) 2007  12.0.6612.1000
Microsoft Office Proof (French) 2007  12.0.6612.1000
Microsoft Office Proof (German) 2007  12.0.6612.1000
Microsoft Office Proof (Spanish) 2007  12.0.6612.1000
Microsoft Office Proofing (Dutch) 2007  12.0.4518.1017
Microsoft Office Proofing (English) 2007  12.0.4518.1014
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (Dutch) 2007  12.0.6612.1000
Microsoft Office Publisher MUI (English) 2007  12.0.6612.1000
Microsoft Office Shared MUI (Dutch) 2007  12.0.6612.1000
Microsoft Office Shared MUI (English) 2007  12.0.6612.1000
Microsoft Office Shared Setup Metadata MUI (English) 2007  12.0.6612.1000
Microsoft Office Small Business Connectivity Components  2.0.7024.0
Microsoft Office Word MUI (Dutch) 2007  12.0.6612.1000
Microsoft Office Word MUI (English) 2007  12.0.6612.1000
Microsoft Search Enhancement Pack  3.0.133.0
Microsoft Silverlight  5.1.20913.0
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Compact Edition [ENU]  3.1.0000
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)  9.4.5000.00
Microsoft SQL Server 2005 Tools Express Edition  9.4.5000.00
Microsoft SQL Server Native Client  9.00.5000.00
Microsoft SQL Server Setup Support Files (English)  9.00.5000.00
Microsoft SQL Server VSS Writer  9.00.5000.00
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053  8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable  8.0.61001
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570  9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17  9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148  9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161  9.0.30729.6161
Microsoft Windows Media Video 9 VCM
Microsoft WSE 3.0 Runtime  3.0.5305.0
Microsoft XML Parser  8.70.1104.04
Mobiel Internet Software  3.0.0
MS Access 97 SP2
MSVC80_x86_v2  1.0.3.0
MSVC90_x86  1.0.1.2
MSVCRT  15.4.2862.0708
MSXML 4.0 SP2 (KB936181)  4.20.9848.0
MSXML 4.0 SP2 (KB941833)  4.20.9849.0
MSXML 4.0 SP2 (KB954430)  4.20.9870.0
MSXML 4.0 SP2 (KB973688)  4.20.9876.0
neroxml  1.0.0
NVIDIA PhysX  9.09.0720
OGA Notifier 2.0.0048.0  2.0.0048.0
OpenOffice 4.0.1  4.01.9714
Option_4.0.17.0
PC Info  2.0.17
QuickTime  7.70.80.34
Samsung PC Studio 3  3.0.0.70706
Samsung PC Studio 3  3.2.0.70706
SearchCore for Browsers  3.0.0.114772
Security Update for CAPICOM (KB931906)  2.1.0.2
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)  1
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)  1
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)  1
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)  2
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)  1
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)  2
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)  2
Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)  1
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2827329) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition 
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition 
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition 
Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition 
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition 
Security Update for Microsoft Office Word 2007 (KB2827330) 32-Bit Edition 
Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663)  1
Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870)  1
Segoe UI  15.4.2271.0615
Skype Toolbars  5.3.7280
Skype™ 5.10  5.10.116
Sonic Activation Module  1.0
Synaptics Pointing Device Driver  9.0.1.5
Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL
Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD  4.0.30319
Three Ships Browser Plugin  1.0.5.5
Uninstall 1.0.0.1
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)  1
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)  1
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)  1
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)  1
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)  1
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)  3
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update voor Microsoft Office Excel 2007 Help (KB963678)
Update voor Microsoft Office Powerpoint 2007 Help (KB963669)
Update voor Microsoft Office Word 2007 Help (KB963665)
UsbBoost
VCRedistSetup  1.0.0
Visual Studio 2012 x86 Redistributables  14.0.0.1
vShare Plugin
Winamp Toolbar for Internet Explorer  5.1.14.2
Windows Live Communications Platform  15.4.3502.0922
Windows Live Essentials  15.4.3502.0922
Windows Live Essentials  15.4.3555.0308
Windows Live Family Safety  15.4.3555.0308
Windows Live ID Sign-in Assistant  7.250.4232.0
Windows Live Installer  15.4.3502.0922
Windows Live Mail  15.4.3502.0922
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen  15.4.5722.2
Windows Live Mesh  15.4.3502.0922
Windows Live Messenger  15.4.3538.0513
Windows Live Messenger Companion Core  15.4.3502.0922
Windows Live MIME IFilter  15.4.3502.0922
Windows Live Movie Maker  15.4.3502.0922
Windows Live Photo Common  15.4.3502.0922
Windows Live Photo Gallery  15.4.3502.0922
Windows Live PIMT Platform  15.4.3508.1109
Windows Live Remote Client  15.4.5722.2
Windows Live Remote Client Resources  15.4.5722.2
Windows Live Remote Service  15.4.5722.2
Windows Live Remote Service Resources  15.4.5722.2
Windows Live SOXE  15.4.3502.0922
Windows Live SOXE Definitions  15.4.3502.0922
Windows Live UX Platform  15.4.3502.0922
Windows Live UX Platform Language Pack  15.4.3508.1109
Windows Live Writer  15.4.3502.0922
Windows Live Writer Resources  15.4.3502.0922
Windows Media Player Firefox Plugin  1.0.0.8
Windows Mobile® Handleiding  1.0
WinRAR archiver
Wise Registry Cleaner 7.91  7.91
ZTE_1.2074.0.4

==================== STARTUP LIST Enabled========================

------- Local [HKLM] Taki------------
 
 
------- Current User [HKCU] Taki------------
 
Spotify Web Helper : "C:\Users\Taki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
 

==================== RUNNING PROCESSES ==========================

chrome                ID = 1568   Path: C:\Users\Taki\AppData\Local\Google\Chrome\Application\chrome.exe
chrome                ID = 8068   Path: C:\Users\Taki\AppData\Local\Google\Chrome\Application\chrome.exe
explorer              ID = 3536   Path: C:\Windows\Explorer.EXE
chrome                ID = 5692   Path: C:\Users\Taki\AppData\Local\Google\Chrome\Application\chrome.exe
winlogon              ID = 3124   Path: C:\Windows\system32\winlogon.exe
chrome                ID = 6668   Path: C:\Users\Taki\AppData\Local\Google\Chrome\Application\chrome.exe
sdclt                 ID = 7452   Path: C:\Windows\system32\sdclt.exe
PC Info               ID = 3708   Path: C:\Program Files\E Dev\PC Info\PC Info.exe
dwm                   ID = 3504   Path: C:\Windows\system32\Dwm.exe
conime                ID = 4680   Path: C:\Windows\system32\conime.exe
csrss                 ID = 528    Path: C:\Windows\system32\csrss.exe
dwm                   ID = 1304   Path: C:\Windows\system32\Dwm.exe
taskeng               ID = 3448   Path: C:\Windows\system32\taskeng.exe
unsecapp              ID = 4028   Path: C:\Windows\system32\wbem\unsecapp.exe
winlogon              ID = 656    Path: C:\Windows\system32\winlogon.exe
mobsync               ID = 480    Path: C:\Windows\System32\mobsync.exe
chrome                ID = 3236   Path: C:\Users\Taki\AppData\Local\Google\Chrome\Application\chrome.exe
chrome                ID = 5236   Path: C:\Users\Taki\AppData\Local\Google\Chrome\Application\chrome.exe
taskeng               ID = 3616   Path: C:\Windows\system32\taskeng.exe
csrss                 ID = 2808   Path: C:\Windows\system32\csrss.exe
SpotifyWebHelper      ID = 4952   Path: C:\Users\Taki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
explorer              ID = 220    Path: C:\Windows\explorer.exe
GoogleToolbarNotifier  ID = 3724   Path: C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

==================== SIG CHECK===================================

 All OK ! 


==================== REG SCAN ===================================

              Empthy keys and/or values aren't logged !


==================== SESSION MANAGER ============================

HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\
BootExecute = autocheck autochk *
 = bootdelete
\??\C:\Users\Taki\AppData\Local\Temp\{B711E5E4-7F9E-4EE0-967B-67A33C2C2BC0}\EppManifest.dll

\??\C:\Users\Taki\AppData\Local\Temp\{B711E5E4-7F9E-4EE0-967B-67A33C2C2BC0}\SetupRes.dll

\??\C:\Users\Taki\AppData\Local\Temp\{B711E5E4-7F9E-4EE0-967B-67A33C2C2BC0}\Setup.exe

\??\C:\Users\Taki\AppData\Local\Temp\{B711E5E4-7F9E-4EE0-967B-67A33C2C2BC0}\SqmApi.dll

\??\C:\Users\Taki\AppData\Local\Temp\{B711E5E4-7F9E-4EE0-967B-67A33C2C2BC0}\en-us\setupres.dll.mui

\??\C:\Users\Taki\AppData\Local\Temp\{B711E5E4-7F9E-4EE0-967B-67A33C2C2BC0}\nl-nl\setupres.dll.mui

\??\C:\Users\Taki\AppData\Local\Temp\{80A2A641-867D-4907-A759-53A657167374}\EppManifest.dll

\??\C:\Users\Taki\AppData\Local\Temp\{80A2A641-867D-4907-A759-53A657167374}\SetupRes.dll

\??\C:\Users\Taki\AppData\Local\Temp\{80A2A641-867D-4907-A759-53A657167374}\Setup.exe

\??\C:\Users\Taki\AppData\Local\Temp\{80A2A641-867D-4907-A759-53A657167374}\SqmApi.dll

\??\C:\Users\Taki\AppData\Local\Temp\{80A2A641-867D-4907-A759-53A657167374}\en-us\setupres.dll.mui

\??\C:\Users\Taki\AppData\Local\Temp\{80A2A641-867D-4907-A759-53A657167374}\nl-nl\setupres.dll.mui

\??\c:\Config.Msi\4f4f3ac.rbf

\??\c:\Config.Msi\4f4f3b3.rbf

\??\c:\Config.Msi\4f4f3c2.rbf

\??\c:\Config.Msi\4f4f3c8.rbf


==================== WINLOGON ===================================

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\

Userinit = C:\Windows\system32\userinit.exe,
Shell = explorer.exe


==================== ShellServiceObjectDelayLoad ================

HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\

WebCheck = {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
File in HKCR\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\InProcServer32\ = C:\Windows\System32\webcheck.dll


==================== Shell Extensions\Approved ==================

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\

{E6FB5E20-DE35-11CF-9C87-00AA005127ED} = WebCheck
{08165EA0-E946-11CF-9C87-00AA005127ED} = WebCheckWebCrawler
File in HKCR\CLSID\{08165EA0-E946-11CF-9C87-00AA005127ED}\InProcServer32\ = C:\Windows\System32\webcheck.dll


==================== Shell Extensions\Approved WOW 6432 =========

HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\


==================== SharedTaskScheduler ========================

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\

{8C7461EF-2B13-11d2-BE35-3078302C2030} = Component Categories cache daemon

File in HKCR\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32\ = C:\Windows\system32\browseui.dll


==================== RUN KEYS====================================

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKCU\Software\Microsoft\Windows\CurrentVersion\Run

Spotify Web Helper = "C:\Users\Taki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
HKLM\Software\Microsoft\Windows\CurrentVersion\Run

=> OptionalComponents = 


HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce
HKCU\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce


==================== vVv Krepper Trojan Pointers vVv ============

HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\Run


==================== RUN SERVICES ===============================

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce
HKU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce
HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Sidebar = C:\Program Files\Windows Sidebar\Sidebar.exe /detectMem
WindowsWelcomeCenter = rundll32.exe oobefldr.dll,ShowWelcomeCenterHKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Sidebar = C:\Program Files\Windows Sidebar\Sidebar.exe /detectMem
WindowsWelcomeCenter = rundll32.exe oobefldr.dll,ShowWelcomeCenter

==================== Shell Folder ===============================

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders
Startup = C:\Users\Taki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run


==================== DLL Loaded =================================

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows


( 0x0 – Load any DLLs.    0x1 – Load only code-signed DLLs.)



HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\Load



==================== ShellExecuteHooks ==========================

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks

{B5A7F190-DDA6-4420-B3BA-52453494E6CD} = Groove GFS Stub Execution Hook

==================== Command Processor ==========================

HKLM\Software\Microsoft\Command Processor
HKCU\Software\Microsoft\Command Processor


==================== BROWSER HELPER OBJECTS =====================

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects

{043C5167-00BB-4324-AF7E-62013FAEDACF} =  vShare Plugin
File in HKCR\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}\InProcServer32\
 = C:\Program Files\vShare\vshare_toolbar.dll
--------------------------------------------------------------------
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} =  Adobe PDF Reader Link Helper
File in HKCR\CLSID\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\InProcServer32\
 = C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
--------------------------------------------------------------------
{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} =  MSS+ Identifier
File in HKCR\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\InProcServer32\
 = C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll
--------------------------------------------------------------------
{17FDB9F8-DCC4-4F6A-AE07-B16018A48469} =  ThreeShips IE Helper
AppID = {D0347B5E-69EF-4CBE-AC9A-442B5B06CAD3}
File in HKCR\CLSID\{17FDB9F8-DCC4-4F6A-AE07-B16018A48469}\InProcServer32\
 = C:\Program Files\Common Files\Threeships Shared\DLL\ThreeShipsIEHelper.dll
--------------------------------------------------------------------
{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} =  Winamp Toolbar BHO
File in HKCR\CLSID\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}\InProcServer32\

--------------------------------------------------------------------
{28387537-e3f9-4ed7-860c-11e69af4a8a0} =  MediaBar
File in HKCR\CLSID\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\InProcServer32\
 = C:\PROGRA~1\IMESHA~1\MediaBar\Datamngr\ToolBar\imeshdtxmltbpi.dll
--------------------------------------------------------------------
{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} =  Search Helper
File in HKCR\CLSID\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}\InProcServer32\
 = C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
--------------------------------------------------------------------
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} =  Groove GFS Browser Helper
File in HKCR\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\InProcServer32\
 = C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
--------------------------------------------------------------------
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} =  Java(tm) Plug-In SSV Helper
File in HKCR\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\InProcServer32\
 = C:\Program Files\Java\jre7\bin\ssv.dll
--------------------------------------------------------------------
{9030D464-4C02-4ABF-8ECC-5164760863C6} =  Windows Live ID Sign-in Helper
AppID = {062C56BD-B2FF-4405-88D9-93154F27D785}
File in HKCR\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\InProcServer32\
 = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
--------------------------------------------------------------------
{9FDDE16B-836F-4806-AB1F-1455CBEFF289} =  Windows Live Messenger Companion Helper
LocalizedString = @C:\Program Files\Windows Live\Companion\companionlang.dll,-150
File in HKCR\CLSID\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\InProcServer32\
 = C:\Program Files\Windows Live\Companion\companioncore.dll
--------------------------------------------------------------------
{AA58ED58-01DD-4d91-8333-CF10577473F7} =  Google Toolbar Helper
File in HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\InProcServer32\
 = C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
--------------------------------------------------------------------
{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} =  Skype Plug-In
AppID = {CB487EA6-E83B-4F63-8CAE-B1B1D23DA65E}
LocalizedString = @C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll,-300
File in HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\InProcServer32\
 = C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
--------------------------------------------------------------------
{BE7A24F5-69CB-4708-B77B-B1EDA6043B95} =  SearchCore for Browsers
File in HKCR\CLSID\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}\InProcServer32\
 = C:\PROGRA~1\SEARCH~1\SEARCH~1\BROWSE~1.DLL
--------------------------------------------------------------------
{DBC80044-A445-435b-BC74-9C25C1C588A9} =  Java(tm) Plug-In 2 SSV Helper
File in HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\InProcServer32\
 = C:\Program Files\Java\jre7\bin\jp2ssv.dll
--------------------------------------------------------------------

==================== BHO - CLSID Wow6432Node ====================

HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects

# Not exist #


==================== TOOLBAR ====================================

HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar

{043C5167-00BB-4324-AF7E-62013FAEDACF} =  vShare Plugin
File in HKCR\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}\InProcServer32\
 = C:\Program Files\vShare\vshare_toolbar.dll

{2318C2B1-4965-11d4-9B18-009027A5CD4F} =  Google Toolbar
File in HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}\InProcServer32\
 = C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

{28387537-e3f9-4ed7-860c-11e69af4a8a0} =  MediaBar
File in HKCR\CLSID\{28387537-e3f9-4ed7-860c-11e69af4a8a0}\InProcServer32\
 = C:\PROGRA~1\IMESHA~1\MediaBar\Datamngr\ToolBar\imeshdtxmltbpi.dll

{32099AAC-C132-4136-9E9A-4E364A424E17} =  DAEMON Tools Toolbar
File in HKCR\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\InProcServer32\


{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} =  Winamp Toolbar

File in HKCR\CLSID\{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2}\InProcServer32\



==================== TOOLBAR - Wow6432Node ======================

HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar

# Not exist #


==================== URL SEARCH HOOKS ===========================

HKLM\Software\Microsoft\Internet Explorer\URLSearchHooks

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\URLSearchHooks

HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks


==================== SAFE BOOT ==================================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot

AlternateShell = cmd.exe
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

{533C5B84-EC70-11D2-9505-00C04F79DEAF}
 = Volume shadow copy{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}
 = IEEE 1394 Bus host controllers{D48179BE-EC20-11D1-B6B8-00C04FA372A7}
 = SBP2 IEEE 1394 Devices{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}
 = SecurityDevices

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network

{50DD5230-BA8A-11D1-BF5D-0000F805F530}
 = Smart card readers{533C5B84-EC70-11D2-9505-00C04F79DEAF}
 = Volume shadow copy{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}
 = IEEE 1394 Bus host controllers{D48179BE-EC20-11D1-B6B8-00C04FA372A7}
 = SBP2 IEEE 1394 Devices{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}
 = SecurityDevicesDnsCache
 = ServiceWudfPf
 = DriverWudfRd
 = DriverWudfSvc
 = ServiceWudfUsbccidDriver
 = Driver

==================== DESKTOP ====================================

HKCU\Control Panel\Desktop
SCRNSAVE.EXE = C:\Windows\system32\Ribbons.scr
ScreenSaveActive = 0
HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop\SCRNSAVE.EXE

==================== SECURITYPROVIDERS ==========================

HKLM\system\currentcontrolset\control\securityproviders

SecurityProviders = credssp.dll
File in C:\Windows\System32\credssp.dll 15872 bytes  [ 10/23/2008 6:55:29 PM ]

==================== SERVICES ===================================

Service without a value in ImagePath or 'svchost.exe -k' aren't logged !

HKLM\SYSTEM\CurrentControlSet\Services

*** Win32OwnProcess ***

S3 - AddFiltr - AddFiltr - "C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe"
S3 - AdobeFlashPlayerUpdateSvc - Adobe Flash Player Update Service - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
R3 - ALG - Application Layer Gateway-service - C:\Windows\System32\alg.exe
R2 - Apple Mobile Device - Apple Mobile Device - "C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
R2 - BecHelperService - BecHelperService - C:\Program Files\KPN\Mobiel Internet Software\BecHelperService.exe
S3 - Boonty Games - Boonty Games - "C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe"
S4 - clr_optimization_v2.0.50727_32 - Microsoft .NET Framework NGEN v2.0.50727_X86 - C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
S2 - clr_optimization_v4.0.30319_32 - Microsoft .NET Framework NGEN v4.0.30319_X86 - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S3 - COMSysApp - COM+ System Application - C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 - DFSR - DFS Replication - C:\Windows\system32\DFSR.exe
S3 - FontCache3.0.0.0 - Windows Presentation Foundation Font Cache 3.0.0.0 - C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
S3 - fsssvc - Windows Live Family Safety Service - "C:\Program Files\Windows Live\Family Safety\fsssvc.exe"
R2 - GtDetectSc - GtDetectSc - "C:\Program Files\Option\Driver Installer\GtDetectSc.exe"
S2 - gupdate - Google Update Service (gupdate) - "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc
S3 - gupdatem - Google Update-service (gupdatem) - "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc
S2 - gusvc - Google Software Updater - "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"
R2 - HP Health Check Service - HP Health Check Service - "C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe"
R2 - hpqwmiex - hpqwmiex - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
S3 - IDriverT - InstallDriver Table Manager - "C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"
S3 - iPod Service - iPod Service - "C:\Program Files\iPod\bin\iPodService.exe"
S3 - LiveUpdate - LiveUpdate - "C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE"
R2 - LiveUpdate Notice Service - LiveUpdate Notice Service - "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll"
S3 - McComponentHostService - McAfee Security Scan Component Host Service - "C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe"
S3 - Microsoft Office Groove Audit Service - Microsoft Office Groove Audit Service - "C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe"
S3 - MSDTC - Distributed Transaction Coordinator - C:\Windows\System32\msdtc.exe
R3 - msiserver - Windows Installer - C:\Windows\system32\msiexec /V
R2 - MSSQL$MSSMLBIZ - SQL Server (MSSMLBIZ) - "c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMSSMLBIZ
S4 - MSSQLServerADHelper - SQL Server Active Directory Helper - "c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe"
S3 - odserv - Microsoft Office Diagnostics Service - "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE"
S3 - ose - Office Source Engine - "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
R2 - Planner voor Automatische LiveUpdate - Planner voor Automatische LiveUpdate - "C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe"
S3 - RpcLocator - Remote Procedure Call (RPC) Locator - C:\Windows\system32\locator.exe
R2 - SeaPort - SeaPort - "C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
S2 - SkypeUpdate - Skype Updater - "C:\Program Files\Skype\Updater\Updater.exe"
R2 - slsvc - Software Licensing - C:\Windows\system32\SLsvc.exe
S3 - SNMPTRAP - SNMP Trap - C:\Windows\System32\snmptrap.exe
R2 - SQLBrowser - SQL Server Browser - "c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
R2 - SQLWriter - SQL Server VSS Writer - "c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
S2 - StarWindServiceAE - StarWind AE Service - F:\Alcohol 120%\Alcohol 120\StarWind\StarWindServiceAE.exe
R3 - TrustedInstaller - Windows Modules Installer - C:\Windows\servicing\TrustedInstaller.exe
S3 - vds - Virtual Disk - C:\Windows\System32\vds.exe
S3 - VSS - Volume Shadow Copy - C:\Windows\system32\vssvc.exe
S4 - wlcrasvc - Windows Live Mesh remote connections service - "C:\Program Files\Windows Live\Mesh\wlcrasvc.exe"
R2 - wlidsvc - Windows Live ID Sign-in Assistant - "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
S3 - wmiApSrv - WMI Performance Adapter - C:\Windows\system32\wbem\WmiApSrv.exe
S3 - WMPNetworkSvc - Windows Media Player Network Sharing-service - "C:\Program Files\Windows Media Player\wmpnetwk.exe"
S3 - WPFFontCache_v0400 - Windows Presentation Foundation Font Cache 4.0.0.0 - C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
R2 - WSearch - Windows Search - C:\Windows\system32\SearchIndexer.exe /Embedding
R2 - XAudioService - XAudioService - C:\Windows\system32\DRIVERS\xaudio.exe

*** Win32ShareProcess ***

S3 - idsvc - Windows CardSpace - "C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"
R3 - KeyIso - CNG Key Isolation - C:\Windows\system32\lsass.exe
S3 - Netlogon - Netlogon - C:\Windows\system32\lsass.exe
S3 - NetTcpPortSharing - Net.Tcp Port Sharing Service - "C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"
R3 - ProtectedStorage - Protected Storage - C:\Windows\system32\lsass.exe
R2 - SamSs - Security Accounts Manager - C:\Windows\system32\lsass.exe

*** Other ***

R3 - bowser - bowser - system32\DRIVERS\bowser.sys
S4 - cdfs - CD/DVD File System Reader - system32\DRIVERS\cdfs.sys
R1 - DfsC - DFS Namespace Client Driver - System32\Drivers\dfsc.sys
R0 - FileInfo - File Information FS MiniFilter - \SystemRoot\system32\drivers\fileinfo.sys
S3 - Filetrace - Filetrace - system32\drivers\filetrace.sys
R0 - FltMgr - FltMgr - \SystemRoot\system32\drivers\fltmgr.sys
R2 - luafv - UAC File Virtualization - \SystemRoot\system32\drivers\luafv.sys
R2 - MDM - Machine Debug Manager - "C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
S3 - MRxDAV - WebDav Client Redirector Driver - \SystemRoot\system32\drivers\mrxdav.sys
R3 - mrxsmb - SMB MiniRedirector Wrapper and Engine - system32\DRIVERS\mrxsmb.sys
R3 - mrxsmb10 - SMB 1.x MiniRedirector - system32\DRIVERS\mrxsmb10.sys
R3 - mrxsmb20 - SMB 2.0 MiniRedirector - system32\DRIVERS\mrxsmb20.sys
R0 - Mup - Mup - \SystemRoot\System32\Drivers\mup.sys
R1 - NetBIOS - NetBIOS Interface - system32\DRIVERS\netbios.sys
R1 - rdbss - Redirected Buffering Sub Sysytem - system32\DRIVERS\rdbss.sys
R2 - Spooler - Print Spooler - C:\Windows\System32\spoolsv.exe
R3 - srv - srv - System32\DRIVERS\srv.sys
R3 - srv2 - srv2 - System32\DRIVERS\srv2.sys
R3 - srvnet - srvnet - System32\DRIVERS\srvnet.sys
S4 - udfs - udfs - system32\DRIVERS\udfs.sys
S3 - UI0Detect - Interactive Services Detection - C:\Windows\system32\UI0Detect.exe


==================== WOW-CMDLINE ================================

HKLM\SYSTEM\CurrentControlSet\Control\WOW



==================== SVCHOST    (White Listed) ==================

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost

bthsvcs => BthServ
SYSTEM\CurrentControlSet\Services\BthServ\Parameters
ServiceDll = C:\Windows\System32\bthserv.dll
WindowsMobile => wcescomm
SYSTEM\CurrentControlSet\Services\wcescomm\Parameters
ServiceDll = C:\Windows\WindowsMobile\wcescomm.dll
WindowsMobile => rapimgr
SYSTEM\CurrentControlSet\Services\rapimgr\Parameters
ServiceDll = C:\Windows\WindowsMobile\rapimgr.dll
LocalServiceRestricted => WcesComm
SYSTEM\CurrentControlSet\Services\WcesComm\Parameters
ServiceDll = C:\Windows\WindowsMobile\wcescomm.dll
LocalServiceRestricted => RapiMgr
SYSTEM\CurrentControlSet\Services\RapiMgr\Parameters
ServiceDll = C:\Windows\WindowsMobile\rapimgr.dll


==================== INTERFACES =================================

HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces

{36EA3950-4834-4633-ABB5-F60FE2766432}
====================*============================================

{562C5992-91DB-4313-936B-55AECB04DE9B}
====================*============================================

{641BF728-A725-45BA-A5C5-9089AD0350B9}
====================*============================================

{9379C7E7-7DAE-4505-A7DC-C9FE22C140B5}
====================*============================================

{B4BA86E7-B1AE-4B53-B39C-BDD75173298F}
====================*============================================

{d8932e52-6a6f-11db-b6ab-806e6f6e6963}
====================*============================================

{F8220DF5-773F-4D21-BBBD-1CF7C697E782}
====================*============================================


==================== SEARCHSCOPES ===============================

HKCU\Software\Microsoft\Internet Explorer\SearchScopes

DefaultScope : {6A1806CD-94D4-4689-BA73-E35EA1EA9990}

{043C5167-00BB-4324-AF7E-62013FAEDACF}
URL : http://vshare.toolbarhome.com/search.aspx?q={searchTerms}&srch=dsp
====================*============================================

{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
URL : http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
====================*============================================

{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
URL : http://www.searchgol.com/?q={searchTerms}&affID=66899&babsrc=SP_def&mntrId=5E27001A734B4C69
====================*============================================

{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
URL : http://supertoolbar.ask.com/redirect?client=ie&tb=DVSV5&o=15012&src=crm&q={searchTerms}&locale=en_US
====================*============================================

{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
URL : http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGIE_nl
====================*============================================

{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}
URL : http://search.imesh.com/web?src=ieb&appid=292&systemid=1&sr=0&q={searchTerms}
====================*============================================

{AB179553-2EB6-4EDD-82E0-C9AE33472811}
URL : http://nl.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06
====================*============================================

{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
URL : http://www.daemon-search.com/search?q={searchTerms}
====================*============================================

{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB9}
URL : http://www.daemon-search.com/search?q={searchTerms}
====================*============================================

{BF6231B1-D20F-46EA-BBDB-4BACE1804B48}
URL : http://nl.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=937811&p={searchTerms}
====================*============================================


HKLM\Software\Microsoft\Internet Explorer\SearchScopes

DefaultScope : {6A1806CD-94D4-4689-BA73-E35EA1EA9990}

{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
URL : http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
--------------------------------------------------------------------
{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
URL : http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
--------------------------------------------------------------------
{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}
URL : http://search.imesh.com/web?src=ieb&appid=292&systemid=1&sr=0&q={searchTerms}
--------------------------------------------------------------------
{AB179553-2EB6-4EDD-82E0-C9AE33472811}
URL : http://nl.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06
--------------------------------------------------------------------


==================== Job files ==================================

There are no .job files found. 
=================================================================

Log finished at 12/22/2013 1:07:32 PM
Thanks for using PC Info...

==================== END ========================================

 

[dorado]

Ik zie iig dat er malware op je systeem zit.
Laat hier of hier of hier je systeem maar eens nakijken.