Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

websearches.com as startpage, slow bootup, slow pc [Solved]


  • This topic is locked This topic is locked

#76
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

Ok I found it

sfc scannow log:

 

2014-11-24 23:05:21, Info                  CSI    00000009 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:21, Info                  CSI    0000000a [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:23, Info                  CSI    0000000c [SR] Verify complete
2014-11-24 23:05:23, Info                  CSI    0000000d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:23, Info                  CSI    0000000e [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:24, Info                  CSI    00000010 [SR] Verify complete
2014-11-24 23:05:24, Info                  CSI    00000011 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:24, Info                  CSI    00000012 [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:25, Info                  CSI    00000014 [SR] Verify complete
2014-11-24 23:05:26, Info                  CSI    00000015 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:26, Info                  CSI    00000016 [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:27, Info                  CSI    00000018 [SR] Verify complete
2014-11-24 23:05:27, Info                  CSI    00000019 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:27, Info                  CSI    0000001a [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:28, Info                  CSI    0000001c [SR] Verify complete
2014-11-24 23:05:28, Info                  CSI    0000001d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:28, Info                  CSI    0000001e [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:29, Info                  CSI    00000020 [SR] Verify complete
2014-11-24 23:05:30, Info                  CSI    00000021 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:30, Info                  CSI    00000022 [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:31, Info                  CSI    00000024 [SR] Verify complete
2014-11-24 23:05:31, Info                  CSI    00000025 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:31, Info                  CSI    00000026 [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:32, Info                  CSI    00000028 [SR] Verify complete
2014-11-24 23:05:32, Info                  CSI    00000029 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:32, Info                  CSI    0000002a [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:34, Info                  CSI    0000002c [SR] Verify complete
2014-11-24 23:05:34, Info                  CSI    0000002d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:34, Info                  CSI    0000002e [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:35, Info                  CSI    00000030 [SR] Verify complete
2014-11-24 23:05:35, Info                  CSI    00000031 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:35, Info                  CSI    00000032 [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:38, Info                  CSI    00000034 [SR] Verify complete
2014-11-24 23:05:38, Info                  CSI    00000035 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:38, Info                  CSI    00000036 [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:40, Info                  CSI    00000038 [SR] Verify complete
2014-11-24 23:05:40, Info                  CSI    00000039 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:40, Info                  CSI    0000003a [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:42, Info                  CSI    0000003c [SR] Verify complete
2014-11-24 23:05:42, Info                  CSI    0000003d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:42, Info                  CSI    0000003e [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:44, Info                  CSI    00000040 [SR] Verify complete
2014-11-24 23:05:44, Info                  CSI    00000041 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:44, Info                  CSI    00000042 [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:46, Info                  CSI    00000044 [SR] Verify complete
2014-11-24 23:05:46, Info                  CSI    00000045 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:46, Info                  CSI    00000046 [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:48, Info                  CSI    00000048 [SR] Verify complete
2014-11-24 23:05:48, Info                  CSI    00000049 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:48, Info                  CSI    0000004a [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:49, Info                  CSI    0000004c [SR] Verify complete
2014-11-24 23:05:49, Info                  CSI    0000004d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:49, Info                  CSI    0000004e [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:53, Info                  CSI    00000050 [SR] Verify complete
2014-11-24 23:05:53, Info                  CSI    00000051 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:53, Info                  CSI    00000052 [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:55, Info                  CSI    00000054 [SR] Verify complete
2014-11-24 23:05:55, Info                  CSI    00000055 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:55, Info                  CSI    00000056 [SR] Beginning Verify and Repair transaction
2014-11-24 23:05:57, Info                  CSI    00000058 [SR] Verify complete
2014-11-24 23:05:57, Info                  CSI    00000059 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:05:57, Info                  CSI    0000005a [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:01, Info                  CSI    0000005c [SR] Verify complete
2014-11-24 23:06:01, Info                  CSI    0000005d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:01, Info                  CSI    0000005e [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:06, Info                  CSI    00000061 [SR] Verify complete
2014-11-24 23:06:06, Info                  CSI    00000062 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:06, Info                  CSI    00000063 [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:10, Info                  CSI    00000068 [SR] Verify complete
2014-11-24 23:06:11, Info                  CSI    00000069 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:11, Info                  CSI    0000006a [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:14, Info                  CSI    0000006d [SR] Verify complete
2014-11-24 23:06:14, Info                  CSI    0000006e [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:14, Info                  CSI    0000006f [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:18, Info                  CSI    00000071 [SR] Verify complete
2014-11-24 23:06:18, Info                  CSI    00000072 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:18, Info                  CSI    00000073 [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:24, Info                  CSI    00000095 [SR] Verify complete
2014-11-24 23:06:24, Info                  CSI    00000096 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:24, Info                  CSI    00000097 [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:29, Info                  CSI    0000009c [SR] Verify complete
2014-11-24 23:06:29, Info                  CSI    0000009d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:29, Info                  CSI    0000009e [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:34, Info                  CSI    000000a0 [SR] Verify complete
2014-11-24 23:06:34, Info                  CSI    000000a1 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:34, Info                  CSI    000000a2 [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:37, Info                  CSI    000000a4 [SR] Verify complete
2014-11-24 23:06:37, Info                  CSI    000000a5 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:37, Info                  CSI    000000a6 [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:42, Info                  CSI    000000a8 [SR] Verify complete
2014-11-24 23:06:42, Info                  CSI    000000a9 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:42, Info                  CSI    000000aa [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:46, Info                  CSI    000000ac [SR] Verify complete
2014-11-24 23:06:46, Info                  CSI    000000ad [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:46, Info                  CSI    000000ae [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:52, Info                  CSI    000000b0 [SR] Verify complete
2014-11-24 23:06:52, Info                  CSI    000000b1 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:52, Info                  CSI    000000b2 [SR] Beginning Verify and Repair transaction
2014-11-24 23:06:59, Info                  CSI    000000d5 [SR] Verify complete
2014-11-24 23:06:59, Info                  CSI    000000d6 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:06:59, Info                  CSI    000000d7 [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:06, Info                  CSI    000000d9 [SR] Verify complete
2014-11-24 23:07:06, Info                  CSI    000000da [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:06, Info                  CSI    000000db [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:17, Info                  CSI    000000dd [SR] Verify complete
2014-11-24 23:07:17, Info                  CSI    000000de [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:17, Info                  CSI    000000df [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:23, Info                  CSI    000000e3 [SR] Verify complete
2014-11-24 23:07:23, Info                  CSI    000000e4 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:23, Info                  CSI    000000e5 [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:26, Info                  CSI    000000e7 [SR] Verify complete
2014-11-24 23:07:26, Info                  CSI    000000e8 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:26, Info                  CSI    000000e9 [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:28, Info                  CSI    000000eb [SR] Verify complete
2014-11-24 23:07:28, Info                  CSI    000000ec [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:28, Info                  CSI    000000ed [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:33, Info                  CSI    000000f1 [SR] Verify complete
2014-11-24 23:07:33, Info                  CSI    000000f2 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:33, Info                  CSI    000000f3 [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:38, Info                  CSI    00000104 [SR] Verify complete
2014-11-24 23:07:38, Info                  CSI    00000105 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:38, Info                  CSI    00000106 [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:40, Info                  CSI    00000108 [SR] Verify complete
2014-11-24 23:07:40, Info                  CSI    00000109 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:40, Info                  CSI    0000010a [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:43, Info                  CSI    0000010c [SR] Verify complete
2014-11-24 23:07:43, Info                  CSI    0000010d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:43, Info                  CSI    0000010e [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:45, Info                  CSI    00000110 [SR] Verify complete
2014-11-24 23:07:46, Info                  CSI    00000111 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:46, Info                  CSI    00000112 [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:50, Info                  CSI    00000115 [SR] Verify complete
2014-11-24 23:07:50, Info                  CSI    00000116 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:50, Info                  CSI    00000117 [SR] Beginning Verify and Repair transaction
2014-11-24 23:07:58, Info                  CSI    0000011a [SR] Verify complete
2014-11-24 23:07:58, Info                  CSI    0000011b [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:07:58, Info                  CSI    0000011c [SR] Beginning Verify and Repair transaction
2014-11-24 23:08:00, Info                  CSI    0000011e [SR] Verify complete
2014-11-24 23:08:01, Info                  CSI    0000011f [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:08:01, Info                  CSI    00000120 [SR] Beginning Verify and Repair transaction
2014-11-24 23:08:02, Info                  CSI    00000122 [SR] Verify complete
2014-11-24 23:08:03, Info                  CSI    00000123 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:08:03, Info                  CSI    00000124 [SR] Beginning Verify and Repair transaction
2014-11-24 23:08:08, Info                  CSI    00000126 [SR] Verify complete
2014-11-24 23:08:09, Info                  CSI    00000127 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:08:09, Info                  CSI    00000128 [SR] Beginning Verify and Repair transaction
2014-11-24 23:08:14, Info                  CSI    0000012a [SR] Verify complete
2014-11-24 23:08:14, Info                  CSI    0000012b [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:08:14, Info                  CSI    0000012c [SR] Beginning Verify and Repair transaction
2014-11-24 23:08:18, Info                  CSI    0000012e [SR] Verify complete
2014-11-24 23:08:19, Info                  CSI    0000012f [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:08:19, Info                  CSI    00000130 [SR] Beginning Verify and Repair transaction
2014-11-24 23:08:28, Info                  CSI    00000148 [SR] Verify complete
2014-11-24 23:08:28, Info                  CSI    00000149 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:08:28, Info                  CSI    0000014a [SR] Beginning Verify and Repair transaction
2014-11-24 23:08:33, Info                  CSI    0000014c [SR] Verify complete
2014-11-24 23:08:33, Info                  CSI    0000014d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:08:33, Info                  CSI    0000014e [SR] Beginning Verify and Repair transaction
2014-11-24 23:08:49, Info                  CSI    00000150 [SR] Verify complete
2014-11-24 23:08:49, Info                  CSI    00000151 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:08:49, Info                  CSI    00000152 [SR] Beginning Verify and Repair transaction
2014-11-24 23:08:56, Info                  CSI    00000155 [SR] Verify complete
2014-11-24 23:08:56, Info                  CSI    00000156 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:08:56, Info                  CSI    00000157 [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:04, Info                  CSI    00000159 [SR] Verify complete
2014-11-24 23:09:04, Info                  CSI    0000015a [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:04, Info                  CSI    0000015b [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:10, Info                  CSI    0000015d [SR] Verify complete
2014-11-24 23:09:10, Info                  CSI    0000015e [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:10, Info                  CSI    0000015f [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:14, Info                  CSI    00000161 [SR] Verify complete
2014-11-24 23:09:14, Info                  CSI    00000162 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:14, Info                  CSI    00000163 [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:18, Info                  CSI    00000165 [SR] Verify complete
2014-11-24 23:09:18, Info                  CSI    00000166 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:18, Info                  CSI    00000167 [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:22, Info                  CSI    0000016b [SR] Verify complete
2014-11-24 23:09:22, Info                  CSI    0000016c [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:22, Info                  CSI    0000016d [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:27, Info                  CSI    0000016f [SR] Verify complete
2014-11-24 23:09:27, Info                  CSI    00000170 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:27, Info                  CSI    00000171 [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:35, Info                  CSI    00000174 [SR] Verify complete
2014-11-24 23:09:35, Info                  CSI    00000175 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:35, Info                  CSI    00000176 [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:40, Info                  CSI    00000178 [SR] Verify complete
2014-11-24 23:09:40, Info                  CSI    00000179 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:40, Info                  CSI    0000017a [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:45, Info                  CSI    0000017d [SR] Verify complete
2014-11-24 23:09:45, Info                  CSI    0000017e [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:45, Info                  CSI    0000017f [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:52, Info                  CSI    00000182 [SR] Verify complete
2014-11-24 23:09:52, Info                  CSI    00000183 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:52, Info                  CSI    00000184 [SR] Beginning Verify and Repair transaction
2014-11-24 23:09:58, Info                  CSI    00000186 [SR] Verify complete
2014-11-24 23:09:58, Info                  CSI    00000187 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:09:58, Info                  CSI    00000188 [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:02, Info                  CSI    0000018a [SR] Verify complete
2014-11-24 23:10:02, Info                  CSI    0000018b [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:02, Info                  CSI    0000018c [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:06, Info                  CSI    0000018e [SR] Verify complete
2014-11-24 23:10:06, Info                  CSI    0000018f [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:06, Info                  CSI    00000190 [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:11, Info                  CSI    00000193 [SR] Verify complete
2014-11-24 23:10:11, Info                  CSI    00000194 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:11, Info                  CSI    00000195 [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:14, Info                  CSI    00000197 [SR] Verify complete
2014-11-24 23:10:14, Info                  CSI    00000198 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:14, Info                  CSI    00000199 [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:18, Info                  CSI    0000019b [SR] Verify complete
2014-11-24 23:10:18, Info                  CSI    0000019c [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:18, Info                  CSI    0000019d [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:24, Info                  CSI    000001a0 [SR] Verify complete
2014-11-24 23:10:24, Info                  CSI    000001a1 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:24, Info                  CSI    000001a2 [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:29, Info                  CSI    000001a6 [SR] Verify complete
2014-11-24 23:10:29, Info                  CSI    000001a7 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:29, Info                  CSI    000001a8 [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:35, Info                  CSI    000001aa [SR] Verify complete
2014-11-24 23:10:35, Info                  CSI    000001ab [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:35, Info                  CSI    000001ac [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:41, Info                  CSI    000001af [SR] Verify complete
2014-11-24 23:10:41, Info                  CSI    000001b0 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:41, Info                  CSI    000001b1 [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:45, Info                  CSI    000001b3 [SR] Verify complete
2014-11-24 23:10:45, Info                  CSI    000001b4 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:45, Info                  CSI    000001b5 [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:48, Info                  CSI    000001b7 [SR] Verify complete
2014-11-24 23:10:48, Info                  CSI    000001b8 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:48, Info                  CSI    000001b9 [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:52, Info                  CSI    000001bb [SR] Verify complete
2014-11-24 23:10:52, Info                  CSI    000001bc [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:52, Info                  CSI    000001bd [SR] Beginning Verify and Repair transaction
2014-11-24 23:10:57, Info                  CSI    000001bf [SR] Verify complete
2014-11-24 23:10:57, Info                  CSI    000001c0 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:10:57, Info                  CSI    000001c1 [SR] Beginning Verify and Repair transaction
2014-11-24 23:11:01, Info                  CSI    000001c3 [SR] Verify complete
2014-11-24 23:11:02, Info                  CSI    000001c4 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:11:02, Info                  CSI    000001c5 [SR] Beginning Verify and Repair transaction
2014-11-24 23:11:05, Info                  CSI    000001c7 [SR] Verify complete
2014-11-24 23:11:05, Info                  CSI    000001c8 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:11:05, Info                  CSI    000001c9 [SR] Beginning Verify and Repair transaction
2014-11-24 23:11:09, Info                  CSI    000001cb [SR] Verify complete
2014-11-24 23:11:10, Info                  CSI    000001cc [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:11:10, Info                  CSI    000001cd [SR] Beginning Verify and Repair transaction
2014-11-24 23:11:22, Info                  CSI    000001cf [SR] Verify complete
2014-11-24 23:11:22, Info                  CSI    000001d0 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:11:22, Info                  CSI    000001d1 [SR] Beginning Verify and Repair transaction
2014-11-24 23:11:41, Info                  CSI    000001d3 [SR] Verify complete
2014-11-24 23:11:41, Info                  CSI    000001d4 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:11:41, Info                  CSI    000001d5 [SR] Beginning Verify and Repair transaction
2014-11-24 23:11:47, Info                  CSI    000001d7 [SR] Verify complete
2014-11-24 23:11:47, Info                  CSI    000001d8 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:11:47, Info                  CSI    000001d9 [SR] Beginning Verify and Repair transaction
2014-11-24 23:11:52, Info                  CSI    000001db [SR] Verify complete
2014-11-24 23:11:52, Info                  CSI    000001dc [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:11:52, Info                  CSI    000001dd [SR] Beginning Verify and Repair transaction
2014-11-24 23:11:54, Info                  CSI    000001df [SR] Verify complete
2014-11-24 23:11:54, Info                  CSI    000001e0 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:11:54, Info                  CSI    000001e1 [SR] Beginning Verify and Repair transaction
2014-11-24 23:11:58, Info                  CSI    000001e3 [SR] Verify complete
2014-11-24 23:11:58, Info                  CSI    000001e4 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:11:58, Info                  CSI    000001e5 [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:02, Info                  CSI    000001e7 [SR] Verify complete
2014-11-24 23:12:02, Info                  CSI    000001e8 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:02, Info                  CSI    000001e9 [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:05, Info                  CSI    000001eb [SR] Verify complete
2014-11-24 23:12:05, Info                  CSI    000001ec [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:05, Info                  CSI    000001ed [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:06, Info                  CSI    000001ef [SR] Verify complete
2014-11-24 23:12:06, Info                  CSI    000001f0 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:06, Info                  CSI    000001f1 [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:10, Info                  CSI    000001f9 [SR] Verify complete
2014-11-24 23:12:10, Info                  CSI    000001fa [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:10, Info                  CSI    000001fb [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:13, Info                  CSI    000001fd [SR] Verify complete
2014-11-24 23:12:13, Info                  CSI    000001fe [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:13, Info                  CSI    000001ff [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:16, Info                  CSI    00000201 [SR] Verify complete
2014-11-24 23:12:16, Info                  CSI    00000202 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:16, Info                  CSI    00000203 [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:20, Info                  CSI    00000205 [SR] Verify complete
2014-11-24 23:12:20, Info                  CSI    00000206 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:20, Info                  CSI    00000207 [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:24, Info                  CSI    00000209 [SR] Verify complete
2014-11-24 23:12:24, Info                  CSI    0000020a [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:24, Info                  CSI    0000020b [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:30, Info                  CSI    0000020e [SR] Verify complete
2014-11-24 23:12:30, Info                  CSI    0000020f [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:30, Info                  CSI    00000210 [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:33, Info                  CSI    00000212 [SR] Verify complete
2014-11-24 23:12:33, Info                  CSI    00000213 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:33, Info                  CSI    00000214 [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:35, Info                  CSI    00000216 [SR] Verify complete
2014-11-24 23:12:35, Info                  CSI    00000217 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:35, Info                  CSI    00000218 [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:42, Info                  CSI    0000021b [SR] Verify complete
2014-11-24 23:12:42, Info                  CSI    0000021c [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:42, Info                  CSI    0000021d [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:52, Info                  CSI    00000221 [SR] Verify complete
2014-11-24 23:12:52, Info                  CSI    00000222 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:52, Info                  CSI    00000223 [SR] Beginning Verify and Repair transaction
2014-11-24 23:12:58, Info                  CSI    00000228 [SR] Verify complete
2014-11-24 23:12:58, Info                  CSI    00000229 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:12:58, Info                  CSI    0000022a [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:03, Info                  CSI    00000235 [SR] Verify complete
2014-11-24 23:13:03, Info                  CSI    00000236 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:03, Info                  CSI    00000237 [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:10, Info                  CSI    0000023e [SR] Verify complete
2014-11-24 23:13:10, Info                  CSI    0000023f [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:10, Info                  CSI    00000240 [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:14, Info                  CSI    00000242 [SR] Verify complete
2014-11-24 23:13:15, Info                  CSI    00000243 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:15, Info                  CSI    00000244 [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:18, Info                  CSI    00000248 [SR] Verify complete
2014-11-24 23:13:19, Info                  CSI    00000249 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:19, Info                  CSI    0000024a [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:22, Info                  CSI    0000024c [SR] Verify complete
2014-11-24 23:13:22, Info                  CSI    0000024d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:22, Info                  CSI    0000024e [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:28, Info                  CSI    00000273 [SR] Verify complete
2014-11-24 23:13:28, Info                  CSI    00000274 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:28, Info                  CSI    00000275 [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:32, Info                  CSI    00000277 [SR] Verify complete
2014-11-24 23:13:32, Info                  CSI    00000278 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:32, Info                  CSI    00000279 [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:36, Info                  CSI    0000027b [SR] Verify complete
2014-11-24 23:13:36, Info                  CSI    0000027c [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:36, Info                  CSI    0000027d [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:40, Info                  CSI    0000027f [SR] Verify complete
2014-11-24 23:13:40, Info                  CSI    00000280 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:40, Info                  CSI    00000281 [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:44, Info                  CSI    0000028f [SR] Verify complete
2014-11-24 23:13:45, Info                  CSI    00000290 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:45, Info                  CSI    00000291 [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:52, Info                  CSI    00000293 [SR] Verify complete
2014-11-24 23:13:52, Info                  CSI    00000294 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:52, Info                  CSI    00000295 [SR] Beginning Verify and Repair transaction
2014-11-24 23:13:58, Info                  CSI    000002a3 [SR] Verify complete
2014-11-24 23:13:58, Info                  CSI    000002a4 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:13:58, Info                  CSI    000002a5 [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:01, Info                  CSI    000002a7 [SR] Verify complete
2014-11-24 23:14:01, Info                  CSI    000002a8 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:01, Info                  CSI    000002a9 [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:04, Info                  CSI    000002ab [SR] Verify complete
2014-11-24 23:14:04, Info                  CSI    000002ac [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:04, Info                  CSI    000002ad [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:09, Info                  CSI    000002b0 [SR] Verify complete
2014-11-24 23:14:09, Info                  CSI    000002b1 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:09, Info                  CSI    000002b2 [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:11, Info                  CSI    000002b4 [SR] Verify complete
2014-11-24 23:14:12, Info                  CSI    000002b5 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:12, Info                  CSI    000002b6 [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:18, Info                  CSI    000002b8 [SR] Verify complete
2014-11-24 23:14:18, Info                  CSI    000002b9 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:18, Info                  CSI    000002ba [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:22, Info                  CSI    000002bc [SR] Verify complete
2014-11-24 23:14:22, Info                  CSI    000002bd [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:22, Info                  CSI    000002be [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:27, Info                  CSI    000002c0 [SR] Verify complete
2014-11-24 23:14:27, Info                  CSI    000002c1 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:27, Info                  CSI    000002c2 [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:35, Info                  CSI    000002dc [SR] Verify complete
2014-11-24 23:14:35, Info                  CSI    000002dd [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:35, Info                  CSI    000002de [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:40, Info                  CSI    000002e0 [SR] Verify complete
2014-11-24 23:14:40, Info                  CSI    000002e1 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:40, Info                  CSI    000002e2 [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:53, Info                  CSI    000002e4 [SR] Verify complete
2014-11-24 23:14:53, Info                  CSI    000002e5 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:53, Info                  CSI    000002e6 [SR] Beginning Verify and Repair transaction
2014-11-24 23:14:57, Info                  CSI    000002e8 [SR] Verify complete
2014-11-24 23:14:57, Info                  CSI    000002e9 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:14:57, Info                  CSI    000002ea [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:01, Info                  CSI    000002ee [SR] Verify complete
2014-11-24 23:15:01, Info                  CSI    000002ef [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:01, Info                  CSI    000002f0 [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:05, Info                  CSI    000002f2 [SR] Verify complete
2014-11-24 23:15:05, Info                  CSI    000002f3 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:05, Info                  CSI    000002f4 [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:09, Info                  CSI    000002f6 [SR] Verify complete
2014-11-24 23:15:09, Info                  CSI    000002f7 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:09, Info                  CSI    000002f8 [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:13, Info                  CSI    000002fa [SR] Verify complete
2014-11-24 23:15:14, Info                  CSI    000002fb [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:14, Info                  CSI    000002fc [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:18, Info                  CSI    000002ff [SR] Verify complete
2014-11-24 23:15:18, Info                  CSI    00000300 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:18, Info                  CSI    00000301 [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:21, Info                  CSI    00000303 [SR] Verify complete
2014-11-24 23:15:22, Info                  CSI    00000304 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:22, Info                  CSI    00000305 [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:26, Info                  CSI    00000307 [SR] Verify complete
2014-11-24 23:15:26, Info                  CSI    00000308 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:26, Info                  CSI    00000309 [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:31, Info                  CSI    0000030b [SR] Verify complete
2014-11-24 23:15:31, Info                  CSI    0000030c [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:31, Info                  CSI    0000030d [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:38, Info                  CSI    00000310 [SR] Verify complete
2014-11-24 23:15:38, Info                  CSI    00000311 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:38, Info                  CSI    00000312 [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:42, Info                  CSI    00000314 [SR] Verify complete
2014-11-24 23:15:42, Info                  CSI    00000315 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:42, Info                  CSI    00000316 [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:47, Info                  CSI    00000318 [SR] Verify complete
2014-11-24 23:15:47, Info                  CSI    00000319 [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:47, Info                  CSI    0000031a [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:52, Info                  CSI    0000031c [SR] Verify complete
2014-11-24 23:15:52, Info                  CSI    0000031d [SR] Verifying 100 (0x0000000000000064) components
2014-11-24 23:15:52, Info                  CSI    0000031e [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:56, Info                  CSI    00000320 [SR] Verify complete
2014-11-24 23:15:56, Info                  CSI    00000321 [SR] Verifying 14 (0x000000000000000e) components
2014-11-24 23:15:56, Info                  CSI    00000322 [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:56, Info                  CSI    00000324 [SR] Verify complete
2014-11-24 23:15:56, Info                  CSI    00000325 [SR] Repairing 0 components
2014-11-24 23:15:56, Info                  CSI    00000326 [SR] Beginning Verify and Repair transaction
2014-11-24 23:15:56, Info                  CSI    00000328 [SR] Repair complete

  • 0

Advertisements


#77
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

chkdsk log

ListChkdskResult by SleepyDude v0.1.7 Beta | 21-09-2013
 
------< Log generate on 24/11/2014 23:30:11 >------
Category: 0
Computer Name: Gisele-HP-LAP
Event Code: 26212
Record Number: 125599
Source Name: Chkdsk
Time Written: 11-24-2014 @ 22:28:59
Event Type: Informatie
User: 
Message: CHKDSK is in de modus Alleen-lezen uitgevoerd op een momentopname van het volume.  
 
Het bestandssysteem op C: wordt gecontroleerd...
Het type bestandssysteem is NTFS.
 
Waarschuwing. Parameter F niet opgegeven
CHKDSK wordt uitgevoerd in alleen-lezenmodus.
 
Bestanden controleren (stap 1 van 3)...
  206848 bestandsrecords verwerkt.                                       
 
De bestandscontrole is voltooid.
  1168 records met grote bestanden verwerkt.                           
 
  0 records met beschadigde bestanden verwerkt.                     
 
  0 EA-records verwerkt.                                            
 
  79 reparserecords verwerkt.                                        
 
Indices controleren (stap 2 van 3)...
  271964 indexvermeldingen verwerkt.                                     
 
De indexcontrole voltooid.
  0 niet-geïndexeerde bestanden gecontroleerd.                      
 
  0 niet-geïndexeerde bestanden hersteld.                           
 
CHKDSK controleert de security descriptors (stap 3 van 3)...
  206848 bestands-SD's/-SID's verwerkt.                                  
 
20215 ongebruikte indexingangen in de index $SII
van het bestand 0x9 verwijderen.
20215 ongebruikte indexingangen in de index $SDH
van het bestand 0x9 verwijderen.
20215 ongebruikte security descriptors verwijderen.
De controle van security descriptors is voltooid.
  32559 gegevensbestanden verwerkt.                                     
 
Het USN-logboek controleren...
  36375264 USN-bytes verwerkt.                                             
 
Controle van USN-logboek is voltooid.
Het bestandssysteem is gecontroleerd. Er zijn geen problemen vastgesteld.
 
 463044607 kB totale schijfruimte.
 189766936 kB in 150876 bestanden.
    109792 kB in 32560 indexen.
         0 kB in beschadigde sectoren.
    337115 kB in gebruik door het systeem.
Het logboekbestand neemt      65536 kB in beslag.
 272830764 kB beschikbaar op schijf.
 
      4096 bytes per cluster
 115761151 clusters in totaal op schijf
  68207691 clusters beschikbaar op schijf
 
-----------------------------------------------------------------------

  • 0

#78
BrianDrab

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,583 posts

I'd like to take a peek under-the-hood while the machine is booting to see if I can identify where the time is being spent during the delay. Please follow the instructions below.

 

Step#1 - Disable Paging Executive (64-bit OS) 

1. Click your Start Orb in the lower left of your computer and type cmd in the search box.
2. Once the cmd program is found, right-click on it with your mouse and select Run as administrator as shown below.
ElevateCommandPrompt.JPG
3. Answer Yes when asked to allow.
4. You should now have a black window open that you can type in to.
5. Type wpr -disablepagingexecutive on (Notice there is a space after the letters wpr) and hit enter on your keyboard. If this was done correctly you will see the following message.

Disable Paging Executive settings were successfully turned on.
Please reboot the machine for these settings to take effect.

6. Reboot your machine.

 

 

Step#1 - Windows Performance Recorder - Boot

 

1. Download (to your desktop) the Windows Performance Toolkit Redistributable from here.

2. Double-click on the installer on the desktop (WPTx64-x86_en-us.msi) and accept all defaults.

3. Click the Start Orb and type in recorder in the search box. Click on Windows Performance Recorder that shows up in the search results. Click Yes if asked to Allow.

4. Check the 6 boxes as shown below, change the performance scenario to boot and the number of iterations to 1.

WPR-Boot.JPG

 

5. Click the Start button.

6. Change the results path to the desktop and click Save.

ResultsPath.JPG

 

7. You will get a message stating that the system will reboot. Click OK to allow it to happen. If you have a stopwatch, please let me know exactly how many seconds of delay there is on this boot.

8. Important: As soon as the logon screen comes up, sign in as quick as you can so this doesn't distort the trace.

9. Once you are at the desktop you will see the boot trace being created.

BootTraceProgress.JPG

 

10. Then you will see a screen that is gathering system information.

GatherSystemInfo.JPG

 

11. Once complete, please click the Open Folder button at the bottom of the screen. It will bring you to the desktop with the trace file highlighted. Chances are that this file will be very large (1 GB or more) which is expected.

12. Right-click on this file and select Send to....compressed (zipped) folder. The file will still be large but about a tenth the size.

13. Please upload this zipped file to a service like wetransfer (I believe you used this service last time) and send me the link.

 

 

Step#3 - Re-Enable Paging Executive (64-bit OS) 

1. Click your Start Orb in the lower left of your computer and type cmd in the search box.
2. Once the cmd program is found, right-click on it with your mouse and select Run as administrator as shown below.
ElevateCommandPrompt.JPG
3. Answer Yes when asked to allow.
4. You should now have a black window open that you can type in to.
5. Type wpr -disablepagingexecutive off (Notice there is a space after the letters wpr) and hit enter on your keyboard. If this was done correctly you will see the following message.

Disable Paging Executive settings were successfully turned off.

6. Reboot your machine.

 

 

 

Items for your next post

1. Windows Performance Recorder log 


  • 0

#79
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

wpr command not known:

Microsoft Windows [versie 6.1.7601]
Copyright © 2009 Microsoft Corporation. Alle rechten voorbehouden.
 
C:\Windows\system32>wpr -disablepagingexecutive on
wpr wordt niet herkend als een interne
of externe opdracht, programma of batchbestand.
 
C:\Windows\system32>wpr
wpr wordt niet herkend als een interne
of externe opdracht, programma of batchbestand.

  • 0

#80
BrianDrab

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,583 posts

Do the following first.

 

1. Download (to your desktop) the Windows Performance Toolkit Redistributable from here.

2. Double-click on the installer on the desktop (WPTx64-x86_en-us.msi) and accept all defaults.

 

Then try following those steps to disable the paging executive.

 

If it works then pick up with bullet 3. of the Windows Performance Recorder.


  • 0

#81
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

if you mean with delay the black screen with white arrow before login screen appears: 15sec,65  (stopwatch)

 

http://we.tl/yJFf7wlFZK


  • 0

#82
BrianDrab

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,583 posts

Great job. I'm analyzing the log now. Would you mind providing fresh FRST and Addition logs? Instructions below. Thank you.

 

Step#1 - FRST Scan
 
1. Please download Farbar Recovery Scan Tool and save it to your Desktop.
    Note: You need to run the 64-bit Version so please ensure you download that one.
2. Right click to run as administrator. When the tool opens click Yes to disclaimer.
3. Please ensure you place a check mark in the Addition.txt check box at the bottom of the form before running (if not already).
4. Press Scan button.
5. It will produce a log called FRST.txt in the same directory the tool is run from (which should now be the desktop)
6. Please copy and paste log back here.
7. Another log (Addition.txt - also located in the same directory as FRST64.exe) will be generated Please also paste that along with the FRST.txt into your reply.


  • 0

#83
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts
Both logs are here:
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-11-2014 01
Ran by Gisele (administrator) on GISELE-HP-LAP on 26-11-2014 08:55:30
Running from C:\Users\Gisele\Desktop
Loaded Profile: Gisele (Available profiles: Gisele)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Nederlands (Nederland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Desktop.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-11-11] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-774167087-3708585068-1396899783-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-04-28] (Google Inc.)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft...d=ie&ar=msnhome
HKU\S-1-5-21-774167087-3708585068-1396899783-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKU\S-1-5-21-774167087-3708585068-1396899783-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hln.be/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM -> {6BCC5539-643F-485D-94A5-C6C89F48B37D} URL = http://www.amazon.co...s={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...w={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Aanmeldhulp voor Microsoft-account -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-774167087-3708585068-1396899783-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @java.com/DTPlugin,version=10.7.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-774167087-3708585068-1396899783-1000: vitzo.com/VDownloader -> C:\Program Files\VDownloader\Addons\npVDownloader.dll No File
FF Extension: eID België - C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected] [2012-10-05]
 
Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-04-28]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS) [File not signed]
S4 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [File not signed]
S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [File not signed]
S4 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2014-10-31] (Ellora Assets Corp.) [File not signed]
S4 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [451416 2014-10-21] (Garmin Ltd or its subsidiaries)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S4 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2011-12-16] ()
S4 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [138664 2014-04-24] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [138664 2014-04-24] (SlySoft, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [134696 2011-11-03] (Broadcom Corporation.)
R3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-05-21] (Broadcom Corporation.)
S3 EMVSCARD; C:\Windows\System32\Drivers\EMVSCARD.sys [28544 2006-12-13] (USB Smart Card Reader)
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [41704 2012-08-01] (AnchorFree Inc.)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [258664 2011-09-22] (Realtek Semiconductor Corp.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-11-26 08:55 - 2014-11-26 08:55 - 00012036 _____ () C:\Users\Gisele\Desktop\FRST.txt
2014-11-26 08:54 - 2014-11-26 08:54 - 02118144 _____ (Farbar) C:\Users\Gisele\Desktop\FRST64.exe
2014-11-25 21:57 - 2014-11-25 21:59 - 00000000 ____D () C:\Users\Gisele\Documents\WPA Files
2014-11-25 21:57 - 2014-11-25 21:58 - 00000000 ____D () C:\Users\Gisele\AppData\Local\Windows Performance Analyzer
2014-11-25 21:57 - 2014-11-25 21:57 - 00000000 ____D () C:\SymCache
2014-11-25 21:42 - 2014-11-25 21:42 - 00000000 ____D () C:\ProgramData\WindowsPerformanceRecorder
2014-11-25 21:34 - 2014-11-25 21:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2014-11-25 21:34 - 2014-11-25 21:34 - 00000000 ____D () C:\Program Files (x86)\Windows Kits
2014-11-24 21:37 - 2014-11-24 21:39 - 00000000 ____D () C:\printscreens
2014-11-20 16:53 - 2014-11-20 16:59 - 00000209 _____ () C:\Users\Gisele\Desktop\serienummer magix mp3 deluxe mx.txt
2014-11-19 21:14 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 21:14 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 21:14 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 21:14 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 20:24 - 2014-11-26 08:55 - 00000000 ____D () C:\FRST
2014-11-17 21:07 - 2014-11-17 21:08 - 00000695 _____ () C:\DelFix.txt
2014-11-17 20:00 - 2014-11-17 20:00 - 00000525 _____ () C:\Windows\mseclean.bat
2014-11-16 08:50 - 2014-11-16 08:50 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-16 08:50 - 2014-11-16 08:50 - 00001062 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-11-16 08:50 - 2014-11-16 08:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-11-16 08:50 - 2014-11-16 08:50 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-16 08:50 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-16 08:50 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-16 08:50 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-11-16 08:32 - 2014-11-17 21:07 - 00000000 ____D () C:\Windows\ERUNT
2014-11-16 07:57 - 2014-11-17 20:07 - 00000302 _____ () C:\FixitRegBackup.reg
2014-11-14 21:09 - 2014-11-14 21:09 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\TeamViewer
2014-11-14 20:45 - 2014-11-17 21:00 - 00000000 ____D () C:\Windows\erdnt
2014-11-14 15:11 - 2014-11-25 22:11 - 00000000 ____D () C:\Users\Gisele\Desktop\Gisele stappen gedaan
2014-11-14 14:05 - 2014-11-14 14:05 - 00001138 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-11-14 14:05 - 2014-11-14 14:05 - 00001126 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-11-14 14:05 - 2014-11-14 14:05 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-11-14 13:51 - 2014-11-17 19:21 - 00035744 _____ () C:\Windows\PFRO.log
2014-11-14 10:30 - 2014-11-14 10:30 - 00001209 _____ () C:\Users\Gisele\Desktop\MAGIX Xtreme Print Studio.lnk
2014-11-14 10:21 - 2014-11-14 10:21 - 00002096 _____ () C:\Users\Public\Desktop\PC Drukkerij CD's & DVD's versie 6.lnk
2014-11-14 10:21 - 2014-11-14 10:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy Computing
2014-11-14 10:20 - 2014-11-14 10:20 - 00000000 ____D () C:\Program Files (x86)\Easy Computing
2014-11-14 10:07 - 2014-11-25 22:14 - 00003416 _____ () C:\Windows\setupact.log
2014-11-14 10:07 - 2014-11-14 10:07 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-14 10:00 - 2014-11-10 12:43 - 699062512 _____ () C:\Users\Gisele\Documents\Zangeres Zonder Naam.mp4
2014-11-14 10:00 - 2014-10-29 19:25 - 730048494 _____ () C:\Users\Gisele\Documents\SYMPHONIE DES LEBENS BEST OF SEMINO ROSSI.mp4
2014-11-14 10:00 - 2014-10-19 11:01 - 61349286 _____ () C:\Users\Gisele\Documents\TROS Op Volle Toeren 29-09-1983.mp4
2014-11-14 10:00 - 2014-10-19 11:01 - 235414210 _____ () C:\Users\Gisele\Documents\TROS Op Volle Toeren 09-11-1984 (complete uitzending).mp4
2014-11-14 09:59 - 2014-11-10 12:37 - 266819926 _____ () C:\Users\Gisele\Documents\Op volle toeren - TROS 11-03-19821.mp4
2014-11-14 09:59 - 2014-10-19 10:58 - 265831079 _____ () C:\Users\Gisele\Documents\Op volle toeren 1981 - Complete uitzending.mp4
2014-11-14 09:59 - 2014-10-19 10:57 - 266819926 _____ () C:\Users\Gisele\Documents\Op volle toeren - TROS 11-03-1982.mp4
2014-11-14 09:59 - 2014-10-19 10:56 - 235187670 _____ () C:\Users\Gisele\Documents\Op volle toeren 12-01-1987.mp4
2014-11-14 09:58 - 2014-11-10 12:41 - 636845349 _____ () C:\Users\Gisele\Documents\heintje.mp4
2014-11-14 09:58 - 2014-11-10 12:37 - 832256054 _____ () C:\Users\Gisele\Documents\hollandse ouwe 6.mp4
2014-11-14 09:58 - 2014-10-29 19:47 - 19354801 _____ () C:\Users\Gisele\Documents\André Hazes & Gerard Joling Unchained Melody.mp4
2014-11-13 13:29 - 2014-11-13 13:29 - 00001047 _____ () C:\Users\Public\Desktop\MAGIX MP3 deluxe MX.lnk
2014-11-13 13:29 - 2014-11-13 13:29 - 00000000 ____D () C:\Users\Gisele\Documents\MAGIX_MusicEditor
2014-11-13 13:29 - 2014-11-13 13:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2014-11-13 13:28 - 2014-11-13 13:28 - 00000000 ___RD () C:\Users\Gisele\Documents\MAGIX
2014-11-13 13:28 - 2014-11-13 13:28 - 00000000 ____D () C:\Program Files (x86)\MAGIX
2014-11-13 12:14 - 2014-11-13 12:14 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cfee6bf72142fd
2014-11-13 12:14 - 2014-11-13 12:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2014-11-13 10:46 - 2014-11-18 21:58 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-11-12 18:43 - 2014-11-12 18:43 - 00509984 ____N (Microsoft Corporation) C:\HTGD0006.exe
2014-11-12 18:43 - 2014-11-12 18:43 - 00040960 ____N () C:\HTGD0003.exe
2014-11-12 18:43 - 2014-11-12 18:43 - 00036864 ____N () C:\HTGD0005.exe
2014-11-12 18:43 - 2014-11-12 18:43 - 00013855 _____ () C:\HTGD0004.txt
2014-11-12 18:43 - 2014-11-12 18:43 - 00003728 _____ () C:\HTGD0002.bmp
2014-11-12 11:47 - 2014-11-12 17:34 - 00015819 _____ () C:\Users\Gisele\Documents\Anja.odt
2014-11-12 10:26 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 10:26 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 10:24 - 2014-11-12 10:24 - 00000000 __SHD () C:\Users\Gisele\AppData\Local\EmieBrowserModeList
2014-11-12 10:00 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-12 10:00 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-12 10:00 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-12 10:00 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 10:00 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 10:00 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 10:00 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 10:00 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 10:00 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 10:00 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 10:00 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 10:00 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 10:00 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 10:00 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 10:00 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 10:00 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 10:00 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 10:00 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 10:00 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 10:00 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 10:00 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 10:00 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 10:00 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 10:00 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 09:59 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 09:59 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 09:58 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 09:58 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 09:58 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 09:58 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 09:58 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 09:58 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 09:58 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 09:58 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 09:58 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 09:57 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 09:57 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 09:57 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 09:57 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 09:57 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 09:57 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 09:57 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 09:57 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 09:57 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 09:57 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 09:57 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 09:57 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 09:57 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 09:57 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 09:57 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 09:57 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 09:57 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 09:57 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 09:57 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 09:57 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 09:57 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 09:57 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 09:57 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 09:57 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 09:57 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 09:57 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 09:57 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 09:57 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 09:57 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 09:57 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 09:57 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 09:57 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 09:57 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 09:57 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 09:57 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 09:57 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 09:57 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 09:57 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 09:57 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 09:57 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 09:57 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 09:57 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 09:57 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 09:57 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 09:57 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 09:57 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 09:57 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 09:53 - 2014-11-25 22:13 - 00000336 _____ () C:\Windows\Tasks\HPCeeScheduleForGisele.job
2014-11-12 09:53 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 09:53 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 09:45 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 09:45 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 09:44 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 09:44 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 09:44 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 09:44 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 09:44 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 09:44 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 09:44 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 09:44 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 09:44 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 09:44 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 09:44 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 09:44 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 09:44 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-11 17:54 - 2014-11-25 23:09 - 00003982 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{8CF9FF90-B28E-455B-B6CC-0DC6874004A8}
2014-11-11 16:22 - 2014-11-11 16:22 - 00000000 _____ () C:\vcredist.bmp
2014-11-11 16:03 - 2014-11-11 16:03 - 00000314 _____ () C:\Users\Gisele\Desktop\Google Maps.url
2014-11-11 15:23 - 2014-11-12 18:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HERMA Label Designer plus 1.1 NL
2014-11-11 15:23 - 2014-11-12 18:27 - 00000000 ____D () C:\Program Files (x86)\HERMA
2014-11-11 15:23 - 2014-11-11 15:22 - 00397312 _____ () C:\Windows\iwexec.exe
2014-11-11 14:50 - 2014-11-11 14:50 - 00001999 _____ () C:\Users\Gisele\Desktop\HP Photosmart 5520 series.lnk
2014-11-11 14:32 - 2014-11-11 14:32 - 00001564 _____ () C:\Users\Public\Desktop\LibreOffice 4.2.lnk
2014-11-11 14:32 - 2014-11-11 14:32 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\LibreOffice
2014-11-11 14:32 - 2014-11-11 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.2
2014-11-11 14:31 - 2014-11-11 14:32 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 4
2014-11-11 14:23 - 2014-11-11 14:23 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain
2014-11-11 14:14 - 2014-11-11 14:14 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-11-11 14:14 - 2014-11-11 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-11-11 13:49 - 2014-11-11 13:49 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\Hemera
2014-11-11 13:12 - 2014-11-11 13:12 - 00001224 _____ () C:\Users\Gisele\Desktop\Revo Uninstaller.lnk
2014-11-11 13:09 - 2014-11-11 13:09 - 00000696 _____ () C:\Users\Gisele\Desktop\Downloads.lnk
2014-11-11 12:54 - 2014-11-11 12:54 - 00000172 _____ () C:\Users\Gisele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url
2014-11-11 12:21 - 2014-11-11 12:21 - 00001399 _____ () C:\Users\Gisele\Desktop\MP3Gain.lnk
2014-11-11 12:08 - 2014-11-11 12:08 - 00001061 _____ () C:\Users\Public\Desktop\AnyDVD.lnk
2014-11-11 12:08 - 2014-11-11 12:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlySoft
2014-11-11 11:53 - 2014-11-11 11:53 - 00001026 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-11-11 11:48 - 2014-11-11 11:48 - 00000488 _____ () C:\Users\Gisele\Desktop\Lokale schijf ©.lnk
2014-11-11 11:16 - 2014-11-14 12:31 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\GemistDownloader
2014-11-11 11:16 - 2014-11-11 11:16 - 00001079 _____ () C:\Users\Gisele\Desktop\GemistDownloader.lnk
2014-11-11 11:16 - 2014-11-11 11:16 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader
2014-11-11 11:12 - 2014-11-11 11:13 - 00000000 ____D () C:\Program Files (x86)\Garmin
2014-11-11 11:12 - 2014-11-11 11:12 - 00001848 _____ () C:\Users\Public\Desktop\Garmin Express.lnk
2014-11-11 11:12 - 2014-11-11 11:12 - 00000380 _____ () C:\Windows\Tasks\GarminUpdaterTask.job
2014-11-11 11:12 - 2014-11-11 11:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2014-11-11 11:07 - 2014-11-11 14:25 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2014-11-11 11:07 - 2014-11-11 11:07 - 00001322 _____ () C:\Users\Public\Desktop\Freemake Video Downloader.lnk
2014-11-11 10:58 - 2014-11-11 10:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-11-11 10:58 - 2014-11-11 10:58 - 00000000 ____D () C:\Program Files\DivX
2014-11-11 10:48 - 2014-11-11 10:48 - 00001192 _____ () C:\Users\Public\Desktop\eID Viewer.lnk
2014-11-11 10:48 - 2014-11-11 10:48 - 00000000 ____D () C:\Windows\SysWOW64\siscardplugins
2014-11-11 10:48 - 2014-11-11 10:48 - 00000000 ____D () C:\Program Files\log
2014-11-11 09:59 - 2014-11-11 09:59 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2014-11-11 08:42 - 2014-11-11 08:42 - 00002058 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2014-11-11 08:42 - 2014-11-11 08:42 - 00001401 _____ () C:\Users\Gisele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-11-11 08:42 - 2014-11-11 08:42 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-10 19:53 - 2014-11-10 19:53 - 00000000 _____ () C:\autoexec.bat
2014-11-10 18:58 - 2014-11-10 18:58 - 00003192 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForGisele
2014-11-10 18:13 - 2014-11-10 18:13 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-10 18:08 - 2014-11-11 17:38 - 00001371 _____ () C:\Users\Gisele\Desktop\Internet Explorer.lnk
2014-11-10 16:35 - 2014-11-10 17:07 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-11-10 16:34 - 2014-11-10 17:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2014-11-10 16:34 - 2012-11-21 20:16 - 01184984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc1dmod.dll
2014-11-10 16:34 - 2012-11-21 20:16 - 00626688 _____ (On2.com) C:\Windows\SysWOW64\vp7vfw.dll
2014-11-10 16:27 - 2014-11-10 16:27 - 00001113 _____ () C:\Users\Gisele\Desktop\Documenten.lnk
2014-11-09 16:01 - 2014-11-11 11:11 - 00000000 ____D () C:\Users\Gisele\AppData\Local\Garmin
2014-11-09 11:32 - 2014-11-11 11:12 - 00000000 ____D () C:\ProgramData\Garmin
2014-11-09 11:31 - 2014-11-11 11:13 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-09 11:27 - 2014-11-09 11:27 - 00000000 ____D () C:\Program Files\Garmin GPS Plugin
2014-11-09 11:27 - 2014-11-09 11:27 - 00000000 ____D () C:\Program Files (x86)\Garmin GPS Plugin
2014-11-09 11:26 - 2014-11-09 11:33 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\Garmin
2014-11-06 04:58 - 2014-11-06 04:58 - 00000320 _____ () C:\Windows\Tasks\1114avUpdateInfo.job
2014-11-06 04:58 - 2014-11-06 04:58 - 00000000 ____D () C:\ProgramData\Avg_Update_1114av
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-11-26 08:52 - 2012-02-10 15:33 - 00000940 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-26 08:19 - 2012-10-09 20:23 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-26 00:13 - 2012-10-03 17:47 - 01923166 _____ () C:\Windows\WindowsUpdate.log
2014-11-25 22:21 - 2009-07-14 05:45 - 00031472 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-25 22:21 - 2009-07-14 05:45 - 00031472 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-25 22:14 - 2014-10-23 03:49 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfee6bf72142fd.job
2014-11-25 22:14 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-18 21:59 - 2009-07-14 06:08 - 00032538 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-17 22:00 - 2012-02-10 23:38 - 00745998 _____ () C:\Windows\system32\perfh013.dat
2014-11-17 22:00 - 2012-02-10 23:38 - 00153918 _____ () C:\Windows\system32\perfc013.dat
2014-11-17 22:00 - 2009-07-14 06:13 - 01671080 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-16 07:55 - 2013-01-17 10:02 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-11-16 07:55 - 2012-10-04 10:17 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-11-15 17:43 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-11-15 17:42 - 2009-07-14 03:34 - 71041024 _____ () C:\Windows\system32\config\software.bak
2014-11-15 17:42 - 2009-07-14 03:34 - 21495808 _____ () C:\Windows\system32\config\system.bak
2014-11-15 17:42 - 2009-07-14 03:34 - 00720896 _____ () C:\Windows\system32\config\default.bak
2014-11-15 17:42 - 2009-07-14 03:34 - 00057344 _____ () C:\Windows\system32\config\sam.bak
2014-11-15 17:42 - 2009-07-14 03:34 - 00024576 _____ () C:\Windows\system32\config\security.bak
2014-11-14 21:07 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-11-14 21:00 - 2009-07-14 05:45 - 00424496 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-14 20:37 - 2012-10-05 11:40 - 00114648 _____ () C:\Users\Gisele\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-14 14:36 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-14 12:28 - 2014-02-20 09:36 - 00000000 ___RD () C:\Users\Gisele\Documents\Freemake
2014-11-14 12:26 - 2013-03-11 14:22 - 00000000 ____D () C:\ProgramData\Freemake
2014-11-14 12:25 - 2013-04-28 19:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2014-11-14 12:25 - 2013-03-11 14:21 - 00000000 ____D () C:\Program Files (x86)\Freemake
2014-11-14 12:06 - 2012-10-05 19:44 - 00000000 ____D () C:\Users\Gisele\AppData\Local\CrashDumps
2014-11-14 11:49 - 2012-10-05 18:16 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\vlc
2014-11-14 11:48 - 2014-05-30 15:37 - 00000000 ____D () C:\Users\Gisele\Documents\62 TENORS HITS
2014-11-14 11:48 - 2014-01-10 19:59 - 00000000 ____D () C:\Users\Gisele\Documents\34 HOLLANDSE HITS
2014-11-14 11:48 - 2014-01-10 19:55 - 00000000 ____D () C:\Users\Gisele\Documents\HOLLANDS
2014-11-14 10:29 - 2013-12-02 20:39 - 00000000 ____D () C:\Users\Gisele\AppData\Local\Easy Computing
2014-11-14 10:22 - 2012-02-10 16:01 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-11-14 05:12 - 2013-12-05 11:45 - 00000000 ___DC () C:\Users\Gisele\AppData\Local\MigWiz
2014-11-14 05:12 - 2007-01-02 02:25 - 00000000 ____D () C:\Windows\Panther
2014-11-14 05:11 - 2014-04-02 10:29 - 00000000 ____D () C:\ProgramData\MAGIX
2014-11-14 05:11 - 2014-04-02 10:24 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\MAGIX
2014-11-13 13:11 - 2014-02-20 12:53 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\MediaMonkey
2014-11-13 12:37 - 2012-10-09 20:23 - 00000000 ____D () C:\Users\Gisele\AppData\Local\Google
2014-11-13 12:37 - 2012-10-09 20:23 - 00000000 ____D () C:\Program Files (x86)\Google
2014-11-13 12:14 - 2012-10-09 20:23 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-12 19:09 - 2014-01-13 13:09 - 00000000 ____D () C:\Users\Gisele\Tracing
2014-11-12 16:39 - 2013-12-09 21:23 - 00000000 ___RD () C:\Users\Gisele\Documents\DRIVERs & SLEUTELS1
2014-11-12 11:27 - 2012-10-03 17:47 - 00000000 ____D () C:\Users\Gisele
2014-11-12 10:16 - 2014-04-23 03:50 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-12 10:11 - 2013-08-17 09:48 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 10:04 - 2012-10-10 09:56 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-12 04:52 - 2012-02-10 15:33 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-12 04:52 - 2012-02-10 15:33 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-12 04:52 - 2012-02-10 15:33 - 00003878 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-11 17:11 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-11-11 14:59 - 2014-02-20 11:34 - 00000856 _____ () C:\Windows\ODBCINST.INI
2014-11-11 14:23 - 2012-10-05 18:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP3Gain
2014-11-11 14:23 - 2012-10-05 18:29 - 00000000 ____D () C:\Program Files (x86)\MP3Gain
2014-11-11 14:13 - 2012-10-05 18:12 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-11 13:49 - 2012-10-03 17:48 - 00000000 ____D () C:\Users\Gisele\AppData\Local\VirtualStore
2014-11-11 12:08 - 2014-04-09 12:53 - 00000228 _____ () C:\Windows\Tasks\elbyExecuteWithUAC.job
2014-11-11 12:02 - 2014-02-21 12:09 - 00000000 ____D () C:\ProgramData\Uninstall
2014-11-11 12:00 - 2014-02-21 12:00 - 00000000 ____D () C:\ProgramData\Roxio
2014-11-11 11:53 - 2012-10-05 18:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-11-11 11:16 - 2014-06-30 15:08 - 00000000 ____D () C:\Program Files (x86)\GemistDownloader
2014-11-11 11:11 - 2014-01-01 09:41 - 00000000 ___RD () C:\Users\Gisele\Documents\GARMIN
2014-11-11 10:59 - 2014-05-11 10:13 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-11-11 10:59 - 2014-05-11 10:12 - 00000000 ____D () C:\ProgramData\DivX
2014-11-11 10:48 - 2012-10-05 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID
2014-11-11 10:48 - 2012-10-05 19:31 - 00000000 ____D () C:\Program Files (x86)\Belgium Identity Card
2014-11-11 10:48 - 2011-06-28 11:18 - 00000970 _____ () C:\Windows\beidgui.conf
2014-11-11 08:35 - 2014-02-09 14:28 - 00000000 ___RD () C:\Users\Gisele\Documents\HP
2014-11-10 17:07 - 2012-12-25 19:56 - 00000000 ____D () C:\Program Files (x86)\VSO
2014-11-10 17:07 - 2012-11-01 16:33 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\dvdcss
2014-11-10 17:07 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-11-10 16:34 - 2012-12-25 19:56 - 00099384 _____ () C:\Users\Gisele\AppData\Roaming\inst.exe
2014-11-10 16:34 - 2012-12-25 19:56 - 00082816 _____ (VSO Software) C:\Users\Gisele\AppData\Roaming\pcouffin.sys
2014-11-10 16:34 - 2012-12-25 19:56 - 00007859 _____ () C:\Users\Gisele\AppData\Roaming\pcouffin.cat
2014-11-10 16:34 - 2012-12-25 19:56 - 00000055 _____ () C:\Users\Gisele\AppData\Roaming\pcouffin.log
2014-11-10 16:34 - 2012-12-25 19:56 - 00000000 ____D () C:\Users\Gisele\AppData\Roaming\Vso
2014-11-10 16:08 - 2014-03-04 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-11-10 16:08 - 2014-02-06 12:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2014-11-10 16:08 - 2014-01-15 10:08 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-11-10 16:08 - 2013-04-10 12:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-11-10 16:08 - 2012-10-05 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubMagic
2014-11-10 16:08 - 2012-06-01 01:51 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-11-10 16:08 - 2012-02-10 15:58 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2014-11-10 16:08 - 2012-02-10 15:48 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2014-11-10 16:08 - 2012-02-10 15:33 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2014-11-10 16:08 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-11-10 16:08 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-11-10 16:08 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-10 15:53 - 2013-12-28 17:41 - 00017962 _____ () C:\Users\Gisele\Documents\dvd fims nieuw.odt
2014-11-10 11:13 - 2014-04-20 22:18 - 00000000 ___RD () C:\Users\Gisele\Documents\FIRMA1
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-04 12:19 - 2014-01-01 10:07 - 00000000 ____D () C:\Users\Gisele\Documents\DVD COVERS
2014-11-01 13:10 - 2014-07-17 12:18 - 00000000 ____D () C:\Users\Gisele\Documents\UGANDA 2
2014-11-01 12:22 - 2014-02-06 12:10 - 00000000 ____D () C:\Users\Gisele\Documents\SANTANDER
2014-10-31 18:07 - 2012-10-05 20:06 - 00000123 ___SH () C:\ProgramData\.zreglib
2014-10-30 12:30 - 2014-03-19 18:57 - 00692736 _____ () C:\Users\Gisele\AppData\Local\rx_audio.Cache
2014-10-29 19:50 - 2014-02-21 14:12 - 13783216 _____ () C:\Users\Gisele\AppData\Local\rx_image32.Cache
2014-10-29 17:53 - 2014-01-10 19:58 - 00000000 ____D () C:\Users\Gisele\Documents\50 VLAAMSE HITS
2014-10-29 17:26 - 2013-11-17 14:12 - 00000000 ___RD () C:\Users\Gisele\Documents\HANDLEIDINGEN
2014-10-28 17:39 - 2014-06-29 14:50 - 00000000 ____D () C:\ProgramData\Apple
2014-10-28 17:36 - 2014-09-29 09:58 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-10-28 17:19 - 2014-02-21 12:13 - 00000000 ____D () C:\Users\Gisele\AppData\Local\Corel_Corporation
 
Files to move or delete:
====================
C:\Windows\Tasks\{8BE261E3-B96D-4439-BA1F-AAD83FF4FAE1}.job
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-11-25 00:14
 
==================== End Of Log ============================
 
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-11-2014 01
Ran by Gisele at 2014-11-26 08:56:12
Running from C:\Users\Gisele\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Reader X (10.1.12) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.12 - Adobe Systems Incorporated)
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
AnyDVD (HKLM-x32\...\AnyDVD) (Version: 7.5.3.0 - SlySoft)
Belgium e-ID middleware 4.0.7 (build 7453) (HKLM\...\{824563DE-75AD-4166-9DC0-B6482F207453}) (Version: 4.0.7453 - Belgian Government)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.100.82.140 - Broadcom Corporation)
Broadcom Bluetooth Software (HKLM\...\{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}) (Version: 6.5.0.3300 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 3.02 - Piriform)
CloneDVD2 (HKLM-x32\...\CloneDVD2) (Version: 2.9.3.0 - Elaborate Bytes)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.88 - DivX, LLC)
Easy Computing - PC Drukkerij CD's & DVD's versie 6 (HKLM-x32\...\{E15CA073-CE07-4A33-8381-D4906C6173A7}) (Version: 4.1 - )
Elevated Installer (x32 Version: 3.2.21.0 - Garmin Ltd or its subsidiaries) Hidden
Evernote v. 4.5.2 (HKLM-x32\...\{8CE152BA-1D16-11E1-867D-984BE15F174E}) (Version:  - )
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.7.1 - Ellora Assets Corporation)
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{045320b6-c340-4960-aefd-57bf08a9b425}) (Version: 3.2.21.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.21.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.21.0 - Garmin Ltd or its subsidiaries) Hidden
GemistDownloader (HKLM-x32\...\GemistDownloader) (Version: 2.8.1.8 - Wietze Beukema (HelpdeskWeb.nl))
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version:  - )
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
HP 3D DriveGuard (HKLM\...\{8A9B16F0-A84E-4EC5-BDA7-0ACCE79FB043}) (Version: 4.2.9.1 - Hewlett-Packard Company)
HP Launch Box (HKLM\...\{5A847522-375C-4D05-BD3D-88C450CC047F}) (Version: 1.1.5 - Hewlett-Packard Company)
HP Photosmart 5520 series Basissoftware van het apparaat (HKLM\...\{D2FFE8A1-980E-4CF9-A48F-453D767BA661}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart 5520 series Productverbeteringsonderzoek (HKLM\...\{ABDD5DC4-E37C-40E1-AB1C-601AA7F7D383}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Security Assistant (HKLM\...\{ED6CD3AC-616B-4B20-BCF3-6E637B92A5AD}) (Version: 3.0.4 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation)
LibreOffice 4.2 Help Pack (Dutch) (HKLM-x32\...\{B9953A9A-27B6-43C6-A65E-BCE875E9F1BF}) (Version: 4.2.3.3 - The Document Foundation)
LibreOffice 4.2.3.3 (HKLM-x32\...\{4117DF3C-6677-4A22-90B7-FF06923417E9}) (Version: 4.2.3.3 - The Document Foundation)
Macromedia Flash Player 8 (HKLM-x32\...\{6815FCDD-401D-481E-BA88-31B4754C2B46}) (Version: 8.0.22.0 - Macromedia)
MAGIX MP3 deluxe MX (HKLM-x32\...\MX.{84230203-26A9-4D3D-84FD-53B8EDF61087}) (Version: 18.0.3.115 - MAGIX Software GmbH)
MAGIX MP3 deluxe MX (Version: 18.0.3.115 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (MSI) (Version: 7.0.1.29 - MAGIX Software GmbH) Hidden
Malwarebytes Anti-Malware versie 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0413-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version:  - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version:  - )
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.5.0 - Mozilla)
Mozilla Thunderbird 24.6.0 (x86 nl) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 nl)) (Version: 24.6.0 - Mozilla)
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Recuva (HKLM\...\Recuva) (Version: 1.49 - Piriform)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version:  - )
Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Stuurprogrammapakket voor Windows - Fedict SmartCard  (03/25/2014 4.0.7.4) (HKLM\...\B02255EDA75F867B4D85C5A5D23E13D9EF71E8AE) (Version: 03/25/2014 4.0.7.4 - Fedict)
Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.33 - VSO-Software SARL)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinPcap 4.1.1 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinRAR (HKLM-x32\...\WinRAR archiver) (Version:  - )
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WPTx64 (HKLM-x32\...\{BFF81CB5-E8C7-4184-FBB4-74ADFBC6CCCB}) (Version: 8.100.25984 - Microsoft)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-774167087-3708585068-1396899783-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-774167087-3708585068-1396899783-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-774167087-3708585068-1396899783-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-774167087-3708585068-1396899783-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-774167087-3708585068-1396899783-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-774167087-3708585068-1396899783-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
 
==================== Restore Points  =========================
 
17-11-2014 20:08:00 End of disinfection
17-11-2014 21:01:56 Windows Update
19-11-2014 20:14:20 Windows Update
25-11-2014 20:34:35 Installed WPTx64
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-14 03:34 - 2014-11-15 17:43 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {00D4A471-4154-44DA-BE3E-E39702867F0A} - \{10A84920-3E16-4375-9AC1-E08445D4B6BF} No Task File <==== ATTENTION
Task: {09B2D955-8D46-48DB-81CB-B97804C60739} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {1F55D593-C44F-4DCE-ABC9-669A390EE296} - System32\Tasks\Softland\FBackup 5\FBackup 5 Tray Agent_Gisele => C:\Program Files (x86)\Softland\FBackup 5\bTray.exe
Task: {28C15568-52AC-4F9E-B8E1-437EF193BF93} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-11-28] (CyberLink)
Task: {2F533DB8-0CB7-447F-A55F-5E93BACDD10C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-09] (Google Inc.)
Task: {3662156F-7604-4060-B28D-562B9F48460F} - System32\Tasks\ROC_REG_JAN_DELETE => C:\ProgramData\AVG January 2013 Campaign\ROC.exe [2013-01-17] ()
Task: {4A1CD95E-D5B6-42FA-AD40-15EC3A9D6302} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12] (Adobe Systems Incorporated)
Task: {4B5F6003-CB98-46E8-86AA-F780BDF720A8} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2013-06-07] (Hewlett-Packard Development Company, L.P.)
Task: {50C7D608-2342-47CE-847E-267CE6710DDD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-09] (Google Inc.)
Task: {6632CA4C-9469-40D0-A72D-FBCAEEC5C74F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {6634E84D-6931-431F-A2C9-0DF3F1A43B4B} - System32\Tasks\{2683A1CA-06EF-4604-8288-7DA072D4747C} => Iexplore.exe http://ui.skype.com/...tall?page=tsWLM
Task: {6E27E8AA-7D0B-497A-ACC7-1E3080E8E2B5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard)
Task: {7E68F999-2C18-4840-9047-F71D2E5BEDA4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard)
Task: {82FECA5E-94B7-4AE2-A065-D14BE0F8A0E5} - System32\Tasks\HPCustParticipation HP Photosmart 5520 series => C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {BB7EE7DA-CDB1-4147-8ACA-981C37DB5A18} - System32\Tasks\GoogleUpdateTaskMachineCore1cfee6bf72142fd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-09] (Google Inc.)
Task: {C2438ADD-EA0F-47BC-B92F-F14530AF3AE9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {D4C39B64-0BBA-456C-8C47-CB4FC67E56A8} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {ED63F08A-521B-483A-B86D-E7925E5901D1} - System32\Tasks\AllmyappsUpdateTask => C:\Users\Gisele\AppData\Roaming\Allmyapps\Allmyapps.exe
Task: C:\Windows\Tasks\0414bUpdateInfo.job => C:\ProgramData\Avg_Update_0414b\0414b_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\0814avUpdateInfo.job => C:\ProgramData\Avg_Update_0814av\0814av_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\1114avUpdateInfo.job => C:\ProgramData\Avg_Update_1114av\1114av_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\elbyExecuteWithUAC.job => C:\Program Files (x86)\SlySoft\AnyDVD\ExecuteWithUAC.exe
Task: C:\Windows\Tasks\GarminUpdaterTask.job => C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8a9ea7de147b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfee6bf72142fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForGisele.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\ROC_REG_JAN_DELETE.job => C:\ProgramData\AVG January 2013 Campaign\ROC.exe
Task: C:\Windows\Tasks\{8BE261E3-B96D-4439-BA1F-AAD83FF4FAE1}.job => c:\program files\internet explorer\iexplore.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-11-10 16:35 - 2008-06-20 00:41 - 00062464 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Users\Gisele\Documents\De Kermisklanten - Ik heb eerbied voor jouw grijze haren ( 1970 ).mp3:Roxio EMC Stream
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sndappv2 => ""="service"
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\Services: FirebirdServerMAGIXInstance => 3
MSCONFIG\Services: HP Support Assistant Service => 2
MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\startupreg: swg => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
 
========================= Accounts: ==========================
 
Administrator (S-1-5-21-774167087-3708585068-1396899783-500 - Administrator - Disabled)
Gast (S-1-5-21-774167087-3708585068-1396899783-501 - Limited - Disabled)
Gisele (S-1-5-21-774167087-3708585068-1396899783-1000 - Administrator - Enabled) => C:\Users\Gisele
HomeGroupUser$ (S-1-5-21-774167087-3708585068-1396899783-1002 - Limited - Enabled)
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (11/25/2014 10:16:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/25/2014 10:10:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/25/2014 09:48:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/25/2014 09:39:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/24/2014 09:53:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/24/2014 09:41:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/24/2014 09:37:46 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/22/2014 00:11:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/22/2014 00:02:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/19/2014 09:07:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (11/25/2014 10:15:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalStarten{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)
 
Error: (11/25/2014 10:15:40 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalStarten{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (via LRPC)
 
Error: (11/25/2014 10:09:58 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalStarten{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)
 
Error: (11/25/2014 10:09:57 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalStarten{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (via LRPC)
 
Error: (11/25/2014 10:07:48 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalStarten{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)
 
Error: (11/25/2014 10:07:47 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalStarten{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (via LRPC)
 
Error: (11/25/2014 09:48:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalStarten{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)
 
Error: (11/25/2014 09:48:19 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalStarten{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (via LRPC)
 
Error: (11/25/2014 09:38:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalStarten{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)
 
Error: (11/25/2014 09:38:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: toepassingsspecifiekLokaalStarten{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (via LRPC)
 
 
Microsoft Office Sessions:
=========================
Error: (11/25/2014 10:16:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/25/2014 10:10:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/25/2014 09:48:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/25/2014 09:39:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/24/2014 09:53:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/24/2014 09:41:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/24/2014 09:37:46 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/22/2014 00:11:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/22/2014 00:02:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/19/2014 09:07:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-11-15 17:32:45.312
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.
 
  Date: 2014-11-15 17:32:45.296
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.
 
  Date: 2014-11-15 17:32:45.265
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.
 
  Date: 2014-11-15 17:32:45.234
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.
 
  Date: 2014-11-15 16:41:41.354
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.
 
  Date: 2014-11-15 16:41:41.339
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.
 
  Date: 2014-11-15 16:41:41.307
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.
 
  Date: 2014-11-15 16:41:41.276
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.
 
  Date: 2014-11-15 14:44:35.518
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.
 
  Date: 2014-11-15 14:44:35.489
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Pentium® CPU B950 @ 2.10GHz
Percentage of memory in use: 21%
Total physical RAM: 6040.36 MB
Available physical RAM: 4745.97 MB
Total Pagefile: 12078.9 MB
Available Pagefile: 10700.59 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:441.59 GB) (Free:259.42 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Recovery) (Fixed) (Total:23.87 GB) (Free:2.5 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.08 GB) FAT32
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: D514C5BB)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=441.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=23.9 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)
 
==================== End Of Log ============================

  • 0

#84
BrianDrab

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,583 posts

Unfortunately the logs you provided didn't lead me to any definitive answer. I do see that it took 10 seconds to load your user profile however so I would like to rule out corruption. Can you create a new user and then log on with the new user? Please follow the instructions here  to create one.

 

Let me know if the delay is present.

 

Thank you.


  • 0

#85
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

Well, I think after the scannow and chkdsk , I counted in my head the delay, it was arround 15 sec, so no 20sec anymore.

 

Now, I made a new account, rebooted the system, but the black screen still appears (stopwathc 11 seconds) then I get the screen to choose the account to login.

 

I'm not sure If I explained it correctly : But I first get the black screen with white arrow, then I get to see the account where I put the pasword, then it goes fast from there.

 

I'm not sure if a new account can help, as the black screen appears before I login (before I open an account with or without password).


  • 0

Advertisements


#86
BrianDrab

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,583 posts

I do understand and you are correct it wasn't likely going to make a difference since the delay is before the logon box but I appreciate you trying. I have a few other things I'd like to try. I'll put it together and post back once approved.

 


  • 0

#87
BrianDrab

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,583 posts

Step#1 - Disable your Network Adapter

1. Click on your networking icon in your system tray by your time on the computer and then click "Open Networking and Sharing Center".

NetworkSharingCenter.JPG

2. In the window that opens, click on Change adapter settings.

ChangeAdapterSettings.JPG

 

3. In the window that opens you will see your network adapters. Not sure if you are using a wireless adapter or physically connected but they will be in here.

4. Right-click on any enabled adapter and select Disable.

Disable.JPG

 

5. Reboot and see if the delay exists. Then go ahead and repeat the steps above but select Enable instead of Disable.

 

 

Step#2 - FRST Fix
 
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
1. Download attached file and save it to the Desktop. Attached File  fixlist.txt   267bytes   53 downloads
Note. It's important that both files, FRST64 and fixlist.txt are in the same location or the fix will not work (in this case...the desktop).
2. Run FRST64 by Right-Clicking on the file and choosing Run as administrator.
3. Press the Fix button just once and wait. If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
4. When finished FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents of it in your reply.

 

 

Step#3 - Set Registry/File permissions

1.  Download Windows Repair (All-in-One) Portable to your desktop.
2.  Once the file is downloaded, right-click on the file on your desktop and choose Extract All...
Extract.JPG
3.  Keep the defaults and click the Extract button.
4.  A folder named tweaking.com_windows_repair_aio will be extracted to the desktop. Once the extraction is complete the folder will open.
5.  Inside this folder, there is a folder named Tweaking.com - Windows Repair. Open this folder as well.
Capture.JPG
 

 

6. Double-click on Repair_Windows.exe to open.
7. When the program opens, click the Repairs tab and click the Open Repairs button.
Start%20Repairs.JPG
8. A backup of your registry will be made. After a few moments you will have many options from which you can choose.
9. Please click the Unselect All button and then click to enable only the following ones:
      01 - Reset Registry Permissions

      02 - Reset File Permissions
      03 - Reset Service Permissions
      04 - Register System Files
      05 - Repair WMI
   
10. Ensure the Restart check box is selected and click the Start Repairs button in the lower right of the screen. This may take some time to run so be patient.

StartRepairsWithReboot.JPG
11. Once the fixes are complete you will be prompted to restart your machine. Answer Yes and with any luck you won't have the delay.
 

Step#4 - System Update Readiness Tool (SUR)

1. Download and run the following file.

2. When it asks you if you wish to install, please answer yes. Note: It could take 15 minutes or more to run. Please don't cancel.

3. You will get an Installation Complete screen when it's done running.

4. Please post the contents of the log from the following location. C:\Windows\Logs\CBS\CheckSUR.log

 

 

Items for your next post

1. Contents of FRST Fix log

2. Contents of CheckSUR.log


  • 0

#88
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

I disabled the adapters and also removed a broadbad connection. stopwatch:10,11 sec

 

After the fix (FRST64) : stopwatch: 07,18 sec.

 

 

fixlog:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 26-11-2014 01
Ran by Gisele at 2014-11-27 21:18:40 Run:2
Running from C:\Users\Gisele\Desktop
Loaded Profile: Gisele (Available profiles: Gisele & test)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\Users\Owner\AppData\Roaming\CJVEYMH
C:\Users\Owner\AppData\Roaming\GQRWQQA
C:\Users\Owner\AppData\Roaming\YLEIWO
C:\Users\Owner\Downloads\adobe_flash_setup*.exe
C:\Users\Owner\Downloads\setup (*).exe
C:\Windows\Installer\127df613.msi
EmptyTemp:

 

 

 

*****************

"C:\Users\Owner\AppData\Roaming\CJVEYMH" => File/Directory not found.
"C:\Users\Owner\AppData\Roaming\GQRWQQA" => File/Directory not found.
"C:\Users\Owner\AppData\Roaming\YLEIWO" => File/Directory not found.
"C:\Users\Owner\Downloads\adobe_flash_setup*.exe" => File/Directory not found.
"C:\Users\Owner\Downloads\setup (*).exe" => File/Directory not found.
"C:\Windows\Installer\127df613.msi" => File/Directory not found.
EmptyTemp: => Removed 100.8 MB temporary data.

The system needed a reboot.

==== End of Fixlog ====


  • 0

#89
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

Windows Repair (All-in-One) Portable 

I left the laptop on, when I went to the laptop, the laptop was off. I put the laptop on (boot) , now it seems that the delay is back 20 seconds (did not use stopwatch). Rebooted the laptop and this time I used the stopwatch: 11,33 sec.

 

Maybe the first boot after the windows repair took place, it needed more time to boot?

 

Now I'm going to do the next step;


  • 0

#90
HaraMo

HaraMo

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 329 posts

=================================
Checking System Update Readiness.
Binary Version 6.1.7601.22471
Package Version 26.0
2014-11-27 22:11

Checking Windows Servicing Packages

Checking Package Manifests and Catalogs

Checking Package Watchlist

Checking Component Watchlist

Checking Packages

Checking Component Store

Summary:
Seconds executed: 476
 No errors detected


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP