Ga naar inhoud

yener

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    11

  • Registratiedatum

  • Laatst bezocht

yener's prestaties

Groentje

Groentje (2/14)

  • Eerste post
  • Actief
  • Gespreksstarter
  • Week één klaar
  • Een maand later

Recente badges

0

Reputatie

  1. yener
    ik krijg geen meldingen nimmer, maar moet ik mn pc wekelijks scannen ofzo??
  2. yener
    # AdwCleaner v3.012 - Report created 11/11/2013 at 09:36:53 # Updated 11/11/2013 by Xplode # Operating System : Windows Vista Home Premium Service Pack 2 (32 bits) # Username : Esma - PC_VAN_ESMA # Running from : C:\Users\Esma\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CBKND08K\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{106F626E-37A8-421C-A666-832F55E0AA23} [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{106F626E-37A8-421C-A666-832F55E0AA23} Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1 Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\hdcode Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9 Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24 Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607 Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21 Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF ***** [ Browsers ] ***** -\\ Internet Explorer v9.0.8112.16447 -\\ Mozilla Firefox v ************************* AdwCleaner[R0].txt - [2945 octets] - [11/11/2013 09:24:53] AdwCleaner[s0].txt - [2937 octets] - [11/11/2013 09:36:53] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2997 octets] ##########
  3. yener
    Zoek.exe Version 4.0.0.5 Updated 05-November-2013 Tool run by Esma on vr 08/11/2013 at 15:52:10,57. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Esma\AppData\Local\Temp\Rar$EX03.180\zoek.exe [script inserted] [Checkboxes used] ==== System Restore Info ====================== 8/11/2013 15:55:15 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\revision deleted successfully C:\ProgramData\revision deleted successfully C:\Users\Esma\AppData\Roaming\Nico Mak Computing deleted successfully C:\Users\Esma\AppData\Roaming\Octoshape deleted successfully C:\Users\Esma\AppData\Roaming\SmashFrenzy3 deleted successfully C:\Users\Esma\AppData\Roaming\WinRAR deleted successfully C:\Users\Esma\AppData\Local\ADDP deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{56361A71-4E9F-401D-9E12-8AEAA3D7A672} deleted successfully HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{56361A71-4E9F-401D-9E12-8AEAA3D7A672} deleted successfully HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{56361A71-4E9F-401D-9E12-8AEAA3D7A672} deleted successfully HKEY_CLASSES_ROOT\CLSID\{56361A71-4E9F-401D-9E12-8AEAA3D7A672} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{56361A71-4E9F-401D-9E12-8AEAA3D7A672} deleted successfully HKEY_CLASSES_ROOT\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully HKEY_CLASSES_ROOT\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{56361A71-4E9F-401D-9E12-8AEAA3D7A672} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{56361A71-4E9F-401D-9E12-8AEAA3D7A672} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\BBSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BBSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\BBSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\BBSvc deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{56361A71-4E9F-401D-9E12-8AEAA3D7A672}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] ""=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] ""=- [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] @="C:\\Program Files\\Internet Explorer\\iexplore.exe" ==== Deleting Files \ Folders ====================== C:\Program Files\MakeItLive deleted C:\Program Files\Microsoft\BingBar deleted C:\ProgramData\eSafe deleted C:\Program Files\SopCast deleted C:\Program Files\PHPNukeDU deleted C:\Program Files\Common Files\DVDVideoSoft\bin deleted C:\Program Files\uTorrentBar_NL deleted C:\Program Files\YTD Toolbar deleted C:\ProgramData\YTD Video Downloader deleted C:\Users\Esma\AppData\Local\CRE deleted C:\Users\Esma\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader deleted C:\Users\Esma\AppData\LocalLow\PHPNukeDU deleted C:\Users\Esma\AppData\LocalLow\uTorrentBar_NL deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\Application Updater deleted C:\Windows\system32\tasks\Desk 365 RunAsStdUser deleted C:\prefs.js deleted C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP\WiseCustomCall.dll" deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP\WiseCustomCalla.dll" deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP\WiseCustomCalla17.dll" deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP\WiseCustomCalla18.exe" deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP\WiseCustomCalla19.dll" deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP\WiseCustomCalla2.dll" deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP\WiseCustomCalla20.dll" deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP\WiseCustomCalla22.dll" deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP\WiseCustomCalla22.exe" deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP\WiseData.ini" deleted "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-11-04 18:39:35 A9D56A34095AB80E85AD630B8405182A 81920 ----a-w- C:\Windows\eSellerateControl350.dll 2013-11-04 18:39:35 02127FDD91FDA05FA8B201A4171CC0E2 356352 ----a-w- C:\Windows\eSellerateEngine.dll ====== C:\Users\Esma\AppData\Local\Temp ==== 2013-11-04 19:03:16 BCB0728F4B117855765CE8FE883B5E9B 1536 ----a-w- C:\Users\Esma\AppData\Local\Temp\NOSEventMessages.dll 2013-11-04 14:18:48 F7F10EB2D6BBD690491C4E5F4B0D9C1A 498360 ----a-w- C:\Users\Esma\AppData\Local\Temp\MSS\3.8.130.8\McUICnt.exe 2013-11-04 14:18:48 E4882D07A94409BE728D2B7EB1A0355A 153280 ----a-w- C:\Users\Esma\AppData\Local\Temp\MSS\3.8.130.8\McInstallerRes_LD.dll 2013-11-04 14:18:48 206A83BDC11D09FB1B3740236ED5E9EE 418568 ----a-w- C:\Users\Esma\AppData\Local\Temp\MSS\3.8.130.8\mcbrwsr2.dll 2013-11-04 14:18:48 1589E640071083714607A200D0155866 264008 ----a-w- C:\Users\Esma\AppData\Local\Temp\MSS\3.8.130.8\McInstallerRes.dll 2013-11-04 14:18:48 0C16A79F80239D737E86A3E9C075C158 571472 ----a-w- C:\Users\Esma\AppData\Local\Temp\MSS\3.8.130.8\McInstallerStartup.dll 2013-11-04 09:33:52 0679D39A697632EBD50DD438AB633214 45665360 ----a-w- C:\Users\Esma\AppData\Local\Temp\SHSetup.exe 2013-11-04 09:19:29 CC6631EE64A4DD63F4A7D0B55E59E455 1980232 ----a-w- C:\Users\Esma\AppData\Local\Temp\UNINSTALL.EXE 2013-11-04 09:17:25 D8CD92EC440E97B9F146AB8AF5A22599 163720 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\psuser.dll 2013-11-04 09:17:25 CFAF7B67C78D09D79688AEDCA3D090E2 597896 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\npGoogleUpdate3.dll 2013-11-04 09:17:25 5A868A07FD086421BC103C8087023B31 163720 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\psmachine.dll 2013-11-04 09:17:23 CEFEBDB9E274BD90C12D131ED25CC819 59784 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleUpdateOnDemand.exe 2013-11-04 09:17:23 70AB209D149CB85AB9B8021947AFB6B0 26112 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleUpdateHelper.msi 2013-11-04 09:17:23 6D6B5D52BB81F82F5D0103E6175D1F4F 869256 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\goopdate.dll 2013-11-04 09:17:23 4AFFF5FE4E69C8E7C5F1E4F3511301CF 818968 ----a-w- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleUpdateSetup.exe 2013-11-04 09:17:22 EB8EEB98D01B5D31898D8E53C3789832 59784 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleUpdateBroker.exe 2013-11-04 09:17:22 CF7B0E597C1F34E528285495721DEEE9 237960 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleCrashHandler.exe 2013-11-04 09:17:22 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleUpdate.exe 2013-11-04 09:17:22 0DC0DE2966A6DBA4CFBF6639DF44F5BA 319880 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleCrashHandler64.exe 2013-11-03 19:03:01 20F03B1B926F4EA65763E364ACAD7C59 4698984 ----a-w- C:\Users\Esma\AppData\Local\Temp\oi_{0EE0B98F-F785-45BB-B64B-C05751CBB040}.exe ====== C:\Windows\system32 ===== 2013-11-04 18:39:35 D5405DD640E870B1DD4F5B4BD08865BB 1122304 ----a-w- C:\Windows\System32\libeay32.dll 2013-11-04 18:39:35 8EAE03A0F0BF13AF27702E29460D7B47 274432 ----a-w- C:\Windows\System32\ssleay32.dll ====== C:\Windows\system32\drivers ===== 2013-11-04 19:09:47 8C547EB6709BF41E0625EFCDF13C63CE 595552 ----a-w- C:\Windows\System32\drivers\klif.sys 2013-11-04 19:09:47 2442777B6275B3F4F0D967933525648C 74848 ----a-w- C:\Windows\System32\drivers\klflt.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-11-04 21:58:29 -------- d-----w- C:\Program Files\trend micro 2013-11-04 19:11:05 -------- d-----w- C:\Program Files\Kaspersky Lab 2013-11-04 18:39:35 -------- d-----w- C:\Program Files\Omiga Plus Removal Tool 2013-11-04 09:35:12 -------- d-----w- C:\Program Files\Enigma Software Group 2013-11-04 09:34:17 -------- d-----w- C:\Program Files\Common Files\Wise Installation Wizard ======= C: ===== ====== C:\Users\Esma\AppData\Roaming ====== ====== C:\Users\Esma ====== 2013-11-04 22:20:12 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Esma\Downloads\RSIT.exe 2013-11-04 19:14:20 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 2013 2013-11-04 19:11:05 -------- d-----w- C:\ProgramData\Kaspersky Lab 2013-11-03 17:48:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast ====== C: exe-files == 2013-11-04 22:24:49 CFCCB55A013592243777C73E917652E0 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2422730465-428965375-3337096384-1000\$I5JXD56.exe 2013-11-04 22:24:45 39BE52E0E2DD37EECCEFAF46DD85114B 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2422730465-428965375-3337096384-1000\$IZ8UI67.exe 2013-11-04 22:24:35 545229FCFD00BCEDAC1AC6FC49F031F5 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2422730465-428965375-3337096384-1000\$IBS7VOY.exe 2013-11-04 22:24:31 2172026FBFD8DCD0036E5B1C18CC78A1 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2422730465-428965375-3337096384-1000\$IVEQXPS.exe 2013-11-04 22:20:12 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Esma\Downloads\RSIT.exe 2013-11-04 22:18:11 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Esma\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XL8MSEMM\RSIT.exe 2013-11-04 21:58:31 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Esma.exe 2013-11-04 19:22:05 5F041EE9B898A75CD284A6E21B3DCCA0 39864 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\ffcert.exe 2013-11-04 19:22:05 587EFD6A3A30A35A27904D21AE1FB882 356376 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\avp.exe 2013-11-04 19:07:21 BE42B516425DC83DA8DBDAE4492C5071 178454784 ----a-w- C:\Users\Esma\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8V259IGO\kav13.0.1.4190nl-nl.exe 2013-11-04 18:39:35 2856DE158A6FFC29F61DF4015F7C8A57 10942448 ----a-w- C:\Program Files\Omiga Plus Removal Tool\Report.exe 2013-11-04 14:18:48 F7F10EB2D6BBD690491C4E5F4B0D9C1A 498360 ----a-w- C:\Users\Esma\AppData\Local\Temp\MSS\3.8.130.8\McUICnt.exe 2013-11-04 09:33:52 0679D39A697632EBD50DD438AB633214 45665360 ----a-w- C:\Users\Esma\AppData\Local\Temp\SHSetup.exe 2013-11-04 09:19:29 CC6631EE64A4DD63F4A7D0B55E59E455 1980232 ----a-w- C:\Users\Esma\AppData\Local\Temp\UNINSTALL.EXE 2013-11-04 09:17:43 1DB5B92E54BA5E4976995B6BE4B0BB81 34615136 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\30.0.1599.101\30.0.1599.101_chrome_installer.exe 2013-11-04 09:17:23 CEFEBDB9E274BD90C12D131ED25CC819 59784 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleUpdateOnDemand.exe 2013-11-04 09:17:23 4AFFF5FE4E69C8E7C5F1E4F3511301CF 818968 ----a-w- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleUpdateSetup.exe 2013-11-04 09:17:22 EB8EEB98D01B5D31898D8E53C3789832 59784 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleUpdateBroker.exe 2013-11-04 09:17:22 CF7B0E597C1F34E528285495721DEEE9 237960 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleCrashHandler.exe 2013-11-04 09:17:22 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleUpdate.exe 2013-11-04 09:17:22 0DC0DE2966A6DBA4CFBF6639DF44F5BA 319880 ----atw- C:\Users\Esma\AppData\Local\Temp\{DA5E13C8-EE39-4623-9F8D-2B57996C766E}\GoogleCrashHandler64.exe 2013-11-03 19:03:01 20F03B1B926F4EA65763E364ACAD7C59 4698984 ----a-w- C:\Users\Esma\AppData\Local\Temp\oi_{0EE0B98F-F785-45BB-B64B-C05751CBB040}.exe === C: other files == 2013-11-04 19:22:06 EA26CB00F83686856F2C79673C00C686 136024 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\drv32\501\p\kl1.sys 2013-11-04 19:22:06 EA26CB00F83686856F2C79673C00C686 136024 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\drv32\501\kl1.sys 2013-11-04 19:22:06 E7EFE379B05BB01F13885C5DBE5A4E64 44432 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\drv32\p\kltdi.sys 2013-11-04 19:22:06 E7EFE379B05BB01F13885C5DBE5A4E64 44432 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\drv32\kltdi.sys 2013-11-04 19:22:06 C21FACBBC1F7C8533646D6ECC4E846A3 3018626 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\loc\decl2.zip 2013-11-04 19:22:06 BE21AC70BB25B9BA0D79AA510D6BBFCB 594528 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\drv32\600\p\klif.sys 2013-11-04 19:22:06 BE21AC70BB25B9BA0D79AA510D6BBFCB 594528 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\drv32\600\klif.sys 2013-11-04 19:22:06 A58507C2827C3AE1D4CCB2746AAB349F 25944 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\drv32\600\p\klmouflt.sys 2013-11-04 19:22:06 A58507C2827C3AE1D4CCB2746AAB349F 25944 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\drv32\600\klmouflt.sys 2013-11-04 19:22:06 24AEBAD59D1DE8A7CC36E8F09F999362 25944 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\drv32\600\p\klkbdflt.sys 2013-11-04 19:22:06 24AEBAD59D1DE8A7CC36E8F09F999362 25944 ----a-w- C:\ProgramData\Kaspersky Lab\AVP13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav13\13.0.1.4190\drv32\600\klkbdflt.sys 2013-11-04 19:09:47 8C547EB6709BF41E0625EFCDF13C63CE 595552 ----a-w- C:\Windows\System32\drivers\klif.sys 2013-11-04 19:09:47 2442777B6275B3F4F0D967933525648C 74848 ----a-w- C:\Windows\System32\drivers\klflt.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Windows\CurrentVersion\Run] "ProductReg"="C:\Program Files\Acer\WR_PopUp\ProductReg.exe" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "Facebook Update"="C:\Users\Esma\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "NokiaSuite.exe"="C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ArcadeDeluxeAgent"="C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" "Skytel"="C:\Program Files\Realtek\Audio\HDA\Skytel.exe" "PLFSetI"="C:\Windows\PLFSetI.exe" "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "LManager"="C:\Program Files\Launch Manager\LManager.exe" "BackupManagerTray"="C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe -k" "Acer ePower Management"="C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe" "EgisTecLiveUpdate"="C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe" "mwlDaemon"="C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe" "PlayMovie"="C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" "CLMLServer"="C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" "NokiaMusic FastStart"="C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe /command:faststart" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" "HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe" "RemoteControl"="C:\Users\Esma\Desktop\PDVDServ.exe" "LanguageShortcut"="C:\Users\Esma\Desktop\Language\Language.exe" "AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe" "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ProductReg"="C:\Program Files\Acer\WR_PopUp\ProductReg.exe" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "Facebook Update"="C:\Users\Esma\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "NokiaSuite.exe"="C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" ==== Startup Folders ====================== 2013-04-25 10:12:25 228 ---h--w- C:\Users\Esma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BackupManager.list 2013-09-19 17:39:24 995 ----a-w- C:\Users\Esma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2013-04-25 00:25:38 198 ---h--w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BackupManager.list ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09/10/2013 22:03] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2422730465-428965375-3337096384-1000Core.job --a------ C:\Users\Esma\AppData\Local\Facebook\Update\FacebookUpdate.exe [28/06/2013 19:43] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2422730465-428965375-3337096384-1000UA.job --a------ C:\Users\Esma\AppData\Local\Facebook\Update\FacebookUpdate.exe [28/06/2013 19:43] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:F0C:\ProgramC:Files\Google\Update\GoogleUpdate.exe [] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\0" [c:\program files\internet explorer\iexplore.exe] "C:\Windows\system32\tasks\4571" [wscript.exe C:\Users\Esma\AppData\Local\Temp\launchie.vbs //B] "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-2422730465-428965375-3337096384-1000Core" [C:\Users\Esma\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-2422730465-428965375-3337096384-1000UA" [C:\Users\Esma\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\HPCustParticipation HP Photosmart 5510 series" ["C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPCustPartic.exe"] "C:\Windows\system32\tasks\User_Feed_Synchronization-{E0562372-0AD0-4502-9D5D-80F2B1D74BAC}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "content_blocker@kaspersky.com"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\content_blocker@kaspersky.com" [04/11/2013 20:22] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "addlyrics@addlyrics.net"="C:\Program Files\AddLyrics\FF" [] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions dchlnpcodkpfdpacogkljefecpegganj - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\ChromeExt\urladvisor.crx[16/05/2013 19:41] hghkgaeecgjhjkannahfamoehjmkjail - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\ChromeExt\content_blocker_chrome.crx[16/05/2013 19:41] jagncdcchgajhfhijbbhecadmaiegcmh - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\ChromeExt\virtkbd.crx[16/05/2013 19:38] nbmafkdmkkckhggblphicnnhlgljnoje - C:\Program Files\TornTV.com\torn2_10.crx[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[] Extended Protection - Esma - Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml Kaspersky URL Advisor - Esma - Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj Content Blocker - Esma - Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail Virtual Keyboard - Esma - Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh Google Wallet - Esma - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda undetermined - Esma - Default\Extensions\BackupManager.list ==== Chrome Fix ====================== C:\Users\Esma\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" "Search Page"="Google" "Default_Page_URL"="Isearch.omiga-plus.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="Isearch.omiga-plus.com" "Default_Page_URL"="Isearch.omiga-plus.com" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.google.com/search/?q=%s" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="Bing" "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" "Start Page"="https://www.google.be/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="%s - Bing" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{18267DC0-44CF-4B00-93E3-DB15EE1A7846}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found" {18267DC0-44CF-4B00-93E3-DB15EE1A7846} Google Url="{searchTerms} - Google zoeken" {33BB0A4E-99AF-4226-BDF6-49120163DE86} Unknown Url="Not_Found" {67A2568C-7A0A-4EED-AECC-B5405DE63B64} Unknown Url="Not_Found" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" {82682F40-ECD2-4BFA-ADAD-96CD529BCE2A} Google Url="{searchTerms} - Google zoeken" ==== Reset Google Chrome ====================== C:\Users\Esma\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Esma\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2422730465-428965375-3337096384-1000\Software\Mozilla\Firefox\Extensions\addlyrics@addlyrics.net deleted successfully ==== shortcuts on Users Desktops ====================== C:\Users\Esma\Desktop\Calculator.lnk - C:\Windows\system32\calc.exe C:\Users\Esma\Desktop\Dropbox.lnk - C:\Users\Esma\AppData\Roaming\Dropbox\bin\Dropbox.exe /home C:\Users\Esma\Desktop\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe Isearch.omiga-plus.com C:\Users\Esma\Desktop\VoipBuster.lnk - C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe C:\Users\Esma\Desktop\Arif foto's\Argenta\Prullenbak - Snelkoppeling.lnk - C:\Users\Esma\Desktop\Fotos waterschade Karaca\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Esma\Desktop\niet verzonden fotos werken\Media converter.lnk - C:\Program Files\Media converter\MediaConverter.exe ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\Acer Arcade Deluxe.lnk - C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Acer Arcade Deluxe.exe C:\Users\Public\Desktop\Adobe Reader 9.lnk - C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe C:\Users\Public\Desktop\Benodigdheden kopen - HP Photosmart 5510 series.lnk - C:\Program Files\HP\HP Photosmart 5510 series\Bin\hpqDTSS.exe C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner.exe C:\Users\Public\Desktop\Etnicom.lnk - C:\Windows\Installer\{BB86126C-B14E-416F-8F05-6D3D204A7289}\chat.exe C:\Users\Public\Desktop\HP Photo Creations.lnk - C:\Program Files\HP Photo Creations\PhotoProduct.exe C:\Users\Public\Desktop\HP Photosmart 5510 series.lnk - C:\Program Files\HP\HP Photosmart 5510 series\Bin\HP Photosmart 5510 series.exe -Start UDCDevicePage C:\Users\Public\Desktop\Kaspersky Anti-Virus 2013.lnk - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\starter_avp.exe C:\Users\Public\Desktop\MyWinLocker.lnk - C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlMgtConsole.exe C:\Users\Public\Desktop\Nokia Ovi Player.lnk - C:\Windows\Installer\{1226B9A5-FBFD-4120-9AED-08CABCDAF3AB}\NewShortcut212_97D9937048B14BA7A06DF2BCC5B56955.exe C:\Users\Public\Desktop\Nokia PC Suite.lnk - C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe C:\Users\Public\Desktop\Nokia Suite.lnk - C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe C:\Users\Public\Desktop\Xilisoft Video Converter Ultimate.lnk - C:\Program Files\Xilisoft\Video Converter Ultimate\vcloader.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Esma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe Isearch.omiga-plus.com C:\Users\Esma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe Isearch.omiga-plus.com C:\Users\Esma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox.lnk - C:\Users\Esma\AppData\Roaming\Dropbox\bin\Dropbox.exe /home C:\Users\Esma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Uninstall Dropbox.lnk - C:\Users\Esma\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe C:\Users\Esma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk - C:\Users\Esma\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 2013\Bezoek Kaspersky Lab op het internet.lnk - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\kl.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 2013\Kaspersky Anti-Virus 2013 Help.lnk - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\Doc\nl\KAV\context.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 2013\Kaspersky Anti-Virus 2013 verwijderen.lnk - C:\Windows\System32\msiexec.exe /i{560985FB-4B76-4121-9189-7A2CDC7886D6} REMOVE=ALL C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 2013\Kaspersky Anti-Virus 2013.lnk - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\starter_avp.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 2013\Licentieovereenkomst.lnk - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\Doc\nl\license.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast\SopCast.lnk - C:\Program Files\SopCast\SopCast.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast\Uninstall.lnk - C:\Program Files\SopCast\uninst.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast\Website.lnk - C:\Program Files\SopCast\SopCast.url ==== shortcuts in Quick Launch ====================== C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DVD Decrypter.lnk - C:\Program Files\DVD Decrypter\DVDDecrypter.exe C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DVD Shrink 3.2.lnk - C:\Program Files\DVD Shrink\DVD Shrink 3.2.exe C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe Isearch.omiga-plus.com C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Media converter.lnk - C:\Program Files\Media converter\MediaConverter.exe C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nokia Ovi Player.lnk - C:\Windows\Installer\{1226B9A5-FBFD-4120-9AED-08CABCDAF3AB}\NewShortcut2_CDF681E133824FFDB6C41A0530C561D5.exe C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\SpyHunter.lnk - C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Xilisoft Video Converter Ultimate.lnk - C:\Program Files\Xilisoft\Video Converter Ultimate\vcloader.exe ==== shortcuts After Repair ====================== C:\Users\Esma\Desktop\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Esma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Esma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Esma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\cekcjpgehmohobmdiikfnopibipmgnml deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\nbmafkdmkkckhggblphicnnhlgljnoje deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Esma\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Esma\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Esma\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Esma\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Esma\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Esma\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on vr 08/11/2013 at 16:38:53,60 ======================
  4. yener
    Zoek.exe is running now. Do not start any browser windows, they will be closed automatically. Please wait! This window will close when finished. A logfile will open afterwards and can also be found on your systemdrive as zoek-results.log
  5. yener
    @IEscape ok, ik wacht wel
  6. yener
    ok, laat maar iets weten, toch bedankt.. - - - Updated - - - spreken we over minuten of uren, eer ze online zijn??
  7. yener
    Logfile of random's system information tool 1.09 (written by random/random) Run by Esma at 2013-11-04 23:18:20 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 350 GB (75%) free of 467 GB Total RAM: 3000 MB (45% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 23:18:33, on 4/11/2013 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16447) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Windows\system32\taskeng.exe C:\Windows\PLFSetI.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\system32\igfxsrvc.exe C:\Users\Esma\AppData\Local\Temp\RtkBtMnt.exe C:\Program Files\Launch Manager\LManager.exe C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\HP\HP Software Update\hpwuschd2.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Users\Esma\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Windows\ehome\ehmsas.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\PC Connectivity Solution\Transports\NclIrSrv.exe C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe C:\Windows\system32\igfxext.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_117_ActiveX.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\klwtblfs.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Esma\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XL8MSEMM\RSIT.exe C:\Program Files\trend micro\Esma.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Isearch.omiga-plus.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Isearch.omiga-plus.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Isearch.omiga-plus.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll O2 - BHO: MakeItLive Plugin - {56361A71-4E9F-401D-9E12-8AEAA3D7A672} - C:\Program Files\MakeItLive\makeitlive_toolbar.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing) O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) O3 - Toolbar: MakeItLive Plugin - {56361A71-4E9F-401D-9E12-8AEAA3D7A672} - C:\Program Files\MakeItLive\makeitlive_toolbar.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing) O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe O4 - HKLM\..\Run: [skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -k O4 - HKLM\..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe" O4 - HKLM\..\Run: [mwlDaemon] C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup O4 - HKLM\..\Run: [NokiaMusic FastStart] "C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe" /command:faststart O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [RemoteControl] C:\Users\Esma\Desktop\PDVDServ.exe O4 - HKLM\..\Run: [LanguageShortcut] C:\Users\Esma\Desktop\Language\Language.exe O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe" O4 - HKCU\..\Run: [ProductReg] "C:\Program Files\Acer\WR_PopUp\ProductReg.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Esma\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: BackupManager.list O4 - Startup: Dropbox.lnk = Esma\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Global Startup: BackupManager.list O9 - Extra button: Virtueel Toetsenbord - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: Controle van URL's - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} (20-20 3D Viewer for IKEA) - http://kitchenplanner.ikea.com/be/Core/Player/2020PlayerAX_IKEA_Win32.cab O16 - DPF: {28B66320-9687-4B13-8757-36F901887AB5} (CanvasX Class) - http://foto.hema.be/ips-opdata/layout/hema/objects/canvasx.cab O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} - http://download.easetuner.com/download/SOPCORE.CAB O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F560} (Flatcast Viewer 5.2) - http://92.51.137.94/objects/NpFv522.dll O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F561} (Flatcast Viewer 5.3) - http://download.flatcast.net/objects/NpFv530.dll O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: makeitlivechrome - {51472043-0170-45F9-BCCF-19FCFC676D18} - C:\Program Files\MakeItLive\makeitlive_toolbar.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: AcerSyncServiceWinService - Unknown owner - C:\Program Files\Acer\AcerSync\AcerSyncService.exe (file missing) O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Kaspersky Anti-Virus-service (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe -- End of file - 13166 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2422730465-428965375-3337096384-1000Core.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2422730465-428965375-3337096384-1000UA.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}] Content Blocker Plugin - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2012-08-17 537528] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{56361A71-4E9F-401D-9E12-8AEAA3D7A672}] MakeItLive Plugin - C:\Program Files\MakeItLive\makeitlive_toolbar.dll [2010-08-19 434288] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}] Virtual Keyboard Plugin - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2013-05-16 878784] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] Bing Bar Helper - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-04-01 1144072] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] URL Advisor Plugin - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll [2012-08-17 484280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} {56361A71-4E9F-401D-9E12-8AEAA3D7A672} - MakeItLive Plugin - C:\Program Files\MakeItLive\makeitlive_toolbar.dll [2010-08-19 434288] {8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-04-01 1144072] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184] "ArcadeDeluxeAgent"=C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [2009-07-02 156968] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-02-19 6793760] "Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-02-19 1833504] "PLFSetI"=C:\Windows\PLFSetI.exe [2010-01-03 200704] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-12-05 1410344] "LManager"=C:\Program Files\Launch Manager\LManager.exe [2009-06-25 1069576] "BackupManagerTray"=C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2009-04-11 249600] "Acer ePower Management"=C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [2009-06-23 440864] "EgisTecLiveUpdate"=C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe [2009-05-13 199464] "mwlDaemon"=C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [2009-05-14 345384] "PlayMovie"=C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe [2009-06-16 173288] "CLMLServer"=C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [2009-07-02 206120] "NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup [] "NokiaMusic FastStart"=C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe [2010-10-20 2192752] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 137752] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 171032] "Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-11 172568] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] "GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040] "HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2011-10-28 49208] "RemoteControl"=C:\Users\Esma\Desktop\PDVDServ.exe [] "LanguageShortcut"=C:\Users\Esma\Desktop\Language\Language.exe [] ""= [] "AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [2013-11-04 356128] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ProductReg"=C:\Program Files\Acer\WR_PopUp\ProductReg.exe [2008-11-17 135168] "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920] "Facebook Update"=C:\Users\Esma\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-28 17408] ""= [] "NokiaSuite.exe"=C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [2012-12-21 1090040] "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup BackupManager.list C:\Users\Esma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup BackupManager.list Dropbox.lnk - C:\Users\Esma\AppData\Roaming\Dropbox\bin\Dropbox.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2011-02-11 228864] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"=0 "NoDriveTypeAutoRun"=28 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave4"=wdmaud.drv "mixer4"=wdmaud.drv "msacm.siren"=sirenacm.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-11-04 22:58:29 ----D---- C:\rsit 2013-11-04 22:58:29 ----D---- C:\Program Files\trend micro 2013-11-04 20:11:05 ----D---- C:\ProgramData\Kaspersky Lab 2013-11-04 20:11:05 ----D---- C:\Program Files\Kaspersky Lab 2013-11-04 20:09:47 ----A---- C:\Windows\system32\drivers\klif.sys 2013-11-04 20:09:47 ----A---- C:\Windows\system32\drivers\klflt.sys 2013-11-04 19:39:35 ----D---- C:\Program Files\Omiga Plus Removal Tool 2013-11-04 19:39:35 ----A---- C:\Windows\system32\ssleay32.dll 2013-11-04 19:39:35 ----A---- C:\Windows\system32\libeay32.dll 2013-11-04 19:39:35 ----A---- C:\Windows\eSellerateEngine.dll 2013-11-04 19:39:35 ----A---- C:\Windows\eSellerateControl350.dll 2013-11-04 14:58:06 ----D---- C:\Users\Esma\AppData\Roaming\Malwarebytes 2013-11-04 14:57:54 ----D---- C:\ProgramData\Malwarebytes 2013-11-04 11:27:34 ----D---- C:\Users\Esma\AppData\Roaming\Nico Mak Computing 2013-11-04 10:35:12 ----D---- C:\Program Files\Enigma Software Group 2013-11-04 10:34:18 ----D---- C:\Windows\220FB0354744483A9A0B41DF77061583.TMP 2013-11-04 10:34:17 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2013-11-03 19:21:26 ----D---- C:\ProgramData\eSafe 2013-11-03 18:48:15 ----D---- C:\Program Files\SopCast 2013-10-07 15:15:00 ----D---- C:\Program Files\Mozilla Firefox ======List of files/folders modified in the last 1 month====== 2013-11-04 23:18:18 ----AD---- C:\Windows\Temp 2013-11-04 23:16:41 ----D---- C:\Windows\Prefetch 2013-11-04 22:58:29 ----RD---- C:\Program Files 2013-11-04 22:25:36 ----D---- C:\Windows\System32 2013-11-04 22:25:36 ----D---- C:\Windows\inf 2013-11-04 22:25:36 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-11-04 22:20:57 ----D---- C:\Users\Esma\AppData\Roaming\Dropbox 2013-11-04 22:20:10 ----D---- C:\Windows 2013-11-04 20:22:13 ----D---- C:\Windows\system32\drivers 2013-11-04 20:15:15 ----SHD---- C:\System Volume Information 2013-11-04 20:15:00 ----HD---- C:\ProgramData 2013-11-04 20:14:26 ----SHD---- C:\Windows\Installer 2013-11-04 20:13:31 ----D---- C:\Windows\system32\catroot 2013-11-04 15:10:15 ----D---- C:\Windows\Resources 2013-11-04 14:46:06 ----D---- C:\Windows\system32\Tasks 2013-11-04 14:45:31 ----SD---- C:\Users\Esma\AppData\Roaming\Microsoft 2013-11-04 10:34:17 ----D---- C:\Program Files\Common Files 2013-11-04 10:27:08 ----D---- C:\ProgramData\MFAData 2013-11-04 10:25:23 ----D---- C:\Program Files\AVG 2013-11-04 10:18:57 ----D---- C:\Users\Esma\AppData\Roaming\Octoshape 2013-11-04 10:18:49 ----D---- C:\Program Files\Mozilla Maintenance Service 2013-11-03 19:43:50 ----D---- C:\Windows\Minidump 2013-11-03 18:48:18 ----SD---- C:\Windows\Downloaded Program Files 2013-10-21 21:00:37 ----D---- C:\Windows\system32\catroot2 2013-10-09 22:03:14 ----A---- C:\Windows\system32\FlashPlayerApp.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-02-12 329752] R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2013-11-04 135776] R0 UBHelper;UBHelper; C:\Windows\system32\drivers\UBHelper.sys [2008-01-31 13824] R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2013-11-04 595552] R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2012-08-02 24408] R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2013-11-04 44000] R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2013-05-16 145040] R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2008-12-04 19504] R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2008-12-04 16432] R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2008-12-04 59952] R1 PCLEPCI;PCLEPCI; \??\C:\Windows\system32\drivers\pclepci.sys [2005-02-09 14165] R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2008-01-21 95744] R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2008-03-01 1202560] R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-06-23 1181184] R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2009-03-26 21000] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-02-11 9036800] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-02-19 2323680] R3 IntcHdmiAddService;Intel® High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2008-09-22 112128] R3 k57nd60x;Broadcom NetLink Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60x.sys [2008-09-04 223232] R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2013-11-04 25696] R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2013-11-04 25696] R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\Drivers\NTIDrvr.sys [2009-03-26 15360] R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-21 9216] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-12-05 204976] R3 usbvideo;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016] R3 WudfPf;User Mode Driver Frameworks Platform Driver; C:\Windows\system32\drivers\WudfPf.sys [2009-07-14 92672] S0 BTHidEnum;Bluetooth HID Enumerator; C:\Windows\System32\Drivers\vbtenum.sys [] S0 BTHidMgr;Bluetooth HID Manager Service; C:\Windows\System32\Drivers\BTHidMgr.sys [] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712] S3 BlueletAudio;Bluetooth Audio Service; C:\Windows\system32\DRIVERS\blueletaudio.sys [] S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\Windows\system32\DRIVERS\BlueletSCOAudio.sys [] S3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys [] S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\Windows\System32\Drivers\btcusb.sys [] S3 BthAvrcp;Bluetooth AVRCP-profiel; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-27 27488] S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528] S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2009-04-11 507904] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2009-04-11 29696] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632] S3 emAudio;PCTV EMP Audio Device; C:\Windows\system32\drivers\emAudio.sys [2007-08-08 23168] S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [] S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520] S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192] S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888] S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016] S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2012-11-09 18560] S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2012-11-09 23168] S3 NSCIRDA;NSC Infrared Device Driver; C:\Windows\system32\DRIVERS\nscirda.sys [2008-01-21 30720] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072] S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992] S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2008-01-21 8192] S3 RTSTOR;Realtek USB 2.0 Card Reader; C:\Windows\system32\drivers\RTSTOR.SYS [2008-12-02 62976] S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2012-11-09 8192] S3 USB28xxBGA;PCTV 100e/150e Device; C:\Windows\system32\DRIVERS\emBDA.sys [2007-08-08 476288] S3 USB28xxOEM;USB 28xx OEM Filter; C:\Windows\system32\DRIVERS\emOEM.sys [2007-08-08 38656] S3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328] S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2009-04-11 27648] S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2012-11-09 8192] S3 VComm;Virtual Serial port driver; C:\Windows\system32\DRIVERS\VComm.sys [] S3 VcommMgr;Bluetooth VComm Manager Service; C:\Windows\System32\Drivers\VcommMgr.sys [] S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448] S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2009-07-14 132224] S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656] S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616] S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2008-03-18 13312] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-10-31 110592] R2 AVP;Kaspersky Anti-Virus-service; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [2013-11-04 356128] R2 CLHNService;CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2009-05-20 75048] R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-06-23 707104] R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504] R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2008-01-21 21504] R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120] R2 MWLService;MyWinLocker Service; C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-05-14 305448] R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-04-11 61184] R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-09-23 144632] R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared files\RichVideo.exe [2005-08-08 167936] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-12-19 732648] S2 AcerSyncServiceWinService;AcerSyncServiceWinService; C:\Program Files\Acer\AcerSync\AcerSyncService.exe -p [] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate;Google Updateservice (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-30 135664] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-01-08 161536] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09 257416] S3 BBSvc;Bing Bar Update Service; C:\Program Files\Microsoft\BingBar\BBSvc.EXE [2011-04-01 183560] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-30 135664] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856] S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-09-23 50424] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S4 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504] -----------------EOF-----------------
  8. yener
    @ Iescape, ben niet mee, waar staat bericht Bericht *2
  9. yener
    Logfile of random's system information tool 1.09 (written by random/random) Run by Esma at 2013-11-04 22:58:29 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 350 GB (75%) free of 467 GB Total RAM: 3000 MB (49% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:58:47, on 4/11/2013 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16447) Boot mode: Normal
  10. yener
    als ik naar ""Beeld"" en er op klik, en dan naar ""GA NAAR"", dan zie ik dat die omiga site er nog in staat , maar het vreemd vanal is dat ik het niet kan wegdoen !! - - - Updated - - - ik heb een 32 bit
  11. yener
    dit idiote scherm komt er elke keer op als ik wil internetten. Het is niet enkel bij Internet Explorer dat dit gebeurt, ook bij mozilla. Kan iemand mij helpen?? alvast merci, Yener - - - Updated - - - heb al geprobeerd bij config.scherm, maar hopeloos, pc gescand en gevonden dreigementen verwijderd, heeft ook ni geholpen?? Wie helpt mij??
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.