Ga naar inhoud

Traag internet


wallymie

Aanbevolen berichten

Dan mag je ondertussen zeker al de gebruikte tools verwijderen ... dit help misschien ook nog een kleinigheidje ;-)

Sluit alle openstaande vensters

Start AdwCleaner en klik Deinstallatie.

Klik op "Ja"

A3qkP9RCEAAOZhQ.jpg

AdwCleaner is nu verwijderd van je pc.

Verwijder Combofix: Start -> Uitvoeren/Zoekopdracht/Programma’s en bestanden zoeken en typ daar: ComboFix /Uninstall (met spatie voor de /).

Dit zal Combofix verwijderen + gerelateerde mappen en bestanden, herstelt de klokinstellingen opnieuw, verbergt de bestandsextensies, gaat verborgen bestanden en systeembestanden terug verbergen en maakt een nieuw herstelpunt.

Indien aanwezig mag je de map C:\Qoobox manueel verwijderen.

En hou ons op de hoogte van de evolutie ?

Link naar reactie
Delen op andere sites

hallo,

mijn bovenvermeld probleem is nog niet 100% opgelost! Het is al iets beter, maar na een tijdje terug hetzelfde.

Ik moet de pagina enkele keren terug opladen,alvorens deze opengaat.Zou dat kunnen dat adBlock de oorzaak zou

kunnen zijn?

Ik zal nog eens een hjt logje maken en bijvoegen, dan kan er eens gekeken worden of er een probleempje is toegevoegd aan

m'n pc.

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 23:09:27, on 3/03/2013

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe

C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch32.exe

C:\WINDOWS\system32\inetsrv\inetinfo.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\Documents and Settings\admin\Application Data\TorrentStream\updater\tsupdate.exe

C:\Program Files\BitDefender\BitDefender 2011\downloader.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

C:\WINDOWS\system32\SearchProtocolHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer!

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll

O4 - HKLM\..\Run: [bitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe"

O4 - HKLM\..\Run: [bDAgent] "C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe"

O8 - Extra context menu item: Download alle links met IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm

O8 - Extra context menu item: Download met IDM - C:\Program Files\Internet Download Manager\IEExt.htm

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\system32\shdocvw.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1341595878375

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe

O23 - Service: BitDefender Desktop Update Service (UPDATESRV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe

O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe

--

End of file - 6732 bytes

Link naar reactie
Delen op andere sites

Download zoek.exe naar het bureaublad.

  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.
     
    startupall; 
    filesrcm; 
    


  • Klik op de knop "Options" en vink nu de onderstaande opties aan.

    • Startup Information
    • Firefox Look
    • Chrome Look
    • Silent Runners
    • Firefox Defaults
    • Reset Chrome
    • Reset IE proxy
    • Empty Temp Folders
    • Shortcut Fix
    • IE Defaults
    • Reset Hosts
    • Auto Clean

    [*] Klik daarna op de knop "Run script".

    [*] Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).

    [*] Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.

    [*] Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

hallo,

hier het gevraagde logje

Zoek.exe Version 4.0.0.2 Updated 02-March-2013

Tool run by admin on ma 04/03/2013 at 12:12:25,34.

Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86

Running in: Normal Mode Internet Access Detected

==== Reset Hosts File ======================

# Copyright © 1993-2006 Microsoft Corp.

#

# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.

#

# This file contains the mappings of IP addresses to host names. Each

# entry should be kept on an individual line. The IP address should

# be placed in the first column followed by the corresponding host name.

# The IP address and the host name should be separated by at least one

# space.

#

# Additionally, comments (such as these) may be inserted on individual

# lines or following the machine name denoted by a '#' symbol.

#

# For example:

#

# 102.54.94.97 rhino.acme.com # source server

# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== FireFox Fix ======================

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====

====== C:\DOCUME~1\admin\LOCALS~1\Temp ====

====== C:\WINDOWS\system32 =====

====== C:\WINDOWS\system32\drivers =====

====== C:\WINDOWS\Tasks ======

====== C:\WINDOWS\Temp ======

======= C:\Program Files =====

======= C: =====

====== C:\Documents and Settings\admin\Application Data ======

2013-02-12 22:47:58 -------- d-----w- C:\Documents and Settings\admin\Local Settings\Application Data\Sun

2013-02-12 13:51:45 7FCCAE73518FC9603EDBA1123415E56A 867 ----a-w- C:\Documents and Settings\admin\Local Settings\Application Data\recently-used.xbel

2013-02-09 12:12:40 -------- d-----w- C:\Documents and Settings\All Users\Application Data\IDM

====== C:\Documents and Settings\admin ======

2013-03-03 23:15:50 -------- d--h--r- C:\Documents and Settings\admin\Onlangs geopend

====== C: exe-files ==

2013-03-04 11:09:50 ADFE8ECA5EF18BB514968C134FA3348B 92160 ----a-w- C:\Program Files\Common Files\Bitdefender\BitDefender Threat Scanner\Antivirus_12597_603\bdc.exe

2013-03-03 22:55:31 ADFE8ECA5EF18BB514968C134FA3348B 92160 ----a-w- C:\Program Files\Common Files\Bitdefender\BitDefender Threat Scanner\Antivirus_12584_602\bdc.exe

2013-03-02 12:14:34 EFAB459FDD56AE93839FA817BA953A7F 51712 ----a-w- C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\._msige61\program files\Google\Google Earth\client\earthflashsol.exe

2013-03-02 12:14:34 DE34DC1427F7D3FA4D13D17B51B55673 1207296 ----a-w- C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\._msige61\GoogleEarth.exe

2013-03-02 12:14:34 45F88C09E922FD22CE45CCD19B53AE7B 301056 ----a-w- C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\._msige61\program files\Google\Google Earth\client\gpsbabel.exe

2013-03-02 12:14:34 2B27F157274CB548E16862560D6EBD97 208384 ----a-w- C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\._msige61\program files\Google\Google Earth\plugin\geplugin.exe

2013-03-02 12:14:34 2B27F157274CB548E16862560D6EBD97 208384 ----a-w- C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\._msige61\program files\Google\Google Earth\client\googleearth.exe

2013-03-02 12:14:32 D13879F9A51F6F8C6AC33A5B86694E9F 24449680 ----a-w- C:\Program Files\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-7.0.3.8542.exe

2013-02-27 22:12:41 85DEB24EBA6B288F64AAC0FFC6A17810 26744 ----a-w- C:\Documents and Settings\admin\Application Data\TorrentStream\.data\engine2\download\2.0.8.5\tsengine_stream.exe

2013-02-27 22:12:40 859A5737BCBC7ED29B97BE1C6DF1D64D 26744 ----a-w- C:\Documents and Settings\admin\Application Data\TorrentStream\.data\engine2\download\2.0.8.5\tsengine.exe

=== C: other files ==

2013-03-02 15:00:50 35E9313CF1E703FCEF918046F31097F5 1135609 ----a-w- C:\Documents and Settings\admin\Application Data\TorrentStream\.data\magicplayer_chrome\download\1.1.20\magicplayer.crx

==== Startup Registry Enabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BitDefender Antiphishing Helper"="C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe"

"BDAgent"="C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"=""

"hkey"="HKLM"

"command"=""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="AdobeARM"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Photo Downloader]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="apdproxy"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Adobe\\Photoshop Album Starter Edition\\3.2\\Apps\\apdproxy.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AtherosBtXpStack]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="BluetoothSuit"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Bluetooth XP Suite\\BluetoothSuit.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\beidsccertprop]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="beidsccertprop"

"hkey"="HKLM"

"command"="C:\\Program Files\\Belgium Identity Card\\BeID Certprop\\beidsccertprop.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="HP Software Update"

"hkey"="HKLM"

"command"="C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IDMan]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="IDMan"

"hkey"="HKCU"

"command"="C:\\Program Files\\Internet Download Manager\\IDMan.exe /onboot"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Malwarebytes' Anti-Malware]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="mbamgui"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Malwarebytes' Anti-Malware\\mbamgui.exe\" /starttray"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RTHDCPL]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="RTHDCPL"

"hkey"="HKLM"

"command"="RTHDCPL.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SUPERAntiSpyware]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="SUPERAntiSpyware"

"hkey"="HKCU"

"command"="C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk]

"backup"="C:\\WINDOWS\\pss\\HP Digital Imaging Monitor.lnkCommon Startup"

"command"="C:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqtra08.exe "

"item"="HP Digital Imaging Monitor"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Windows Search.lnk]

"path"="C:\\Documents and Settings\\All Users\\Menu Start\\Programma's\\Opstarten\\Windows Search.lnk"

"backup"="C:\\WINDOWS\\pss\\Windows Search.lnkCommon Startup"

"command"="C:\\PROGRA~1\\WI459E~1\\WINDOW~1.EXE /startup"

"item"="Windows Search"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [27/02/2013 23:13]

C:\WINDOWS\tasks\AppleSoftwareUpdate.job --a------ C:\Program Files\Apple Software Update\SoftwareUpdate.exe [01/06/2011 17:57]

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [04/09/2011 19:39]

C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [04/09/2011 19:39]

C:\WINDOWS\tasks\User_Feed_Synchronization-{EBF650E6-1266-4E91-9D14-C934EFDC08DA}.job --ah----- C:\WINDOWS\system32\msfeedssync.exe [08/03/2009 03:31]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

jmolcgpienlcieaajfkkdamlngancncm - C:\Program Files\Internet Download Manager\IDMGCExt.crx[16/11/2012 01:25]

ochbjojkpcmlfeagbaahkofepalngihg - No path found[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

ochbjojkpcmlfeagbaahkofepalngihg - C:\Documents and Settings\admin\Application Data\TorrentStream\extensions\chrome\magicplayer.crx[]

Last updated at time on date - admin - Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb

IDM Integration - admin - Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm

YouTube - Administrator - Default\Extensions\Temp

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.be/"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.be/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{2F3314B2-B101-42FE-A479-85B75BDDBC10} Bing Url="http://www.bing.com/search?q={searchTerms}&form=MSNIE8&pc=MSNIE8&src=IE-SearchBox"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Documents and Settings\admin\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Documents and Settings\admin\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data was reset successfully

C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data was reset successfully

==== shortcuts on Users Desktops ======================

C:\Documents and Settings\admin\Bureaublad\Snelkoppeling naar tj1.lnk - C:\Documents and Settings\admin\Mijn documenten\Mijn afbeeldingen\TJ\tj1.bmp

C:\Documents and Settings\admin\Bureaublad\ant-malware\HiJackThis.lnk - C:\Documents and Settings\admin\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

==== shortcuts in Users Start Menu ======================

C:\Documents and Settings\admin\Menu Start\Programma's\Internet Download Manager\Grabber Help.lnk - C:\Program Files\Internet Download Manager\grabber.chm

C:\Documents and Settings\admin\Menu Start\Programma's\Internet Download Manager\IDM Help.lnk - C:\Program Files\Internet Download Manager\idman.chm

C:\Documents and Settings\admin\Menu Start\Programma's\Internet Download Manager\Internet Download Manager.lnk - C:\Program Files\Internet Download Manager\IDMan.exe

C:\Documents and Settings\admin\Menu Start\Programma's\Internet Download Manager\license.lnk - C:\Program Files\Internet Download Manager\license.txt

C:\Documents and Settings\admin\Menu Start\Programma's\Internet Download Manager\TUTORIALS.lnk - C:\Program Files\Internet Download Manager\tutor.chm

C:\Documents and Settings\admin\Menu Start\Programma's\Internet Download Manager\Uninstall IDM.lnk - C:\Program Files\Internet Download Manager\Uninstall.exe

==== shortcuts in All Users Start Menu ======================

C:\Documents and Settings\All Users\Menu Start\Programma's\Google Chrome\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\All Users\Menu Start\Programma's\Internet Download Manager\Grabber Help.lnk - C:\Program Files\Internet Download Manager\grabber.chm

C:\Documents and Settings\All Users\Menu Start\Programma's\Internet Download Manager\IDM Help.lnk - C:\Program Files\Internet Download Manager\idman.chm

C:\Documents and Settings\All Users\Menu Start\Programma's\Internet Download Manager\Internet Download Manager.lnk - C:\Program Files\Internet Download Manager\IDMan.exe

C:\Documents and Settings\All Users\Menu Start\Programma's\Internet Download Manager\license.lnk - C:\Program Files\Internet Download Manager\license.txt

C:\Documents and Settings\All Users\Menu Start\Programma's\Internet Download Manager\TUTORIALS.lnk - C:\Program Files\Internet Download Manager\tutor.chm

C:\Documents and Settings\All Users\Menu Start\Programma's\Internet Download Manager\Uninstall IDM.lnk - C:\Program Files\Internet Download Manager\Uninstall.exe

C:\Documents and Settings\All Users\Menu Start\Programma's\Microsoft Office\Microsoft Excel 2010.lnk - C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe

C:\Documents and Settings\All Users\Menu Start\Programma's\Microsoft Office\Microsoft PowerPoint 2010.lnk - C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pptico.exe

C:\Documents and Settings\All Users\Menu Start\Programma's\Microsoft Office\Microsoft Word 2010.lnk - C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe

==== Reset IE Proxy ======================

Value(s) before fix:

"ProxyEnable"=dword:00000000

Value(s) after fix:

"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ochbjojkpcmlfeagbaahkofepalngihg deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ochbjojkpcmlfeagbaahkofepalngihg deleted successfully

==== Silent Runners ======================

"Silent Runners.vbs", revision 69, Silent Runners - Adware? Disinfect, don't reformat!

Output limited to non-default values, except where indicated by "{++}"

Startup items buried in registry:

---------------------------------

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++}

BitDefender Antiphishing Helper = "C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe" [bitDefender S.R.L.]

BDAgent = "C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe" [bitDefender S.R.L.]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\

{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\(Default) = AcroIEHelperStub

-> {HKLM…CLSID} = Adobe PDF Link Helper

\InProcServer32\(Default) = C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [Adobe Systems Incorporated]

{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}\(Default) = Search Helper

-> {HKLM…CLSID} = Search Helper

\InProcServer32\(Default) = C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [MS]

{9030D464-4C02-4ABF-8ECC-5164760863C6}\(Default) = (no title provided)

-> {HKLM…CLSID} = Windows Live Aanmelden - Help

\InProcServer32\(Default) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [MS]

{B4F3A835-0E21-4959-BA22-42B3008E02FF}\(Default) = URLRedirectionBHO

-> {HKLM…CLSID} = Office Document Cache Handler

\InProcServer32\(Default) = C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [MS]

{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}\(Default) = (no title provided)

-> {HKLM…CLSID} = Windows Live Toolbar Helper

\InProcServer32\(Default) = C:\Program Files\Windows Live\Toolbar\wltcore.dll [MS]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\

IDM Shell Extension\(Default) = {CDC95B92-E27C-4745-A8C5-64A52A78855D}

-> {HKLM…CLSID} = IDM Shell Extension

\InProcServer32\(Default) = C:\Program Files\Internet Download Manager\IDMShellExt.dll [Tonec Inc.]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\

{88895560-9AA2-1069-930E-00AA0030EBC8} = HyperTerminal-pictogramuitbreiding

-> {HKLM…CLSID} = HyperTerminal Icon Ext

\InProcServer32\(Default) = C:\WINDOWS\system32\hticons.dll [Hilgraeve, Inc.]

{00020D75-0000-0000-C000-000000000046} = Microsoft Outlook Desktop Icon Handler

-> {HKLM…CLSID} = Microsoft Outlook

\InProcServer32\(Default) = C:\PROGRA~1\MICROS~2\Office14\MLSHEXT.DLL [MS]

{0006F045-0000-0000-C000-000000000046} = Microsoft Outlook Custom Icon Handler

-> {HKLM…CLSID} = Outlook File Icon Extension

\InProcServer32\(Default) = C:\Program Files\Microsoft Office\Office14\OLKFSTUB.DLL [MS]

{42042206-2D85-11D3-8CFF-005004838597} = Microsoft Office HTML Icon Handler

-> {HKLM…CLSID} = (no title provided)

\InProcServer32\(Default) = C:\Program Files\Microsoft Office\Office14\msohevi.dll [MS]

{00F33137-EE26-412F-8D71-F84E4C2C6625} = (no title provided)

-> {HKLM…CLSID} = Windows Live Photo Gallery Viewer Autoplay Shim

\InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS]

{00F346CB-35A4-465B-8B8F-65A29DBAB1F6} = Windows Live Photo Gallery Viewer Drop Target Shim

-> {HKLM…CLSID} = Windows Live Photo Gallery Viewer Shim

\InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS]

{00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} = Windows Live Photo Gallery Editor Drop Target Shim

-> {HKLM…CLSID} = Windows Live Photo Gallery Editor Shim

\InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS]

{00F30F90-3E96-453B-AFCD-D71989ECC2C7} = Windows Live Photo Gallery Autoplay Drop Target Shim

-> {HKLM…CLSID} = Windows Live Photo Gallery Viewer Autoplay Shim

\InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS]

{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} = Microsoft Office Metadata Handler

-> {HKLM…CLSID} = Microsoft Office Metadata Handler

\InProcServer32\(Default) = C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll [MS]

{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} = Microsoft Office Thumbnail Handler

-> {HKLM…CLSID} = Microsoft Office Thumbnail Handler

\InProcServer32\(Default) = C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll [MS]

{506F4668-F13E-4AA1-BB04-B43203AB3CC0} = {506F4668-F13E-4AA1-BB04-B43203AB3CC0}

-> {HKLM…CLSID} = ImageExtractorShellExt Class

\InProcServer32\(Default) = C:\Program Files\Microsoft Office\Office14\VISSHE.DLL [MS]

{D66DC78C-4F61-447F-942B-3FB6980118CF} = {D66DC78C-4F61-447F-942B-3FB6980118CF}

-> {HKLM…CLSID} = CInfoTipShellExt Class

\InProcServer32\(Default) = C:\Program Files\Microsoft Office\Office14\VISSHE.DLL [MS]

{0875DCB6-C686-4243-9432-ADCCF0B9F2D7} = Microsoft OneNote Namespace Extension for Windows Desktop Search

-> {HKLM…CLSID} = Microsoft OneNote Namespace Extension for Windows Desktop Search

\InProcServer32\(Default) = C:\Program Files\Microsoft Office\Office14\ONFILTER.DLL [MS]

{4ADF8C01-0AC7-4403-888C-012E6EA2F67E} = Sims2Pack Clean Installer Shell Extension

-> {HKLM…CLSID} = S2PCISE.S2PCISE

\InProcServer32\(Default) = mscoree.dll [MS]

{97090E2F-3062-4459-855B-014F0D3CDBB1} = Windows Search Deskbar

-> {HKCU…CLSID} = Windows Search Bureaubalk

\InProcServer32\(Default) = C:\Program Files\Windows Desktop Search\deskbar.dll [MS]

-> {HKLM…CLSID} = Windows Search Deskbar

\InProcServer32\(Default) = C:\Program Files\Windows Desktop Search\deskbar.dll [MS]

{13E7F612-F261-4391-BEA2-39DF4F3FA311} = Windows Desktop Search

-> {HKLM…CLSID} = Windows Desktop Search

\InProcServer32\(Default) = C:\Program Files\Windows Desktop Search\msnlExt.dll [MS]

{B9AF185E-1276-4BC7-936B-692E16B1AD4A} = Bluetooth Suite

-> {HKLM…CLSID} = Bluetooth Suite

\InProcServer32\(Default) = C:\Program Files\Bluetooth XP Suite\BMVFPlugIn.dll [Atheros Commnucations]

{AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} = FTShellContext extension

-> {HKLM…CLSID} = FTShellContext Class

\InProcServer32\(Default) = C:\Program Files\Bluetooth XP Suite\ShellContextExt.dll [Atheros Commnucations]

{CDC95B92-E27C-4745-A8C5-64A52A78855D} = IDM Shell Extension

-> {HKLM…CLSID} = IDM Shell Extension

\InProcServer32\(Default) = C:\Program Files\Internet Download Manager\IDMShellExt.dll [Tonec Inc.]

{0563DB41-F538-4B37-A92D-4659049B7766} = WLMD Message Handler

-> {HKLM…CLSID} = CLSID_WLMCMimeFilter

\InProcServer32\(Default) = C:\Program Files\Windows Live\Mail\mailcomm.dll [MS]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\

<<!>> {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} = (no title provided)

-> {HKLM…CLSID} = SABShellExecuteHook Class

\InProcServer32\(Default) = C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [superAdBlocker.com]

<<!>> {56F9679E-7826-4C84-81F3-532071A8BCC5} = (no title provided)

-> {HKLM…CLSID} = Windows Desktop Search Namespace Manager

\InProcServer32\(Default) = C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [MS]

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Aedebug\

<<!>> Debugger = Drwtsn32 -p %ld -e %ld [MS]

<<!>> Auto = 0

HKLM\SOFTWARE\Classes\PROTOCOLS\Filter\

<<!>> text/xml\CLSID = {807573E5-5146-11D5-A672-00B0D022E945}

-> {HKLM…CLSID} = Microsoft Office InfoPath XML Mime Filter

\InProcServer32\(Default) = C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL [MS]

HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\

<<!>> belarc\CLSID = {6318E0AB-2E93-11D1-B8ED-00608CC9A71F}

-> {HKLM…CLSID} = VoilaXctl Class

\InProcServer32\(Default) = C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll [belarc, Inc.]

<<!>> livecall\CLSID = {828030A1-22C1-4009-854F-8E305202313F}

-> {HKLM…CLSID} = (no title provided)

\InProcServer32\(Default) = C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL [MS]

<<!>> ms-help\CLSID = {314111c7-a502-11d2-bbca-00c04f8ec294}

-> {HKLM…CLSID} = HxProtocol Class

\InProcServer32\(Default) = C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [MS]

<<!>> ms-itss\CLSID = {0A9007C0-4076-11D3-8789-0000F8105754}

-> {HKLM…CLSID} = Microsoft Infotech Storage Protocol for IE 4.0

\InProcServer32\(Default) = C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [MS]

<<!>> msnim\CLSID = {828030A1-22C1-4009-854F-8E305202313F}

-> {HKLM…CLSID} = (no title provided)

\InProcServer32\(Default) = C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL [MS]

<<!>> mso-offdap11\CLSID = {32505114-5902-49B2-880A-1F7738E5A384}

-> {HKLM…CLSID} = Data Page Plugable Protocal mso-offdap11 Handler

\InProcServer32\(Default) = C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL [MS]

<<!>> wlmailhtml\CLSID = {03C514A3-1EFB-4856-9F99-10D7BE1653C0}

-> {HKLM…CLSID} = Windows Live Mail HTML Asynchronous Pluggable Protocol Handler

\InProcServer32\(Default) = C:\Program Files\Windows Live\Mail\mailcomm.dll [MS]

HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\

{CA8ACAFA-5FBB-467B-B348-90DD488DE003}\(Default) = SUPERAntiSpyware Context Menu

-> {HKLM…CLSID} = SASContextMenu Class

\InProcServer32\(Default) = C:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL [sUPERAntiSpyware.com]

{D653647D-D607-4df6-A5B8-48D2BA195F7B}\(Default) = (no title provided)

-> {HKLM…CLSID} = BDMenu Class

\InProcServer32\(Default) = C:\Program Files\BitDefender\BitDefender 2011\bdshellext.dll [bitDefender S.R.L.]

HKLM\SOFTWARE\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\

FTShellContext\(Default) = {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1}

-> {HKLM…CLSID} = FTShellContext Class

\InProcServer32\(Default) = C:\Program Files\Bluetooth XP Suite\ShellContextExt.dll [Atheros Commnucations]

MBAMShlExt\(Default) = {57CE581A-0CB6-4266-9CA0-19364C90A0B3}

-> {HKLM…CLSID} = MBAMShlExt Class

\InProcServer32\(Default) = C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll [file not found]

{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}\(Default) = {C95FFEAE-A32E-4122-A5C4-49B5BFB69795}

-> {HKLM…CLSID} = Adobe Drive CS4

\InProcServer32\(Default) = C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [Adobe Systems Incorporated]

HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\

{CA8ACAFA-5FBB-467B-B348-90DD488DE003}\(Default) = SUPERAntiSpyware Context Menu

-> {HKLM…CLSID} = SASContextMenu Class

\InProcServer32\(Default) = C:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL [sUPERAntiSpyware.com]

{D653647D-D607-4df6-A5B8-48D2BA195F7B}\(Default) = (no title provided)

-> {HKLM…CLSID} = BDMenu Class

\InProcServer32\(Default) = C:\Program Files\BitDefender\BitDefender 2011\bdshellext.dll [bitDefender S.R.L.]

HKLM\SOFTWARE\Classes\Directory\shellex\CopyHookHandlers\

Ath_CopyHookX\(Default) = {8e10a039-fe03-4f9c-b7e1-c5eeeaf53735}

-> {HKLM…CLSID} = Ath_CopyHookX

\InProcServer32\(Default) = C:\Program Files\Bluetooth XP Suite\AthCopyHookX.dll [Atheros Commnucations]

HKLM\SOFTWARE\Classes\Directory\Background\shellex\ContextMenuHandlers\

00nView\(Default) = {1E9B04FB-F9E5-4718-997B-B8DA88302A48}

-> {HKLM…CLSID} = nView Desktop Context Menu

\InProcServer32\(Default) = C:\Program Files\NVIDIA Corporation\nView\nvshell.dll [NVIDIA Corporation]

NvCplDesktopContext\(Default) = {A70C977A-BF00-412C-90B7-034C51DA2439}

-> {HKLM…CLSID} = DesktopContext Class

\InProcServer32\(Default) = C:\WINDOWS\system32\nvcpl.dll [NVIDIA Corporation]

{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}\(Default) = {C95FFEAE-A32E-4122-A5C4-49B5BFB69795}

-> {HKLM…CLSID} = Adobe Drive CS4

\InProcServer32\(Default) = C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [Adobe Systems Incorporated]

HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\

{F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = PDF Column Info

-> {HKLM…CLSID} = PDF Shell Extension

\InProcServer32\(Default) = C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll [Adobe Systems, Inc.]

HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\

MBAMShlExt\(Default) = {57CE581A-0CB6-4266-9CA0-19364C90A0B3}

-> {HKLM…CLSID} = MBAMShlExt Class

\InProcServer32\(Default) = C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll [file not found]

{D653647D-D607-4df6-A5B8-48D2BA195F7B}\(Default) = (no title provided)

-> {HKLM…CLSID} = BDMenu Class

\InProcServer32\(Default) = C:\Program Files\BitDefender\BitDefender 2011\bdshellext.dll [bitDefender S.R.L.]

Group Policies {GPedit.msc branch and setting}:

-----------------------------------------------

Note: detected settings may not have any effect.

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\

NoDrives = (REG_DWORD) dword:0x00000000

{unrecognized setting}

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\

NoDrives = (REG_DWORD) dword:0x00000000

{unrecognized setting}

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System\

disableregistrytools = (REG_DWORD) dword:0x00000000

{User Configuration|Administrative Templates|System|

Prevent access to registry editing tools}

HKCU\Software\Policies\Microsoft\Windows\System\

disablecmd = (REG_DWORD) dword:0x00000000

{User Configuration|Administrative Templates|System|

Disable the command prompt}

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\

DisableRegistryTools = (REG_DWORD) dword:0x00000000

{unrecognized setting}

Active Desktop and Wallpaper:

-----------------------------

Active Desktop may be enabled at this entry:

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

Displayed if Active Desktop enabled and wallpaper not set by Group Policy:

HKCU\Software\Microsoft\Internet Explorer\Desktop\General\

Wallpaper = C:\WINDOWS\system32\config\systemprofile\Mijn documenten\Mijn afbeeldingen\TJ\tj1.bmp

Displayed if Active Desktop disabled and wallpaper not set by Group Policy:

HKCU\Control Panel\Desktop\

Wallpaper = C:\Documents and Settings\admin\Mijn documenten\Mijn afbeeldingen\TJ\tj1.bmp

Enabled Screen Saver:

---------------------

HKCU\Control Panel\Desktop\

SCRNSAVE.EXE = C:\WINDOWS\system32\ssmypics.scr [MS]

Windows Portable Device AutoPlay Handlers

-----------------------------------------

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\

ImgBurnBDBurningOnArrival_BuildImage\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = HandleBDBurningOnArrival_BuildImage

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\HandleBDBurningOnArrival_BuildImage\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE BUILD /OUTPUTMODE DEVICE /DEST "%1" [LIGHTNING UK!]

ImgBurnBDBurningOnArrival_BurnImage\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = HandleBDBurningOnArrival_BurnImage

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\HandleBDBurningOnArrival_BurnImage\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE WRITE /DEST "%1" [LIGHTNING UK!]

ImgBurnCDBurningOnArrival_BuildImage\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = HandleCDBurningOnArrival_BuildImage

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\HandleCDBurningOnArrival_BuildImage\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE BUILD /OUTPUTMODE DEVICE /DEST "%1" [LIGHTNING UK!]

ImgBurnCDBurningOnArrival_BurnImage\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = HandleCDBurningOnArrival_BurnImage

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\HandleCDBurningOnArrival_BurnImage\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE WRITE /DEST "%1" [LIGHTNING UK!]

ImgBurnDVDBurningOnArrival_BuildImage\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = HandleDVDBurningOnArrival_BuildImage

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\HandleDVDBurningOnArrival_BuildImage\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE BUILD /OUTPUTMODE DEVICE /DEST "%1" [LIGHTNING UK!]

ImgBurnDVDBurningOnArrival_BurnImage\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = HandleDVDBurningOnArrival_BurnImage

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\HandleDVDBurningOnArrival_BurnImage\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE WRITE /DEST "%1" [LIGHTNING UK!]

ImgBurnHDDVDBurningOnArrival_BuildImage\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = HandleHDDVDBurningOnArrival_BuildImage

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\HandleHDDVDBurningOnArrival_BuildImage\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE BUILD /OUTPUTMODE DEVICE /DEST "%1" [LIGHTNING UK!]

ImgBurnHDDVDBurningOnArrival_BurnImage\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = HandleHDDVDBurningOnArrival_BurnImage

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\HandleHDDVDBurningOnArrival_BurnImage\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE WRITE /DEST "%1" [LIGHTNING UK!]

ImgBurnPlayBluRayOnArrival_ReadDisc\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = PlayBluRayOnArrival_ReadDisc

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\PlayBluRayOnArrival_ReadDisc\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE READ /SRC "%1" [LIGHTNING UK!]

ImgBurnPlayCDAudioOnArrival_ReadDisc\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = PlayCDAudioOnArrival_ReadDisc

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\PlayCDAudioOnArrival_ReadDisc\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE READ /SRC "%1" [LIGHTNING UK!]

ImgBurnPlayDVDMovieOnArrival_ReadDisc\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = PlayDVDMovieOnArrival_ReadDisc

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\PlayDVDMovieOnArrival_ReadDisc\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE READ /SRC "%1" [LIGHTNING UK!]

ImgBurnPlayHDDVDOnArrival_ReadDisc\

Provider = ImgBurn

InvokeProgID = ImgBurn.AutoPlay.1

InvokeVerb = PlayHDDVDOnArrival_ReadDisc

HKLM\SOFTWARE\Classes\ImgBurn.AutoPlay.1\shell\PlayHDDVDOnArrival_ReadDisc\command\(Default) = "C:\Program Files\ImgBurn\ImgBurn.exe" /MODE READ /SRC "%1" [LIGHTNING UK!]

MSLivePhotoAcqHWEventHandler\

Provider = @%ProgramFiles%\Windows Live\Photo Gallery\regres.dll,-10

ProgID = Microsoft.LivePhotoAcqHWEventHandler

HKLM\SOFTWARE\Classes\Microsoft.LivePhotoAcqHWEventHandler\CLSID\(Default) = {3BD0ACD1-71CA-4475-92CC-E0AA0AAF843F}

-> {HKLM…CLSID} = (no title provided)

\LocalServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe [MS]

MSLivePhotoAcquireDropHandler\

Provider = @%ProgramFiles%\Windows Live\Photo Gallery\regres.dll,-10

InvokeProgID = Microsoft.LivePhotoAcqDTShim.1

InvokeVerb = open

HKLM\SOFTWARE\Classes\Microsoft.LivePhotoAcqDTShim.1\shell\open\DropTarget\CLSID = {00F33137-EE26-412F-8D71-F84E4C2C6625}

-> {HKLM…CLSID} = Windows Live Photo Gallery Viewer Autoplay Shim

\InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS]

MSLiveShowPicturesOnArrival\

Provider = @%ProgramFiles%\Windows Live\Photo Gallery\regres.dll,-10

InvokeProgID = Microsoft.Photos.LiveAutoplayShim.1

InvokeVerb = open

HKLM\SOFTWARE\Classes\Microsoft.Photos.LiveAutoplayShim.1\shell\open\DropTarget\CLSID = {00F30F90-3E96-453B-AFCD-D71989ECC2C7}

-> {HKLM…CLSID} = Windows Live Photo Gallery Viewer Autoplay Shim

\InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS]

MSLiveVideoCameraArrivalCaptureWizard\

Provider = @%ProgramFiles%\Windows Live\Photo Gallery\regres.dll,-10

ProgID = WLXAutoPlayMgr.WLXHWEventHandler

InitCmdLine = WLXVideoAcquireWizard

HKLM\SOFTWARE\Classes\WLXAutoPlayMgr.WLXHWEventHandler\CLSID\(Default) = {9B5C97F6-B3A5-4A6D-8B03-993EC7291A22}

-> {HKLM…CLSID} = WLXWEventHandler Class

\LocalServer32\(Default) = "C:\Program Files\Windows Live\Photo Gallery\WLXVideoCameraAutoPlayManager.exe" [MS]

MSWPDShellNamespaceHandler\

Provider = @%SystemRoot%\System32\WPDShextRes.dll,-501

CLSID = {A55803CC-4D53-404c-8557-FD63DBA95D24}

InitCmdLine =

-> {HKLM…CLSID} = WPDShextAutoplay

\LocalServer32\(Default) = C:\WINDOWS\system32\WPDShextAutoplay.exe [MS]

PSASE30ImportPicturesOnArrival\

Provider = Adobe Photoshop Album Starter Edition

InvokeProgID = PSASE30.autoplay

InvokeVerb = launch

HKLM\SOFTWARE\Classes\PSASE30.autoplay\shell\launch\command\(Default) = "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\psaproxy.exe" -v %1\ [Adobe Systems Incorporated]

VLCPlayCDAudioOnArrival\

Provider = VideoLAN VLC media player

InvokeProgID = VLC.CDAudio

InvokeVerb = Open

HKLM\SOFTWARE\Classes\VLC.CDAudio\shell\Open\command\(Default) = "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file cdda:///%1 [VideoLAN]

VLCPlayDVDAudioOnArrival\

Provider = VideoLAN VLC media player

InvokeProgID = VLC.OPENFolder

InvokeVerb = Open

HKLM\SOFTWARE\Classes\VLC.OPENFolder\shell\Open\command\(Default) = "C:\Program Files\VideoLAN\VLC\vlc.exe" %1 [VideoLAN]

VLCPlayDVDMovieOnArrival\

Provider = VideoLAN VLC media player

InvokeProgID = VLC.DVDMovie

InvokeVerb = Open

HKLM\SOFTWARE\Classes\VLC.DVDMovie\shell\Open\command\(Default) = "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file dvd:///%1 [VideoLAN]

VLCPlayMusicFilesOnArrival\

Provider = VideoLAN VLC media player

InvokeProgID = VLC.OPENFolder

InvokeVerb = Open

HKLM\SOFTWARE\Classes\VLC.OPENFolder\shell\Open\command\(Default) = "C:\Program Files\VideoLAN\VLC\vlc.exe" %1 [VideoLAN]

VLCPlaySVCDMovieOnArrival\

Provider = VideoLAN VLC media player

InvokeProgID = VLC.SVCDMovie

InvokeVerb = Open

HKLM\SOFTWARE\Classes\VLC.SVCDMovie\shell\Open\command\(Default) = "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file vcd:///%1 [VideoLAN]

VLCPlayVCDMovieOnArrival\

Provider = VideoLAN VLC media player

InvokeProgID = VLC.VCDMovie

InvokeVerb = Open

HKLM\SOFTWARE\Classes\VLC.VCDMovie\shell\Open\command\(Default) = "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file vcd:///%1 [VideoLAN]

VLCPlayVideoFilesOnArrival\

Provider = VideoLAN VLC media player

InvokeProgID = VLC.OPENFolder

InvokeVerb = Open

HKLM\SOFTWARE\Classes\VLC.OPENFolder\shell\Open\command\(Default) = "C:\Program Files\VideoLAN\VLC\vlc.exe" %1 [VideoLAN]

Enabled Scheduled Tasks: {++}

------------------------

Adobe Flash Player Updater -> launches: C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [Adobe Systems Incorporated]

AppleSoftwareUpdate -> launches: C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task [Apple Inc.]

GoogleUpdateTaskMachineCore -> launches: C:\Program Files\Google\Update\GoogleUpdate.exe /c [Google Inc.]

GoogleUpdateTaskMachineUA -> launches: C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler [Google Inc.]

User_Feed_Synchronization-{EBF650E6-1266-4E91-9D14-C934EFDC08DA} -> launches: C:\WINDOWS\system32\msfeedssync.exe sync [MS]

Winsock2 Service Provider DLLs:

-------------------------------

Namespace Service Providers

HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}

000000000001\LibraryPath = %SystemRoot%\System32\nwprovau.dll [MS]

000000000002\LibraryPath = %SystemRoot%\System32\mswsock.dll [MS]

000000000003\LibraryPath = %SystemRoot%\System32\winrnr.dll [MS]

000000000004\LibraryPath = %SystemRoot%\System32\mswsock.dll [MS]

Transport Service Providers

HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}

0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:

%SystemRoot%\system32\mswsock.dll [MS], 01 - 08, 11 - 22

%SystemRoot%\system32\rsvpsp.dll [MS], 09 - 10

Toolbars, Explorer Bars, Extensions:

------------------------------------

Toolbars

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\

{2318C2B1-4965-11D4-9B18-009027A5CD4F}

-> {HKLM…CLSID} = Google Toolbar

\InProcServer32\(Default) = C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [Google Inc.]

{21FA44EF-376D-4D53-9B0F-8A89D3229068}

-> {HKLM…CLSID} = &Windows Live Toolbar

\InProcServer32\(Default) = C:\Program Files\Windows Live\Toolbar\wltcore.dll [MS]

HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\

{2318C2B1-4965-11D4-9B18-009027A5CD4F} = (no title provided)

-> {HKLM…CLSID} = Google Toolbar

\InProcServer32\(Default) = C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [Google Inc.]

{21FA44EF-376D-4D53-9B0F-8A89D3229068} = (no title provided)

-> {HKLM…CLSID} = &Windows Live Toolbar

\InProcServer32\(Default) = C:\Program Files\Windows Live\Toolbar\wltcore.dll [MS]

{381FFDE8-2394-4F90-B10D-FC6124A40F8C} = IEToolbar

-> {HKLM…CLSID} = BitDefender Toolbar

\InProcServer32\(Default) = C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll [bitDefender S.R.L.]

Explorer Bars

HKLM\SOFTWARE\Classes\CLSID\{32004B8A-44A9-43E7-84E9-808838809519}\(Default) = Google Side Bar

Implemented Categories\{00021493-0000-0000-C000-000000000046}\ [vertical bar]

InProcServer32\(Default) = C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [Google Inc.]

Extensions (Tools menu items, main toolbar menu buttons)

HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\

{219C3416-8CB2-491A-A3C7-D9FCDDC9D600}\

ButtonText = In weblog opnemen

MenuText = &In weblog opnemen met Windows Live Writer

CLSIDExtension = {5F7B1267-94A9-47F5-98DB-E99415F33AEC}

-> {HKLM…CLSID} = BlogThisToolbarButton Class

\InProcServer32\(Default) = C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll [MS]

{2670000A-7350-4F3C-8081-5663EE0C6C49}\

ButtonText = Verzenden naar OneNote

MenuText = &Verzenden naar OneNote

CLSIDExtension = {48E73304-E1D6-4330-914C-F5F514E3486C}

-> {HKLM…CLSID} = Send to OneNote from Internet Explorer button

\InProcServer32\(Default) = C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll [MS]

{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}\

ButtonText = &Gekoppelde notities van OneNote

MenuText = &Gekoppelde notities van OneNote

CLSIDExtension = {FFFDC614-B694-4AE6-AB38-5D6374584B52}

-> {HKLM…CLSID} = Linked Notes button

\InProcServer32\(Default) = C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll [MS]

{92780B25-18CC-41C8-B9BE-3C9C571A8263}\

ButtonText = Onderzoek

BandCLSID = {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

{E2E2DD38-D088-4134-82B7-F2BA38496583}\

MenuText = @xpsp3res.dll,-20001

Exec = %windir%\Network Diagnostic\xpnetdiag.exe [MS]

{FB5F1910-F110-11D2-BB9E-00C04F795683}\

ButtonText = Messenger

MenuText = Windows Messenger

Exec = C:\Program Files\Messenger\msmsgs.exe [MS]

Running Services (Display Name, Service Name, Path {Service DLL}):

------------------------------------------------------------------

BitDefender Desktop Update Service, UPDATESRV, "C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe" /service [bitDefender S.R.L.]

BitDefender Virus Shield, VSSERV, C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe /service [bitDefender S.R.L.]

Windows Search, WSearch, C:\WINDOWS\system32\SearchIndexer.exe /Embedding [MS]

Safe Mode Drivers & Services (subkey name, subkey default value):

-----------------------------------------------------------------

HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\

<<!>> !SASCORE,

HKLM\System\CurrentControlSet\Control\SafeBoot\Network\

<<!>> !SASCORE,

Print Monitors:

---------------

HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors\

HP Standard TCP/IP Port\Driver = HpTcpMon.dll [Hewlett Packard]

hpzsnt12\Driver = hpzsnt12.dll [HP]

Microsoft Document Imaging Writer Monitor\Driver = mdimon.dll [MS]

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully

C:\Documents and Settings\admin\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Documents and Settings\admin\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully

C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

After Reboot

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied

C:\DOCUME~1\admin\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\admin\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.