Ga naar inhoud

Lag spikes tijdens multigaming + mogelijk malware

Dredg

Door Dredg
in Archief Internet & Netwerk

 Delen

Aanbevolen berichten

  • Reacties 42
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

Geplaatste afbeeldingen

  • 2 weken later...
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download 51a612a8b27e2-Zoek.pngzoek.exe naar het bureaublad.

  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

 
startupall; 
filesrcm;

Vink nu de onderstaande opties aan.

  • Installed Programs
  • HijackThis Log
  • Firefox Look
  • Chrome Look
  • Firefox Defaults
  • Reset Chrome
  • IE Defaults
  • Auto Clean

  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
Dredg Leerling

Dredg

Geplaatst:
  • Auteur
Geplaatst:

Zoek.exe Version 4.0.0.4 Updated 07-August-2013

Tool run by Kenny on do 08/08/2013 at 18:05:04,21.

Microsoft Windows 8 6.2.9200 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Kenny\Desktop\zoek.exe [script inserted] [Checkboxes used]

==== System Restore Info ======================

8/08/2013 18:06:38 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-794288822-3723242884-3898889298-1001\Software\Microsoft\Internet Explorer\SearchScopes\{2787A152-D55A-4BDA-BBAA-F856C9D38C81} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Installed Programs ======================

Adobe Shockwave Player 11.6

AMD APP SDK Runtime

AMD Catalyst Install Manager

AVG SafeGuard toolbar

Avira Free Antivirus

Bonjour

Call of Duty® 2

Catalyst Control Center - Branding

Catalyst Control Center

Catalyst Control Center Graphics Previews Common

Catalyst Control Center Localization All

Catalyst Control Center Profiles Mobile

ccc-utility64

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

Connected Music powered by Universal Music Group version 1.0

CyberLink Media Suite 10

D3DX10

Driver Restore

Energy Star

Fotogalerie

Galerie de photos

Google Chrome

Google Update Helper

GrabIt 1.7.2 Beta 6 (build 1008)

Hewlett-Packard ACLM.NET v1.2.1.1

HiJackThis

HP 3D DriveGuard

HP Connected Music (Meridian - installer)

HP Connected Remote

HP CoolSense

HP Customer Experience Enhancements

HP Documentation

HP Postscript Converter

HP Product Detection

HP Quick Launch

HP Recovery Manager

HP Registration Service

HP Support Assistant

HP Utility Center

HP Wireless Button Driver

IDT Audio

Intel® Control Center

Intel® Display Audio Driver

Intel® Management Engine Components

Intel® Rapid Storage Technology

Intel® SDK for OpenCL - CPU Only Runtime Package

Intel© Trusted Connect Service Client

Java 7 Update 25

Java Auto Updater

Malwarebytes Anti-Malware versie 1.75.0.1300

Medal of Honor Allied Assault

Microsoft Application Error Reporting

Microsoft Office

Microsoft Silverlight

Microsoft SkyDrive

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Movie Maker

MSVCRT

MSVCRT110

MSVCRT110_amd64

Photo Common

Photo Gallery

PX Profile Update

Ralink Bluetooth Stack64

Ralink RT3290 802.11bgn Wi-Fi Adapter

Realtek Ethernet Controller Driver

Realtek PCIE Card Reader

SkypeT 6.6

Steam

swMSM

Synaptics Pointing Device Driver

System Requirements Lab for Intel

Team Fortress 2

VLC media player 2.0.7

Windows Live

Windows Live Communications Platform

Windows Live Essentials

Windows Live Installer

Windows Live Photo Common

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

WinRAR 4.20 (32-bit)

Xfire

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

"C:\ProgramData\CyberlinkOutput.txt" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2013-07-27 19:01:34 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe

2013-07-27 19:01:34 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe

2013-07-27 19:01:34 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe

2013-07-27 19:01:34 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe

2013-07-27 19:01:34 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe

2013-07-27 13:50:10 CEBB5A5A9638E71791AD3D84729938B2 121 ----a-w- C:\Windows\DeleteOnReboot.bat

2013-07-21 15:52:24 A0500A9503B24F4FF22BB7C627405E4B 293 ----a-w- C:\Windows\game.ini

2013-07-17 15:58:51 0E8E6463F81C80AFBED533E0F1F8895D 2391280 ----a-w- C:\Windows\explorer.exe

====== C:\Users\Kenny\AppData\Local\Temp ====

2013-08-01 16:28:15 C2089AFEE5FB4EC9126EBF777333E86F 10563584 ----a-w- C:\Users\Kenny\AppData\Local\Temp\SkypeToolbars.msi

2013-08-01 16:23:31 73122534D527893BDEFD1F707FFB34F6 21803008 ----a-w- C:\Users\Kenny\AppData\Local\Temp\Skype.msi

====== C:\Windows\SysWOW64 =====

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

====== C:\Windows\Sysnative\drivers =====

2013-07-27 15:19:32 A28E6CBDF3D9BDC916BF3048261EEDCB 986728 ----a-w- C:\Windows\Sysnative\drivers\rtwlanu.sys

2013-07-27 07:53:42 0BB97D43299910CBFBA59C461B99B910 25928 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys

2013-07-24 18:14:12 F4D4AF9AD17494270418815781C8D85D 83672 ----a-w- C:\Windows\Sysnative\drivers\avnetflt.sys

2013-07-24 18:14:12 490FA25161BF3E51993EB724ECF0ACEB 28600 ----a-w- C:\Windows\Sysnative\drivers\avkmgr.sys

2013-07-24 18:14:12 488486DAD09A5B6C6DBB8B990A8B2307 130016 ----a-w- C:\Windows\Sysnative\drivers\avipbb.sys

2013-07-24 18:14:11 09E6069EF94B345061B4BD3CEBD974C8 100712 ----a-w- C:\Windows\Sysnative\drivers\avgntflt.sys

2013-07-17 15:58:48 78A5BBA3819FFFC62FFEC3E2220D102D 327936 ----a-w- C:\Windows\Sysnative\drivers\volsnap.sys

2013-07-17 15:58:48 0D05E0147C1329C53AAF97882DEDD96A 2233600 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys

2013-07-17 15:58:43 4834158B8D06A153FADAB6B85320FBBE 213248 ----a-w- C:\Windows\Sysnative\drivers\UCX01000.SYS

2013-07-17 15:58:42 98636FB2973B8876A7F0BECD076CF109 194816 ----a-w- C:\Windows\Sysnative\drivers\sdbus.sys

2013-07-17 15:58:42 68BA2C4F1AA81E7165F7A02A9C063F65 125184 ----a-w- C:\Windows\Sysnative\drivers\dumpsd.sys

2013-07-17 15:58:42 1ADCF0A490C2845637B334626669CD6F 337152 ----a-w- C:\Windows\Sysnative\drivers\USBXHCI.SYS

2013-07-17 15:58:41 6695200F455E251F0BCC9CE4D0978D59 37632 ----a-w- C:\Windows\Sysnative\drivers\BthAvrcpTg.sys

2013-07-17 15:58:40 A10E176F3B2BF83EDE7B5C4658C93B66 997632 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys

2013-07-13 08:35:50 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-07-28 18:00:07 -------- d-----w- C:\Program Files\Microsoft Silverlight

======= C:\Program Files (x86) =====

2013-08-01 17:10:57 -------- d-----w- C:\Program Files (x86)\Common Files\Steam

2013-08-01 17:10:56 -------- d-----w- C:\Program Files (x86)\Steam

2013-08-01 16:28:05 -------- d-----w- C:\Program Files (x86)\Common Files\Skype

2013-08-01 16:28:05 -------- d-----r- C:\Program Files (x86)\Skype

2013-07-28 18:00:07 -------- d-----w- C:\Program Files (x86)\Microsoft Silverlight

2013-07-27 09:59:43 -------- d-----w- C:\Program Files (x86)\Trend Micro

2013-07-25 08:35:16 -------- d-----w- C:\Program Files (x86)\WinRAR

2013-07-24 18:14:11 -------- d-----w- C:\Program Files (x86)\Avira

2013-07-21 15:42:03 -------- d-----w- C:\Program Files (x86)\Activision

2013-07-20 20:28:28 -------- d-----w- C:\Program Files (x86)\Xfire

2013-07-20 17:57:07 -------- d-----w- C:\Program Files (x86)\AMD APP

2013-07-20 17:42:14 -------- d-----w- C:\Program Files (x86)\SystemRequirementsLab

======= C: =====

2013-07-27 13:50:01 3347F24962FD7B165E4CB7A406F44790 4567 ----a-w- C:\AdwCleaner[s1].txt

====== C:\Users\Kenny\AppData\Roaming ======

2013-08-01 16:28:09 -------- d-----w- C:\users\Kenny\AppData\Roaming\Skype

2013-07-28 08:21:56 -------- d-----w- C:\users\Public\AppData\Local\temp

2013-07-28 08:21:56 -------- d-----w- C:\users\Kenny\AppData\Local\temp

2013-07-28 08:21:56 -------- d-----w- C:\users\Default\AppData\Local\temp

2013-07-28 08:21:56 -------- d-----w- C:\users\Default User\AppData\Local\temp

2013-07-25 08:35:19 -------- d-----w- C:\users\Kenny\AppData\Roaming\WinRAR

2013-07-25 08:35:19 -------- d-----w- C:\users\Kenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

2013-07-24 18:20:39 -------- d-----w- C:\users\Kenny\AppData\Roaming\Avira

====== C:\Users\Kenny ======

2013-08-01 17:10:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam

2013-08-01 16:28:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2013-08-01 16:27:55 -------- d-----w- C:\ProgramData\Skype

2013-07-28 18:00:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2013-07-27 19:10:02 -------- d-----w- C:\Users\Public\AppData

2013-07-27 15:21:05 -------- d-----w- C:\ProgramData\D-Link

2013-07-25 08:35:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

2013-07-24 18:14:27 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira

2013-07-24 18:14:11 -------- d-----w- C:\ProgramData\Avira

2013-07-21 15:52:24 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision

2013-07-20 20:28:30 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xfire

====== C: exe-files ==

2013-08-06 20:13:57 B88B8DA6B88D10319658833BF4C01CFD 62751 ----a-w- C:\Users\Kenny\Downloads\GrabIt Downloads\The Big Wedding (2013) 720P HQ AC3 DD5.1 (Externe Subs)\Movie Name Reverse.2013-QoQ\Setup.exe

2013-08-06 19:54:15 B88B8DA6B88D10319658833BF4C01CFD 62751 ----a-w- C:\Users\Kenny\Downloads\GrabIt Downloads\Red Line (2013) HQ AC3 DD5.1 (Externe Subs)\Movie Name Reverse.2013-QoQ\Setup.exe

2013-08-06 19:36:37 B88B8DA6B88D10319658833BF4C01CFD 62751 ----a-w- C:\Users\Kenny\Downloads\GrabIt Downloads\Battle of the Damned (2013) 720P HQ AC3 DD5.1 (Externe Subs)\Movie Name Reverse.2013-QoQ\Setup.exe

2013-08-05 17:31:24 B88B8DA6B88D10319658833BF4C01CFD 62751 ----a-w- C:\Users\Kenny\Downloads\GrabIt Downloads\Pawn Shop Chronicles (2013) HQ AC3 DD5.1 (Externe Subs)\Movie Name Reverse.2013-QoQ\Setup.exe

2013-08-05 17:00:17 B88B8DA6B88D10319658833BF4C01CFD 62751 ----a-w- C:\Users\Kenny\Downloads\GrabIt Downloads\Coffin Baby (2013) HQ AC3 DD5.1 (Externe Subs)\Movie Name Reverse.2013-QoQ\Setup.exe

2013-08-02 19:25:27 B88B8DA6B88D10319658833BF4C01CFD 62751 ----a-w- C:\Users\Kenny\Downloads\GrabIt Downloads\Frankenstein's Army (2013) 720P HQ AC3 DD2.0 (Externe Subs)\Movie Name Reverse.2013-QoQ\Setup.exe

2013-08-01 21:17:31 AC5A884AC063C3E46A298B85041AC0A5 87464 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vrad.exe

2013-08-01 21:17:25 54E91CA3E3C7E9DB1FEE4E812FA3E200 92072 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe

2013-08-01 21:17:23 5E888B8C356914C943A4D563617A0F1F 77736 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vvis.exe

2013-08-01 21:17:21 F6A0EA6061970D89ED1C5C49AEE56F89 77736 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vtex.exe

2013-08-01 21:17:20 73C6302FA30541CDA2949885BAC947FE 86952 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\shadercompile.exe

2013-08-01 21:17:20 6159180984C7E4F98936A0171725ED23 141736 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\splitskybox.exe

2013-08-01 21:17:14 A22F85DDD866EFA92079933A36CE41AF 152488 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\hammer.exe

2013-08-01 21:17:14 206EBAA00DE81788A30B904AE0BA5737 102400 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\demoinfo.exe

2013-08-01 21:17:12 F16F4AE51E6A8B7C22579F23F58DD455 205224 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\glview.exe

2013-08-01 21:17:11 2C79E09FAFF932B6C9CD9FEB00E6CE1E 186792 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\captioncompiler.exe

2013-08-01 17:39:08 E424ADE19258B21D1701993FBACAE19A 708520 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\mksheet.exe

2013-08-01 17:39:08 E2025E56FAC09DC09A607ADC36963FD4 637864 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\pfm2tgas.exe

2013-08-01 17:39:08 D4AC15E74F2A26B4A9C7AD32C6A8C732 1461160 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vbsp.exe

2013-08-01 17:39:08 CFB3C3C078EB72D2AF17AF4F0EF1742D 696232 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\height2normal.exe

2013-08-01 17:39:08 BFB65FA1E5FE8AFBA2218FE21BD481A4 308648 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\motionmapper.exe

2013-08-01 17:39:08 BB635AC4BDF2CBBDAEFB1326A1BCA2FE 571304 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\dmxconvert.exe

2013-08-01 17:39:08 B9CD1BC32D6A1B7B81EAA43593FACB9A 468904 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\hlmv.exe

2013-08-01 17:39:08 B7CDAE603F4D7074ED6293FFEEB22F08 432552 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\bspzip.exe

2013-08-01 17:39:08 A8D40F2CBFF84A3ABF66A8D67E04F0F7 425384 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vbspinfo.exe

2013-08-01 17:39:08 934BD54ED923541FDE14073697F05A27 2749352 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\qc_eyes.exe

2013-08-01 17:39:08 784AFA483364154653DFF2FFE9BFD0D5 3242920 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\elementviewer.exe

2013-08-01 17:39:08 6770CD7DF06E6F67EDBDB8F3945512C9 690600 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\normal2ssbump.exe

2013-08-01 17:39:08 56690BEEE0F0A1688DBCDA708B073613 1891240 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\studiomdl.exe

2013-08-01 17:39:08 523B9136B43049F6351579EF0CA5D27D 706472 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\height2ssbump.exe

2013-08-01 17:39:08 453EB63098BA44E60142F95B01BD4C09 663464 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vpk.exe

2013-08-01 17:39:08 4141B21A847EC9A309F103384628D4B9 1678248 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\hlfaceposer.exe

2013-08-01 17:39:08 3FB800E4804FE0DEB8DD7D5FC8431948 1703848 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\dmxedit.exe

2013-08-01 17:39:08 3AFCE4BE81EA8A4C01D62AD83A868132 721320 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vtf2tga.exe

2013-08-01 17:15:20 D693C232F8CCD62735C649F023EA0CF2 1348944 ----a-w- C:\Program Files (x86)\Steam\SteamTmp.exe

2013-08-01 17:10:57 9E1380328C39D661E085B24D6A6E044E 563624 ----a-w- C:\Program Files (x86)\Common Files\Steam\SteamService.exe

2013-08-01 16:58:23 EB43F540338470C8FE4AAE8378780CAA 784224 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\28.0.1500.95\28.0.1500.95_28.0.1500.72_chrome_updater.exe

=== C: other files ==

2013-08-02 15:43:41 911EE319016882D3099012FDF0CBC120 663052 ----a-w- C:\ProgramData\Xfire\downloads\xfire_games_20130801.zip

2013-08-01 21:17:48 DF41D60DAF7E6DA8A973E84D497E8438 240 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vtex.bat

2013-08-01 21:17:23 E3853E9CF6F9235AB200D2425180C0EE 588 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\set_sdk_env.bat

2013-08-01 21:17:16 B596E11A6BE8A1016CB1D708F8D9567B 267 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\HLMV.bat

2013-08-01 21:17:13 D3F38A6C43EC513F555B0CEFAE80AF6E 278 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\Faceposer.bat

2013-08-01 21:17:12 D20B510D28B2288A0C16634B8A6F935C 266 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\Hammer.bat

2013-08-01 21:17:10 81EB9328BD2B23A80244B584462F9393 244 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\check_sdk_env.bat

2013-08-01 17:39:08 7178DC3A99A7F582C326C7B92854575F 7273384 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\itemtest.com

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-794288822-3723242884-3898889298-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"Driver Restore"="C:\Program Files (x86)\Driver Restore\Driver Restore\DriverRestore.exe /applicationMode:systemTray /showWelcome:false"

"Steam"="C:\Program Files (x86)\Steam\steam.exe -silent"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BtTray"="C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"

"HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"

"HP CoolSense"="C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"StartCCC"="c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"avgnt"="C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe /min"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Driver Restore"="C:\Program Files (x86)\Driver Restore\Driver Restore\DriverRestore.exe /applicationMode:systemTray /showWelcome:false"

"Steam"="C:\Program Files (x86)\Steam\steam.exe -silent"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05/07/2013 18:48]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:6C:\ProgramC:FilesC:x86\Google\Update\GoogleUpdate.exe []

==== Chrome Look ======================

HP Product Detection Plugin - Kenny - Default\Extensions\aelbknmfcacjffmgnoaaonhgoghlmlkp

Google Docs - Kenny - Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - Kenny - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - Kenny - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - Kenny - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

RaindropsNon-Aero - Kenny - Default\Extensions\dpagcfbbmlebfnkeogkigellbgmfkjfg

Define Ext - Kenny - Default\Extensions\gjkpcnacdgdlpfejlgflolpaigoicibh

Gmail - Kenny - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\Kenny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_skype.nl.softonic.com_0.localstorage deleted successfully

C:\Users\Kenny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_skype.nl.softonic.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.be/"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

No DefaultScope Set For HKCU

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.be/"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay Url="http://rover.ebay.com/rover/1/1553-29906-12136-18/4"

==== Reset Google Chrome ======================

C:\users\Kenny\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\users\Kenny\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE} deleted successfully

==== Deleting CLSID Registry Values ======================

==== HijackThis Entries ======================

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

O4 - HKLM\..\Run: [btTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"

O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [startCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKCU\..\Run: [Driver Restore] C:\Program Files (x86)\Driver Restore\Driver Restore\DriverRestore.exe /applicationMode:systemTray /showWelcome:false

O4 - HKCU\..\Run: [steam] "C:\Program Files (x86)\Steam\steam.exe" -silent

O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Avira Planner (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe

O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

O23 - Service: HP Connected Remote Service (HPConnectedRemote) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe

O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

O23 - Service: @oem28.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)

O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

O23 - Service: Intel® Rapid Storage Technologie (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe

O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe

O23 - Service: Intel® ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe

O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Kenny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Kenny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q6VEV377 will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\users\Kenny\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Kenny\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Kenny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q6VEV377" not found

==== EOF on do 08/08/2013 at 18:17:49,96 ======================

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Verwijder zoek.exe van je bureaublad.

Download de 51deb689c0320-emsisoftemergencykit_100-4.pngEmsisoft Emergency Kit naar het bureaublad.

Klik hier voor de complete / uitgebreide handleiding van de Emsisoft Emergency Kit.

  • Dubbelklik op "EmsisoftEmergencyKit.exe", wanneer u een melding krijgt van het gebruikersaccountbeheer staat u dit toe.
  • Klik vervolgens op de knop "Accept & Extract" en de bestanden worden nu automatisch uitgepakt naar de systeemschijf "C:\\EEK".
  • Wanneer het uitpakken gereed is wordt er een snelkoppeling op het bureaublad aangemaakt en zal de Emsisoft Emergency Kit vanzelf openen.
  • Klik nu op de optie "Emergency Kit Scanner" en wanneer u de melding "Wilt u nu updaten?" krijgt klikt u op "Ja".
  • Wanneer de update gereed is klikt u in het linker menu op de optie "Computer Scannen".
  • Kies vervolgens de optie "Diep", deze scan kan geruime tijd in beslag nemen en gebruik bij voorkeur de computer niet voor andere bezigheden tijdens de scan.
  • Wanneer de scan gereed is zorg dat alle items staan aangevinkt en klik op de knop "Quarantaine".
  • Klik vervolgens op de knop "Rapport bekijken" en plaats de inhoud van dit bestand in uw volgende bericht. (Het logbestand is teven terug te vinden op de systeemschijf (C:\\EEK\\Run\\Reports) met de naam a2scan_130711-154142.txt

Link naar reactie
Delen op andere sites
Dredg Leerling

Dredg

Geplaatst:
  • Auteur
Geplaatst:

Emsisoft Emergency Kit - Versie 4.0

Laatste Update: 11/08/2013 14:37:48

Gebruikersaccount: DREDG\Kenny

Scaninstellingen:

Scanmodus: Diepe scan

Objecten: Rootkits, Geheugen, Sporen, C:\, D:\

Detecteer riskware: Uit

Scan archieven: Aan

ADS Scan: Aan

Bestandsextensiefilter: Uit

Geavanceerde cache: Aan

Directe schijftoegang: Uit

Scan gestart: 11/08/2013 14:38:13

C:\Program Files\EA GAMES\MOHAA\Configure.exe Ontdekt: Trojan.Generic.9299785 (B)

C:\Windows\Hewlett-Packard\CpuDiags32.udm Ontdekt: Gen:Heur.Krypt.23 (B)

Gescand: 506528

Gevonden: 2

Scan geëindigd: 11/08/2013 15:33:25

Scantijd: 0:55:12

C:\Windows\Hewlett-Packard\CpuDiags32.udm In quarantaine geplaatst Gen:Heur.Krypt.23 (B)

C:\Program Files\EA GAMES\MOHAA\Configure.exe In quarantaine geplaatst Trojan.Generic.9299785 (B)

In quarantaine geplaatst 2

Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.