Ga naar inhoud

internet werkt traag

anke marquetecken
 Delen

Aanbevolen berichten

iEscape Grootmeester

iEscape

Geplaatst:
Geplaatst: (aangepast)

@ anke,

Uw topic is samengevoegd met uw lopende topic.

Geeft de helper(s) ook wel wat tijd om te reageren op je post's want we zijn en blijven allemaal VRIJWILLIGERS die dit allemaal in persoonlijke tijd doen en JA we hebben af en toe ook nog wel wat andere zaken aan ons hoofd zoals een gezinsleven bijvoorbeeld.

Noteer deze link waar verder hulp zal worden gegeven.

aangepast door iEscape
typo
Link naar reactie
Delen op andere sites
  • Reacties 36
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Link naar reactie
Delen op andere sites
anke marquetecken Bijdrager

anke marquetecken

Geplaatst:
  • Auteur
Geplaatst:

Logfile of random's system information tool 1.09 (written by random/random)

Run by Anke at 2013-10-31 09:27:08

Microsoft Windows 7 Professional Service Pack 1

System drive C: has 9 GB (11%) free of 76 GB

Total RAM: 1528 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 9:27:16, on 31/10/2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v10.0 (10.00.9200.16720)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe

C:\Program Files\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe

C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\Anke\Downloads\RSIT.exe

C:\Program Files\trend micro\Anke.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [AGupdate] C:\Program Files\AppGraffiti\AGupdate.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')

O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm

O8 - Extra context menu item: Free YouTube to DVD Converter - C:\Users\Anke\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetodvdconverter.htm

O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O17 - HKLM\System\CCS\Services\Tcpip\..\{9057084B-A503-4EB9-8C3F-42833D5AE6B1}: NameServer = 208.67.222.222,208.67.220.220

O17 - HKLM\System\CS1\Services\Tcpip\..\{9057084B-A503-4EB9-8C3F-42833D5AE6B1}: NameServer = 208.67.222.222,208.67.220.220

O17 - HKLM\System\CS2\Services\Tcpip\..\{9057084B-A503-4EB9-8C3F-42833D5AE6B1}: NameServer = 208.67.222.222,208.67.220.220

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HitmanPro Scheduler (HitmanProScheduler) - SurfRight B.V. - C:\Program Files\HitmanPro\hmpsched.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

--

End of file - 5482 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Anke\AppData\Roaming\Mozilla\Firefox\Profiles\ad6ajl7f.default

"fmdownloader@gmail.com"=C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@UtilityChest_49.com/Plugin]

"Description"=Utility Chest Plugin

"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]

"Description"=

"Path"=C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll

C:\Program Files\Mozilla Firefox\components\

binary.manifest

browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\

bing.xml

bolcom-nl.xml

google.xml

marktplaats-nl.xml

wikipedia-nl.xml

C:\Users\Anke\AppData\Roaming\Mozilla\Firefox\Profiles\ad6ajl7f.default\extensions\

staged

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-09 194640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-08-12 995176]

"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-06-13 472984]

"Adobe Creative Cloud"=C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2013-09-03 2237328]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2013-03-28 39408]

"AGupdate"=C:\Program Files\AppGraffiti\AGupdate.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppsHat]

C:\Users\Anke\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [2012-10-26 202752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare]

C:\Program Files\BearShare Applications\BearShare\BearShare.exe [2013-06-24 31164992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]

C:\PROGRA~1\MCAFEE~1\307523~1.318\SSSCHE~1.EXE []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"vidc.uyvy"=msyuv.dll

"vidc.yuy2"=msyuv.dll

"vidc.yvyu"=msyuv.dll

"vidc.iyuv"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"vidc.yvu9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.cvid"=iccvid.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-10-31 09:27:08 ----D---- C:\rsit

2013-10-30 12:35:21 ----D---- C:\hegames

2013-10-28 11:04:51 ----D---- C:\AdwCleaner

2013-10-26 08:25:13 ----D---- C:\zoek_backup

2013-10-21 20:42:53 ----A---- C:\Windows\system32\sasnative32.exe

2013-10-21 11:51:10 ----D---- C:\Users\Anke\AppData\Roaming\PDAppFlex

2013-10-21 11:50:46 ----D---- C:\ProgramData\regid.1986-12.com.adobe

2013-10-21 10:47:57 ----D---- C:\Program Files\Free Zip

2013-10-18 19:29:49 ----D---- C:\ProgramData\SummerSoft

2013-10-18 19:29:31 ----D---- C:\Program Files\ss helper

2013-10-18 19:15:06 ----AD---- C:\ProgramData\TEMP

2013-10-10 02:07:06 ----A---- C:\Windows\system32\jscript.dll

2013-10-10 02:07:05 ----A---- C:\Windows\system32\jscript9.dll

2013-10-10 02:07:04 ----A---- C:\Windows\system32\jsproxy.dll

2013-10-10 02:07:03 ----A---- C:\Windows\system32\ieui.dll

2013-10-10 02:07:03 ----A---- C:\Windows\system32\iesetup.dll

2013-10-10 02:07:01 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

2013-10-10 02:07:01 ----A---- C:\Windows\system32\msfeeds.dll

2013-10-10 02:07:01 ----A---- C:\Windows\system32\iernonce.dll

2013-10-10 02:07:01 ----A---- C:\Windows\system32\ie4uinit.exe

2013-10-10 02:07:00 ----A---- C:\Windows\system32\urlmon.dll

2013-10-10 02:07:00 ----A---- C:\Windows\system32\iesysprep.dll

2013-10-10 02:06:59 ----A---- C:\Windows\system32\iertutil.dll

2013-10-10 02:06:57 ----A---- C:\Windows\system32\wininet.dll

2013-10-10 02:06:56 ----A---- C:\Windows\system32\ieframe.dll

2013-10-10 02:06:52 ----A---- C:\Windows\system32\mshtml.dll

2013-10-09 06:07:49 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2013-10-09 06:07:49 ----A---- C:\Windows\system32\comctl32.dll

2013-10-09 06:07:48 ----A---- C:\Windows\system32\drivers\usbuhci.sys

2013-10-09 06:07:48 ----A---- C:\Windows\system32\drivers\usbport.sys

2013-10-09 06:07:48 ----A---- C:\Windows\system32\drivers\usbohci.sys

2013-10-09 06:07:48 ----A---- C:\Windows\system32\drivers\usbhub.sys

2013-10-09 06:07:48 ----A---- C:\Windows\system32\drivers\usbehci.sys

2013-10-09 06:07:48 ----A---- C:\Windows\system32\drivers\usbd.sys

2013-10-09 06:07:47 ----A---- C:\Windows\system32\drivers\hidparse.sys

2013-10-09 06:07:47 ----A---- C:\Windows\system32\drivers\hidclass.sys

2013-10-09 06:07:46 ----A---- C:\Windows\system32\drivers\tcpip.sys

2013-10-09 06:07:45 ----A---- C:\Windows\system32\mswsock.dll

2013-10-09 06:07:45 ----A---- C:\Windows\system32\drivers\afd.sys

2013-10-09 06:07:42 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys

2013-10-09 06:07:41 ----A---- C:\Windows\system32\ntoskrnl.exe

2013-10-09 06:07:41 ----A---- C:\Windows\system32\ntkrnlpa.exe

2013-10-09 06:07:40 ----A---- C:\Windows\system32\tdh.dll

2013-10-09 06:07:40 ----A---- C:\Windows\system32\ntdll.dll

2013-10-09 06:07:39 ----A---- C:\Windows\system32\advapi32.dll

2013-10-09 06:07:38 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2013-10-09 06:07:37 ----A---- C:\Windows\system32\lpk.dll

2013-10-09 06:07:37 ----A---- C:\Windows\system32\fontsub.dll

2013-10-09 06:07:37 ----A---- C:\Windows\system32\dciman32.dll

2013-10-09 06:07:37 ----A---- C:\Windows\system32\atmlib.dll

2013-10-09 06:07:37 ----A---- C:\Windows\system32\atmfd.dll

2013-10-09 06:07:35 ----A---- C:\Windows\system32\scavengeui.dll

2013-10-09 06:07:33 ----A---- C:\Windows\system32\win32k.sys

2013-10-09 06:07:29 ----A---- C:\Windows\system32\WebClnt.dll

2013-10-09 06:07:29 ----A---- C:\Windows\system32\drivers\mrxdav.sys

2013-10-09 06:07:29 ----A---- C:\Windows\system32\davclnt.dll

2013-10-09 06:07:27 ----A---- C:\Windows\system32\drivers\usbcir.sys

2013-10-09 06:07:26 ----A---- C:\Windows\system32\drivers\Wdf01000.sys

2013-10-02 19:49:28 ----D---- C:\Users\Anke\AppData\Roaming\BSplayer Pro

2013-10-02 19:49:28 ----D---- C:\Users\Anke\AppData\Roaming\BSplayer

2013-10-02 19:49:14 ----D---- C:\Program Files\Webteh

2013-10-02 19:34:53 ----D---- C:\Program Files\Microsoft Security Client

2013-10-02 19:30:59 ----D---- C:\Users\Anke\AppData\Roaming\tixati

2013-10-02 19:30:45 ----D---- C:\Program Files\tixati

2013-10-02 19:30:20 ----D---- C:\Windows\pss

2013-10-02 19:29:02 ----A---- C:\Windows\system32\drivers\ataport.sys

2013-10-02 19:15:48 ----D---- C:\Program Files\CCleaner

2013-10-02 15:46:49 ----A---- C:\Windows\system32\drivers\PSKMAD.sys

2013-10-02 14:04:31 ----D---- C:\Program Files\GridinSoft Trojan Killer

2013-10-02 13:30:58 ----D---- C:\Program Files\Enigma Software Group

2013-10-02 13:30:25 ----D---- C:\Windows\865537E164904193A4B6669C62711852.TMP

2013-10-02 13:30:24 ----D---- C:\Program Files\Common Files\Wise Installation Wizard

======List of files/folders modified in the last 1 month======

2013-10-31 09:27:16 ----D---- C:\Windows\Prefetch

2013-10-31 09:27:12 ----D---- C:\Program Files\Trend Micro

2013-10-31 09:26:53 ----D---- C:\Windows\Temp

2013-10-31 08:43:37 ----D---- C:\Windows\system32\config

2013-10-31 08:32:06 ----SHD---- C:\System Volume Information

2013-10-31 08:07:21 ----D---- C:\Windows\system32\drivers

2013-10-31 08:03:19 ----D---- C:\Windows\System32

2013-10-31 08:03:19 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-10-31 08:03:18 ----D---- C:\Windows\inf

2013-10-31 07:56:26 ----D---- C:\Windows

2013-10-30 16:03:39 ----D---- C:\Windows\system32\Tasks

2013-10-30 10:39:56 ----HD---- C:\ProgramData

2013-10-28 21:36:46 ----A---- C:\DelFix.txt

2013-10-28 11:06:27 ----RD---- C:\Program Files

2013-10-26 08:36:36 ----D---- C:\Program Files\Common Files

2013-10-26 08:28:07 ----D---- C:\Windows\Tasks

2013-10-24 18:57:10 ----SHD---- C:\Windows\Installer

2013-10-24 12:21:08 ----D---- C:\Windows\Panther

2013-10-24 12:21:07 ----D---- C:\Windows\debug

2013-10-21 20:43:28 ----D---- C:\Windows\winsxs

2013-10-21 12:22:39 ----D---- C:\Program Files\Common Files\Adobe

2013-10-21 12:19:33 ----D---- C:\Program Files\Adobe

2013-10-21 11:51:32 ----D---- C:\Users\Anke\AppData\Roaming\Adobe

2013-10-21 11:23:44 ----D---- C:\ProgramData\Adobe

2013-10-21 11:21:05 ----RSD---- C:\Windows\Fonts

2013-10-21 10:56:46 ----D---- C:\Program Files\Common Files\microsoft shared

2013-10-20 09:02:11 ----D---- C:\ProgramData\HitmanPro

2013-10-20 00:58:16 ----D---- C:\Windows\system32\catroot

2013-10-18 08:01:44 ----D---- C:\Windows\system32\catroot2

2013-10-11 19:38:39 ----D---- C:\Users\Anke\AppData\Roaming\DVDVideoSoft

2013-10-11 19:34:38 ----D---- C:\Program Files\DVDVideoSoft

2013-10-11 19:34:17 ----RSD---- C:\Windows\assembly

2013-10-10 17:32:07 ----D---- C:\Windows\system32\NDF

2013-10-10 03:12:10 ----D---- C:\Windows\rescache

2013-10-10 02:43:44 ----D---- C:\Windows\Microsoft.NET

2013-10-10 02:34:23 ----D---- C:\Program Files\Microsoft Silverlight

2013-10-10 02:32:52 ----D---- C:\Windows\system32\en-US

2013-10-10 02:32:52 ----D---- C:\Program Files\Internet Explorer

2013-10-10 02:32:50 ----D---- C:\Windows\system32\DriverStore

2013-10-10 02:12:21 ----D---- C:\Windows\system32\MRT

2013-10-10 02:09:09 ----A---- C:\Windows\system32\MRT.exe

2013-10-08 20:18:11 ----A---- C:\Windows\system32\FlashPlayerApp.exe

2013-10-02 19:47:59 ----D---- C:\Windows\Logs

2013-10-02 19:35:03 ----SD---- C:\ProgramData\Microsoft

2013-10-02 19:08:41 ----D---- C:\Windows\system32\appmgmt

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-06-18 211560]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]

R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]

R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]

R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-06-18 107392]

R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35088]

R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]

R3 aeaudio;aeaudio; C:\Windows\system32\drivers\aeaudio.sys [2003-10-23 100384]

R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]

R3 smwdm;smwdm; C:\Windows\system32\drivers\smwdm.sys [2004-04-15 612416]

S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]

S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]

S3 AVFSFilter;AVFSFilter; C:\Windows\system32\DRIVERS\avfsfilter.sys []

S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]

S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]

S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]

S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]

S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]

S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]

S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]

R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2013-08-26 101888]

R2 FreemakeVideoCapture;FreemakeVideoCapture; C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe [2013-08-26 9216]

R2 HitmanProScheduler;HitmanPro Scheduler; C:\Program Files\HitmanPro\hmpsched.exe [2013-10-20 106280]

R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-08-12 22208]

R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2013-08-12 295376]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-28 136176]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-08 257416]

S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-28 136176]

S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-03-28 194032]

S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-07 115608]

S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-28 1343400]

-----------------EOF-----------------

- - - Updated - - -

merci he

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
firefoxlook; 
 C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com;fs
 C:\ProgramData\SummerSoft;fs
 C:\Program Files\ss helper;fs
 C:\Windows\865537E164904193A4B6669C62711852.TMP;f
 C:\DelFix.txt;f
 C:\Users\Anke\AppData\Roaming\DVDVideoSoft;fs
 C:\Program Files\DVDVideoSoft;fs
 emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Firefox Defaults
  • Reset Chrome
  • IE Defaults
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
anke marquetecken Bijdrager

anke marquetecken

Geplaatst:
  • Auteur
Geplaatst:

Zoek.exe Version 4.0.0.4 Updated 26-October-2013

Tool run by Anke on do 31/10/2013 at 16:41:51,76.

Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Anke\Documents\zoek (3)\zoek.exe [script inserted]

==== System Restore Info ======================

31/10/2013 16:42:37 Zoek.exe System Restore Point Created Succesfully.

==== Deleting Files \ Folders ======================

C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com deleted

C:\ProgramData\SummerSoft deleted

C:\Program Files\ss helper deleted

C:\Users\Anke\AppData\Roaming\DVDVideoSoft deleted

"C:\DelFix.txt" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCall.dll" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla.dll" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla17.dll" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla18.exe" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla19.dll" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla2.dll" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla20.dll" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla22.dll" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla22.exe" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseData.ini" deleted

"C:\Program Files\DVDVideoSoft\Free YouTube to DVD Converter\DVDVideoSoft.DVSVideoDownloader.dll" deleted

"C:\Program Files\DVDVideoSoft\Free YouTube to DVD Converter\DVDVideoSoft.Presets.dll" deleted

"C:\Program Files\DVDVideoSoft\Free YouTube to DVD Converter\DVDVideoSoft.Resources.dll" deleted

"C:\Program Files\DVDVideoSoft\Free YouTube to DVD Converter\FreeYouTubeToDVDConverter.exe" deleted

"C:\Windows\865537E164904193A4B6669C62711852.TMP" deleted

"C:\Program Files\DVDVideoSoft" not deleted

"C:\Program Files\DVDVideoSoft\Free YouTube to DVD Converter" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2013-10-31 08:58:56 FAE2C1567875ACD7E709AD36DB281FFE 579 ----a-w- C:\Windows\hegames.ini

2013-10-02 18:35:40 2A66E81AE941E54A237490FC35D387C8 1945 ----a-w- C:\Windows\epplauncher.mif

====== C:\Users\Anke\AppData\Local\Temp ====

====== Java Cache =====

2013-10-22 10:06:35 0F08A8F6BA89A7E31BD59FE8189B97BC 193418 ----a-w- C:\Users\Anke\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\474b93a0-1e91598d

2013-10-22 10:06:36 E035E0B09BCADCCD3FBAD1CD731585A4 469 ----a-w- C:\Users\Anke\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\4de63de6-337c0836

2013-10-04 09:01:57 A98998FB8CF1C95844FC05EFFB8A6C76 1040305 ----a-w- C:\Users\Anke\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\5530fcf6-4ed5e94e

====== C:\Windows\system32 =====

2013-10-21 19:42:53 0065E911F966A71A115D9A52FF3DFC99 17136 ----a-w- C:\Windows\System32\sasnative32.exe

====== C:\Windows\system32\drivers =====

2013-10-09 05:07:49 71D97F1A3CC47A56728F7A400A3F8295 76288 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2013-10-09 05:07:48 FDA6F2BB7FA034D95863ED8788B4E416 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys

2013-10-09 05:07:48 DCDF9855145A14DFCA0AB32308871961 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2013-10-09 05:07:48 C4FB8E7ADEA9B5CEEA885A1B504B7E40 43008 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2013-10-09 05:07:48 8E51D04175BAA14C4F79AA5F6D248770 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2013-10-09 05:07:48 86AA95ACB611001E26CD2C0145F2225A 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2013-10-09 05:07:48 6FB17D7A2E76B838886E5E8C60239DAE 6016 ----a-w- C:\Windows\System32\drivers\usbd.sys

2013-10-09 05:07:47 F1B27299F547D452EDAEF01FC187CB91 25728 ----a-w- C:\Windows\System32\drivers\hidparse.sys

2013-10-09 05:07:47 50ABE682EBE752EAF62B18790D6D491C 55808 ----a-w- C:\Windows\System32\drivers\hidclass.sys

2013-10-09 05:07:46 CA59F7C570AF70BC174F477CFE2D9EE3 1294272 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2013-10-09 05:07:45 F81BB7E487EDCEAB630A7EE66CF23913 338944 ----a-w- C:\Windows\System32\drivers\afd.sys

2013-10-09 05:07:42 71BC35067CABC02C9453AEAA42B2E43E 729024 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

2013-10-09 05:07:29 21F4B24ACFC79A483515BD986DD9043F 115712 ----a-w- C:\Windows\System32\drivers\mrxdav.sys

2013-10-09 05:07:27 2352AB5F9F8F097BF9D41D5A4718A041 86016 ----a-w- C:\Windows\System32\drivers\usbcir.sys

2013-10-09 05:07:26 25944D2CC49E0A6C581D02A74B7D6645 527064 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys

2013-10-02 18:29:02 DDCE686D76C2B4DB435A3AF5BD0E691D 133056 ----a-w- C:\Windows\System32\drivers\ataport.sys

2013-10-02 14:46:49 05A0C2744CEAC6F1B723EC469B650EF0 47632 ----a-w- C:\Windows\System32\drivers\PSKMAD.sys

====== C:\Windows\Tasks ======

2013-10-30 15:03:39 C8D0925440C072062DF56F275CC545FF 3038 ----a-w- C:\Windows\system32\Tasks\{EEF05FBB-D888-49BA-A9FF-F0C1686F15E8}

2013-10-21 09:58:31 1D63C72B24927B7CC5629434AF27568B 3490 ----a-w- C:\Windows\system32\Tasks\AdobeAAMUpdater-1.0-Zot_geval-Anke

2013-10-21 09:47:48 27B7CF5B01174A689320ADBAB583C408 3246 ----a-w- C:\Windows\system32\Tasks\SomotoUpdateCheckerAutoStart

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-10-21 09:47:57 -------- d-----w- C:\Program Files\Free Zip

2013-10-02 18:49:14 -------- d-----w- C:\Program Files\Webteh

2013-10-02 18:30:45 -------- d-----w- C:\Program Files\tixati

2013-10-02 13:04:31 -------- d-----w- C:\Program Files\GridinSoft Trojan Killer

2013-10-02 12:30:58 -------- d-----w- C:\Program Files\Enigma Software Group

2013-10-02 12:30:24 -------- d-----w- C:\Program Files\Common Files\Wise Installation Wizard

======= C: =====

2013-10-31 08:58:56 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\MSDOS.SYS

2013-10-31 08:58:56 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\IO.SYS

====== C:\Users\Anke\AppData\Roaming ======

2013-10-21 10:51:10 -------- d-----w- C:\Users\Anke\AppData\Roaming\PDAppFlex

2013-10-09 16:29:12 -------- d-----w- C:\Users\Anke\AppData\Local\avgchrome

2013-10-02 18:49:28 -------- d-----w- C:\Users\Anke\AppData\Roaming\BSplayer Pro

2013-10-02 18:49:28 -------- d-----w- C:\Users\Anke\AppData\Roaming\BSplayer

2013-10-02 18:30:59 -------- d-----w- C:\Users\Anke\AppData\Roaming\tixati

2013-10-02 18:30:49 -------- d-----w- C:\Users\Anke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati

====== C:\Users\Anke ======

2013-10-31 08:26:45 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Anke\Downloads\RSIT.exe

2013-10-27 14:39:42 6D35AFCD77A1F498C72FC1511CAF6E70 311048 ----a-w- C:\Users\Anke\Downloads\Embrase of the vampire (1).exe

2013-10-27 14:39:31 6D35AFCD77A1F498C72FC1511CAF6E70 311048 ----a-w- C:\Users\Anke\Downloads\Embrase of the vampire.exe

2013-10-21 19:39:28 E423CB96C400DBB600DE5FD91F2937A6 611648 ----a-w- C:\Users\Anke\Downloads\the-wolverine-dut-5160271.exe

2013-10-21 10:50:46 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe

2013-10-21 09:54:25 E44FC2615F6C32C663F7D13B121B850A 2832256 ----a-w- C:\Users\Anke\Downloads\CreativeCloudSet-Up.exe

2013-10-21 09:48:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Zip

2013-10-21 09:47:12 32409777B3EB2BF508E677FA945C37D1 166632 ----a-w- C:\Users\Anke\Downloads\FreeZipSetup.exe

2013-10-18 18:28:45 84FEC64CF1DB849FE26968CDF11EB030 329048 ----a-w- C:\Users\Anke\Downloads\Les-Miserables-2012-DVDSCR-EDAW2013-srt.exe

2013-10-18 18:15:06 -------- d---a-w- C:\ProgramData\TEMP

2013-10-18 18:07:52 A7E6BB3D12BD7D2558C4C0AA769E19DF 611648 ----a-w- C:\Users\Anke\Downloads\les-miserables-dut-4863346.exe

2013-10-02 18:50:24 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player

====== C: exe-files ==

2013-10-31 08:26:45 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Anke\Downloads\RSIT.exe

2013-10-27 14:39:42 6D35AFCD77A1F498C72FC1511CAF6E70 311048 ----a-w- C:\Users\Anke\Downloads\Embrase of the vampire (1).exe

2013-10-27 14:39:31 6D35AFCD77A1F498C72FC1511CAF6E70 311048 ----a-w- C:\Users\Anke\Downloads\Embrase of the vampire.exe

2013-10-25 18:30:04 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\Trend Micro\Anke.exe

=== C: other files ==

2013-10-31 08:58:56 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\MSDOS.SYS

2013-10-31 08:58:56 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\IO.SYS

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-766547166-3330058944-3535508039-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"AGupdate"="C:\Program Files\AppGraffiti\AGupdate.exe"

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 /build:7601"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 /build:7601"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"

"AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

"Adobe Creative Cloud"="C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"AGupdate"="C:\Program Files\AppGraffiti\AGupdate.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AppsHat]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="AppsHat"

"hkey"="HKCU"

"command"="C:\\Users\\Anke\\AppData\\Local\\WebPlayer\\AppsHat\\WebPlayer.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BearShare]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="BearShare"

"hkey"="HKCU"

"command"="\"C:\\Program Files\\BearShare Applications\\BearShare\\BearShare.exe\" --lightmode"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]

"item"="McAfee Security Scan Plus"

"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\McAfee Security Scan Plus.lnk"

"backup"="C:\\Windows\\pss\\McAfee Security Scan Plus.lnk.CommonStartup"

"backupExtension"=".CommonStartup"

"command"="C:\\PROGRA~1\\MCAFEE~1\\307523~1.318\\SSSCHE~1.EXE"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]

"Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

"SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\""

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [08/10/2013 20:18]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ :C:\Program Files\Google\Update\GoogleUpdate.exe []

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [28/03/2013 21:31]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\Adobe online update program" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe]

"C:\Windows\system32\tasks\AdobeAAMUpdater-1.0-Zot_geval-Anke" [C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]

"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\Java Update Scheduler" [C:\Program Files\Common Files\Java\Java Update\jusched.exe]

"C:\Windows\system32\tasks\SomotoUpdateCheckerAutoStart" [C:\Users\Anke\AppData\Local\FilesFrog Update Checker\update_checker.exe]

"C:\Windows\system32\tasks\NCH Software\VideoPadDowngrade" [C:\Program Files\NCH Software\VideoPad\videopad.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"fmdownloader@gmail.com"="C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Anke\AppData\Roaming\Mozilla\Firefox\Profiles\ad6ajl7f.default

- Undetermined - %ProfilePath%\extensions\staged

==== Firefox Plugins ======================

==== Chrome Look ======================

Google Docs - Anke - Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - Anke - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - Anke - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - Anke - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

LyricsViewer-2 - Anke - Default\Extensions\gnbbmjlpkhenbefmmdjodjfmcamegmpd

Chrome In-App Payments service - Anke - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - Anke - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

Docs - Anke - Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - Anke - Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - Anke - Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - Anke - Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Select City - Anke - Profile 1\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo

Gmail - Anke - Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

undetermined - Anke - Default\Extensions\newtab.crx

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\fmdownloader@gmail.com deleted successfully

==== After Reboot ======================

==== Deleting Files / Folders ======================

"C:\Program Files\DVDVideoSoft" not found

==== EOF on do 31/10/2013 at 16:53:56,05 ======================

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  C:\Windows\system32\Tasks\{EEF05FBB-D888-49BA-A9FF-F0C1686F15E8};fs
 C:\Users\Anke\Downloads\Embrase of the vampire (1).exe;f
 Gnbbmjlpkhenbefmmdjodjfmcamegmpd:chr
 C:\Program Files\DVDVideoSoft;fs
 C:\Users\Anke\AppData\Roaming\Mozilla\Firefox\Profiles\ad6ajl7f.default\extensions\staged;fs
 autoclean;

  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
anke marquetecken Bijdrager

anke marquetecken

Geplaatst:
  • Auteur
Geplaatst:

Zoek.exe Version 4.0.0.4 Updated 26-October-2013

Tool run by Anke on vr 01/11/2013 at 15:21:34,91.

Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Anke\Documents\zoek (3)\zoek.exe [script inserted]

==== Older Logs ======================

C:\zoek-results2013-10-31-155356.log 15477 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

ProfilePath: C:\Users\Anke\AppData\Roaming\Mozilla\Firefox\Profiles\ad6ajl7f.default

user.js not found

---- Lines browser.startup.page removed from prefs.js ----

user_pref("browser.startup.page", 3);

---- FireFox user.js and prefs.js backups ----

user_20132808_1146_.backup

prefs_20130111_1531_.backup

prefs_20132808_1146_.backup

==== Deleting Files \ Folders ======================

C:\Program Files\DVDVideoSoft not found

C:\Windows\system32\Tasks\{EEF05FBB-D888-49BA-A9FF-F0C1686F15E8} deleted

C:\Users\Anke\AppData\Roaming\Mozilla\Firefox\Profiles\ad6ajl7f.default\extensions\staged deleted

C:\Users\Anke\AppData\Local\avgchrome deleted

C:\Users\Anke\AppData\Local\WebPlayer\AppsHat deleted

C:\Users\Anke\AppData\Local\AppsHat Mobile Apps deleted

C:\Users\Anke\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx deleted

C:\Users\Anke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat deleted

C:\Users\Anke\Downloads\SoftonicDownloader_voor_free-youtube-to-mp3-converter (1).exe deleted

C:\Users\Anke\Downloads\SoftonicDownloader_voor_free-youtube-to-mp3-converter (2).exe deleted

C:\Users\Anke\Downloads\SoftonicDownloader_voor_free-youtube-to-mp3-converter (3).exe deleted

C:\Users\Anke\Downloads\SoftonicDownloader_voor_free-youtube-to-mp3-converter (4).exe deleted

C:\Users\Anke\Downloads\SoftonicDownloader_voor_free-youtube-to-mp3-converter.exe deleted

C:\Windows\system32\sasnative32.exe deleted

C:\Users\Anke\Desktop\Search.lnk deleted

C:\Users\Anke\Downloads\Les-Miserables-2012-DVDSCR-EDAW2013-srt.exe deleted

"C:\Users\Anke\Downloads\Embrase of the vampire (1).exe" deleted

==== Firefox Extensions ======================

==== Firefox Plugins ======================

==== Chrome Look ======================

LyricsViewer-2 - Anke - Default\Extensions\gnbbmjlpkhenbefmmdjodjfmcamegmpd

Docs - Anke - Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake

==== Chrome Fix ======================

C:\Users\Anke\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnbbmjlpkhenbefmmdjodjfmcamegmpd deleted successfully

C:\Users\Anke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gnbbmjlpkhenbefmmdjodjfmcamegmpd_0.localstorage deleted successfully

C:\Users\Anke\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_gnbbmjlpkhenbefmmdjodjfmcamegmpd_0 deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.com"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.com"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

No DefaultScope Set For HKCU

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.com"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{69CC23EF-2ADA-7D26-A2DF-91346C9740C6} deleted successfully

HKEY_LOCAL_MACHINE\Software\Policies\Google\Chrome\ExtensionInstallForcelist deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Doko Chrome Toolbar deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\dokotoolbar deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppsHat deleted successfully

==== Empty IE Cache ======================

C:\Users\Anke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Anke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Anke\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\Users\Anke\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Anke\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on vr 01/11/2013 at 15:38:17,53 ======================

Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.