Ga naar inhoud

nzien log


Aanbevolen berichten

Beste team willen jullie mijn log nazien ik vermoed dat er dingen tussen zitten dieik niet wil.

alvast bedankt.

Logfile of Trend Micro HijackThis v2.0.5

Scan saved at 19:24:41, on 16-11-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v10.0 (10.00.9200.16736)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskhost.exe

C:\Program Files\AVG\AVG2013\avgui.exe

C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe

C:\Program Files\Panicware\Pop-Up Stopper Free Edition\PSFree.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\WinZip\WzPreviewer32.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\PremierOpinion\pmropn.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\WinZip\zipsendservice.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_117_ActiveX.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\SearchProtocolHost.exe

F:\PC\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: CrossriderApp0045967 - {11111111-1111-1111-1111-110411591167} - C:\Program Files\1ClickMovieDownloader V6\1ClickMovieDownloader V6-bho.dll

O2 - BHO: PriceGong - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files\PriceGong\2.6.8\PriceGongIE.dll

O2 - BHO: LinkSwift - {323420b6-65e5-4657-8106-a27392d4d4aa} - C:\Program Files\LinkSwift\LinkSwiftbho.dll

O2 - BHO: Ask Toolbar BHO - {434D452D-5637-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\CME-V7\Passport.dll" (file missing)

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL

O2 - BHO: Wajam IE BHO - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files\Wajam\IE\priam_bho.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL

O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\Softonic\1.8.28.2\bh\Softonic.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: Ask Toolbar - {434D452D-5637-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\CME-V7\Passport.dll" (file missing)

O3 - Toolbar: Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\Softonic\1.8.28.2\SoftonicTlbr.dll

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon

O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon

O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent

O4 - HKCU\..\Run: [PopUpStopperFreeEdition] C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe

O4 - HKCU\..\Run: [sSync] "C:\Users\Ricardo\AppData\Roaming\SSync\SSync.exe"

O4 - HKCU\..\Run: [DataMgr] "C:\Users\Ricardo\AppData\Roaming\DataMgr\DataMgr.exe"

O4 - HKCU\..\Run: [intermediate] "C:\Users\Ricardo\AppData\Roaming\Intermediate\Intermediate.exe"

O4 - HKCU\..\Run: [OMESupervisor] C:\Users\Ricardo\AppData\Local\omesuperv.exe

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - AppInit_DLLs:

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe

O23 - Service: Ask-updateservice (APNMCP) - APN LLC. - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe

O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgfws.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: PremierOpinion - VoiceFive, Inc. - C:\Program Files\PremierOpinion\pmservice.exe

O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe

O23 - Service: Update LinkSwift - Unknown owner - C:\Program Files\LinkSwift\updateLinkSwift.exe

O23 - Service: Util LinkSwift - Unknown owner - C:\Program Files\LinkSwift\bin\utilLinkSwift.exe

O23 - Service: WajamUpdater - Wajam - C:\Program Files\Wajam\Updater\WajamUpdater.exe

--

End of file - 8067 bytes

Link naar reactie
Delen op andere sites

  • Reacties 33
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

Geplaatste afbeeldingen

Start Hijackthis op. Selecteer “Scan”. Selecteer alleen de items die hieronder zijn genoemd:

O2 - BHO: CrossriderApp0045967 - {11111111-1111-1111-1111-110411591167} - C:\Program Files\1ClickMovieDownloader V6\1ClickMovieDownloader V6-bho.dll

O2 - BHO: PriceGong - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files\PriceGong\2.6.8\PriceGongIE.dll

O2 - BHO: LinkSwift - {323420b6-65e5-4657-8106-a27392d4d4aa} - C:\Program Files\LinkSwift\LinkSwiftbho.dll

O2 - BHO: Ask Toolbar BHO - {434D452D-5637-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\CME-V7\Passport.dll" (file missing)

O2 - BHO: Wajam IE BHO - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files\Wajam\IE\priam_bho.dll

O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\Softonic\1.8.28.2\bh\Softonic.dll

O3 - Toolbar: Ask Toolbar - {434D452D-5637-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\CME-V7\Passport.dll" (file missing)

O3 - Toolbar: Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\Softonic\1.8.28.2\SoftonicTlbr.dll

O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"

O4 - HKCU\..\Run: [DataMgr] "C:\Users\Ricardo\AppData\Roaming\DataMgr\DataMgr.exe"

Klik op 'Fix checked' om de items te verwijderen.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\Program Files\Trend Micro\HiJackThis of C:\Program Files (x86)\Trend Micro\HiJackThis.

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Link naar reactie
Delen op andere sites

Logfile of random's system information tool 1.09 (written by random/random)

Run by Ricardo at 2013-11-18 01:11:07

Microsoft Windows 7 Professional Service Pack 1

System drive C: has 175 GB (59%) free of 295 GB

Total RAM: 2942 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 1:11:12, on 18-11-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v10.0 (10.00.9200.16736)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Trusteer\Rapport\bin\RapportService.exe

C:\Windows\system32\taskhost.exe

C:\Program Files\AVG\AVG2013\avgui.exe

C:\Program Files\Panicware\Pop-Up Stopper Free Edition\PSFree.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE

C:\Program Files\WinZip\zipsendservice.exe

C:\Program Files\PremierOpinion\pmropn.exe

C:\PROGRA~1\PREMIE~1\pmropn32.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\prevhost.exe

C:\Program Files\Windows Media Player\wmprph.exe

C:\Program Files\WinZip\WzPreviewer32.exe

C:\Program Files\Windows Media Player\wmplayer.exe

C:\Program Files\Windows Media Player\wmplayer.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_117_ActiveX.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Users\Ricardo\Desktop\RSIT.exe

C:\Program Files\trend micro\Ricardo.exe

C:\Windows\system32\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: CrossriderApp0045967 - {11111111-1111-1111-1111-110411591167} - C:\Program Files\1ClickMovieDownloader V6\1ClickMovieDownloader V6-bho.dll

O2 - BHO: PriceGong - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files\PriceGong\2.6.8\PriceGongIE.dll

O2 - BHO: LinkSwift - {323420b6-65e5-4657-8106-a27392d4d4aa} - C:\Program Files\LinkSwift\LinkSwiftbho.dll

O2 - BHO: Ask Toolbar BHO - {434D452D-5637-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\CME-V7\Passport.dll" (file missing)

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL

O2 - BHO: Wajam IE BHO - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files\Wajam\IE\priam_bho.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL

O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\Softonic\1.8.28.2\bh\Softonic.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: Ask Toolbar - {434D452D-5637-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\CME-V7\Passport.dll" (file missing)

O3 - Toolbar: Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\Softonic\1.8.28.2\SoftonicTlbr.dll

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon

O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon

O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent

O4 - HKCU\..\Run: [PopUpStopperFreeEdition] C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe

O4 - HKCU\..\Run: [sSync] "C:\Users\Ricardo\AppData\Roaming\SSync\SSync.exe"

O4 - HKCU\..\Run: [intermediate] "C:\Users\Ricardo\AppData\Roaming\Intermediate\Intermediate.exe"

O4 - HKCU\..\Run: [OMESupervisor] C:\Users\Ricardo\AppData\Local\omesuperv.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - AppInit_DLLs:

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe

O23 - Service: Ask-updateservice (APNMCP) - APN LLC. - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe

O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgfws.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: PremierOpinion - VoiceFive, Inc. - C:\Program Files\PremierOpinion\pmservice.exe

O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe

O23 - Service: Update LinkSwift - Unknown owner - C:\Program Files\LinkSwift\updateLinkSwift.exe

O23 - Service: Util LinkSwift - Unknown owner - C:\Program Files\LinkSwift\bin\utilLinkSwift.exe

O23 - Service: WajamUpdater - Wajam - C:\Program Files\Wajam\Updater\WajamUpdater.exe

--

End of file - 8622 bytes

======Scheduled tasks folder======

C:\Windows\tasks\1ClickMovieDownloader V6-codedownloader.job

C:\Windows\tasks\1ClickMovieDownloader V6-enabler.job

C:\Windows\tasks\1ClickMovieDownloader V6-updater.job

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411591167}]

1ClickMovieDownloader V6 - C:\Program Files\1ClickMovieDownloader V6\1ClickMovieDownloader V6-bho.dll [2013-11-13 636928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}]

Shopping Assistant Plugin - C:\Program Files\PriceGong\2.6.8\PriceGongIE.dll [2012-10-21 450472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{323420b6-65e5-4657-8106-a27392d4d4aa}]

LinkSwift - C:\Program Files\LinkSwift\LinkSwiftbho.dll [2013-11-02 249632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{434D452D-5637-006A-76A7-7A786E7484D7}]

Ask Toolbar - C:\Program Files\AskPartnerNetwork\Toolbar\CME-V7\Passport.dll [2013-11-06 12240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}]

Wajam - C:\Program Files\Wajam\IE\priam_bho.dll [2013-10-17 291328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-09 194640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}]

Softonic Helper Object - C:\Program Files\Softonic\Softonic\1.8.28.2\bh\Softonic.dll [2013-11-12 273920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-09 194640]

{434D452D-5637-006A-76A7-7A786E7484D7} - Ask Toolbar - C:\Program Files\AskPartnerNetwork\Toolbar\CME-V7\Passport.dll [2013-11-06 12240]

{5018CFD2-804D-4C99-9F81-25EAEA2769DE} - Softonic Toolbar - C:\Program Files\Softonic\Softonic\1.8.28.2\SoftonicTlbr.dll [2013-11-12 290816]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"AVG_UI"=C:\Program Files\AVG\AVG2013\avgui.exe [2013-09-23 4411952]

"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2008-03-17 1848648]

"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2008-12-11 722256]

"ApnTBMon"=C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2013-11-06 1707472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2013-03-31 39408]

"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2009-03-28 3325952]

"PopUpStopperFreeEdition"=C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe [2003-10-29 524288]

"SSync"=C:\Users\Ricardo\AppData\Roaming\SSync\SSync.exe [2013-04-09 36864]

"Intermediate"=C:\Users\Ricardo\AppData\Roaming\Intermediate\Intermediate.exe [2013-04-09 36864]

"OMESupervisor"=C:\Users\Ricardo\AppData\Local\omesuperv.exe [2013-10-09 2219305]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.cvid"=iccvid.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"MSVideo8"=VfWWDM32.dll

"vidc.VP60"=C:\Windows\system32\vp6vfw.dll

"vidc.VP61"=C:\Windows\system32\vp6vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS3\Dreamweaver.exe","%1"

======List of files/folders created in the last 1 month======

2013-11-18 00:55:28 ----D---- C:\Program Files\trend micro

2013-11-18 00:55:27 ----D---- C:\rsit

2013-11-14 22:20:29 ----D---- C:\Program Files\Softonic

2013-11-14 22:20:17 ----D---- C:\Users\Ricardo\AppData\Roaming\Softonic

2013-11-14 22:19:55 ----D---- C:\Users\Ricardo\AppData\Roaming\Intermediate

2013-11-14 22:19:54 ----D---- C:\Users\Ricardo\AppData\Roaming\DataMgr

2013-11-14 22:19:51 ----D---- C:\Users\Ricardo\AppData\Roaming\SSync

2013-11-14 22:12:49 ----D---- C:\Users\Ricardo\AppData\Roaming\OfferMosquito

2013-11-14 22:12:49 ----D---- C:\Users\Ricardo\AppData\Roaming\Common

2013-11-14 22:12:01 ----D---- C:\Program Files\Panicware

2013-11-14 01:35:34 ----A---- C:\Windows\system32\jscript.dll

2013-11-14 01:35:33 ----A---- C:\Windows\system32\jscript9.dll

2013-11-14 01:35:31 ----A---- C:\Windows\system32\jsproxy.dll

2013-11-14 01:35:31 ----A---- C:\Windows\system32\iesetup.dll

2013-11-14 01:35:30 ----A---- C:\Windows\system32\ieui.dll

2013-11-14 01:35:27 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-14 01:35:27 ----A---- C:\Windows\system32\msfeeds.dll

2013-11-14 01:35:27 ----A---- C:\Windows\system32\iernonce.dll

2013-11-14 01:35:27 ----A---- C:\Windows\system32\ie4uinit.exe

2013-11-14 01:35:26 ----A---- C:\Windows\system32\urlmon.dll

2013-11-14 01:35:26 ----A---- C:\Windows\system32\iesysprep.dll

2013-11-14 01:35:24 ----A---- C:\Windows\system32\iertutil.dll

2013-11-14 01:35:22 ----A---- C:\Windows\system32\wininet.dll

2013-11-14 01:35:20 ----A---- C:\Windows\system32\ieframe.dll

2013-11-14 01:35:17 ----A---- C:\Windows\system32\mshtml.dll

2013-11-13 22:48:25 ----D---- C:\ProgramData\AskPartnerNetwork

2013-11-13 22:48:25 ----D---- C:\Program Files\AskPartnerNetwork

2013-11-13 22:48:09 ----D---- C:\ProgramData\APN

2013-11-13 22:39:36 ----D---- C:\Program Files\1ClickMovieDownloader V6

2013-11-13 22:38:26 ----D---- C:\Program Files\1clickmoviedownloader.com

2013-11-13 21:59:29 ----A---- C:\Windows\system32\gdi32.dll

2013-11-13 21:59:26 ----A---- C:\Windows\system32\IKEEXT.DLL

2013-11-13 21:59:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL

2013-11-13 21:59:24 ----A---- C:\Windows\system32\nshwfp.dll

2013-11-13 21:59:14 ----A---- C:\Windows\system32\crypt32.dll

2013-11-13 21:56:54 ----A---- C:\Windows\system32\authui.dll

2013-11-13 21:56:52 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll

2013-11-13 21:56:51 ----A---- C:\Windows\system32\credui.dll

2013-11-13 21:56:04 ----A---- C:\Windows\system32\schannel.dll

2013-11-13 21:56:01 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2013-11-13 21:56:01 ----A---- C:\Windows\system32\drivers\ksecdd.sys

2013-11-13 21:56:01 ----A---- C:\Windows\system32\drivers\cng.sys

2013-11-13 21:56:00 ----A---- C:\Windows\system32\lsasrv.dll

2013-11-13 21:55:56 ----A---- C:\Windows\system32\sspicli.dll

2013-11-13 21:55:56 ----A---- C:\Windows\system32\ncrypt.dll

2013-11-13 21:55:56 ----A---- C:\Windows\system32\lsass.exe

2013-11-13 21:55:54 ----A---- C:\Windows\system32\secur32.dll

2013-11-13 21:55:51 ----A---- C:\Windows\system32\sspisrv.dll

2013-11-12 19:32:57 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2013-11-12 19:32:56 ----A---- C:\Windows\system32\drivers\usbport.sys

2013-11-12 19:32:56 ----A---- C:\Windows\system32\drivers\usbhub.sys

2013-11-12 19:32:56 ----A---- C:\Windows\system32\drivers\usbehci.sys

2013-11-12 19:32:56 ----A---- C:\Windows\system32\drivers\usbd.sys

2013-11-12 19:32:55 ----A---- C:\Windows\system32\drivers\usbuhci.sys

2013-11-12 19:32:55 ----A---- C:\Windows\system32\drivers\usbohci.sys

2013-11-09 02:44:34 ----D---- C:\Users\Ricardo\AppData\Roaming\dvdcss

2013-11-09 02:42:44 ----D---- C:\Users\Ricardo\AppData\Roaming\Full

2013-11-09 02:41:14 ----D---- C:\Program Files\Full DVD Ripper 9 Free

2013-11-09 02:39:34 ----D---- C:\ProgramData\TEMP

2013-11-09 02:37:54 ----A---- C:\Windows\system32\pmls.dll

2013-11-09 02:37:47 ----D---- C:\Program Files\PremierOpinion

2013-11-09 02:34:58 ----D---- C:\Program Files\LinkSwift

2013-11-09 02:34:04 ----D---- C:\Program Files\Optimizer Pro

2013-11-09 02:21:10 ----D---- C:\Users\Ricardo\AppData\Roaming\MusicNet

2013-11-02 23:25:35 ----D---- C:\Users\Ricardo\AppData\Roaming\NCH Software

2013-11-02 23:25:35 ----D---- C:\ProgramData\NCH Software

2013-11-02 23:25:12 ----D---- C:\Program Files\NCH Software

======List of files/folders modified in the last 1 month======

2013-11-18 01:11:10 ----D---- C:\Windows\Temp

2013-11-18 00:55:28 ----RD---- C:\Program Files

2013-11-18 00:13:29 ----D---- C:\Windows\system32\config

2013-11-18 00:05:06 ----D---- C:\ProgramData\MFAData

2013-11-17 22:03:21 ----SHD---- C:\System Volume Information

2013-11-17 19:06:41 ----D---- C:\Windows\system32\NDF

2013-11-17 18:43:35 ----D---- C:\Windows\System32

2013-11-17 18:43:35 ----D---- C:\Windows\inf

2013-11-17 18:43:35 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-11-16 13:32:21 ----D---- C:\Windows\system32\Tasks

2013-11-15 16:33:08 ----D---- C:\Windows

2013-11-14 22:27:00 ----D---- C:\Windows\winsxs

2013-11-14 22:16:52 ----SHD---- C:\Windows\Installer

2013-11-14 19:18:44 ----D---- C:\Windows\Panther

2013-11-14 19:18:44 ----D---- C:\Windows\debug

2013-11-14 14:32:49 ----D---- C:\Windows\Prefetch

2013-11-14 14:29:03 ----D---- C:\Windows\system32\nl-NL

2013-11-14 14:29:01 ----D---- C:\Windows\system32\drivers

2013-11-14 14:28:58 ----D---- C:\Program Files\Internet Explorer

2013-11-14 01:41:54 ----D---- C:\ProgramData\Microsoft Help

2013-11-14 01:37:33 ----D---- C:\Windows\system32\catroot

2013-11-14 01:35:56 ----D---- C:\Windows\system32\catroot2

2013-11-14 01:35:14 ----D---- C:\Windows\system32\MRT

2013-11-14 01:32:29 ----A---- C:\Windows\system32\MRT.exe

2013-11-13 22:48:25 ----HD---- C:\ProgramData

2013-11-13 22:44:12 ----D---- C:\Windows\Tasks

2013-11-13 01:30:51 ----D---- C:\Windows\system32\wdi

2013-11-13 01:29:40 ----D---- C:\Windows\system32\DriverStore

2013-11-12 00:05:40 ----HD---- C:\Program Files\InstallShield Installation Information

2013-11-12 00:05:40 ----D---- C:\Program Files\Electronic Arts

2013-11-10 20:55:37 ----D---- C:\Windows\Minidump

2013-11-09 02:30:54 ----D---- C:\Windows\Resources

2013-11-08 00:33:42 ----SD---- C:\Users\Ricardo\AppData\Roaming\Microsoft

2013-11-04 23:30:41 ----D---- C:\Windows\system32\wfp

2013-11-04 23:30:41 ----D---- C:\Windows\system32\wbem

2013-11-04 23:30:41 ----D---- C:\Windows\system32\CodeIntegrity

2013-11-04 23:30:22 ----D---- C:\Windows\registration

2013-11-04 23:25:44 ----D---- C:\Windows\system32\LogFiles

2013-10-27 12:55:15 ----D---- C:\Windows\system32\FxsTmp

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2013-07-20 60216]

R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2013-07-20 246072]

R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2013-07-01 96568]

R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2013-09-05 39224]

R0 RapportKELL;RapportKELL; C:\Windows\System32\Drivers\RapportKELL.sys [2013-09-10 97008]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]

R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6x.sys [2012-09-04 50296]

R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2013-07-20 208184]

R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2013-09-10 22328]

R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2013-07-20 171320]

R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2013-03-21 182072]

R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]

R1 RapportCerberus_56758;RapportCerberus_56758; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_56758.sys [2013-08-24 330960]

R1 RapportEI;RapportEI; \??\C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [2013-09-10 148688]

R1 RapportPG;RapportPG; \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys [2013-09-10 222416]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]

R3 athr;Stuurprogramma Atheros Extensible draadloze LAN-apparaat; C:\Windows\system32\DRIVERS\athr.sys [2009-07-13 1096704]

R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]

R3 k57nd60x;Broadcom NetLink Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60x.sys [2009-07-13 229888]

R3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]

R3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]

R3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]

S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]

S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]

S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]

S3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athur.sys [2010-01-05 1500160]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]

S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]

S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]

S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]

S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]

S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]

S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]

S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]

S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]

S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]

S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]

S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]

R2 APNMCP;Ask-updateservice; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [2013-11-06 166352]

R2 avgfws;AVG Firewall; C:\Program Files\AVG\AVG2013\avgfws.exe [2013-09-04 1432080]

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]

R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [2013-07-23 283136]

R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]

R2 PremierOpinion;PremierOpinion; C:\Program Files\PremierOpinion\pmservice.exe [2013-08-17 186432]

R2 RapportMgmtService;Rapport Management Service; C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [2013-09-10 1435928]

R2 Util LinkSwift;Util LinkSwift; C:\Program Files\LinkSwift\bin\utilLinkSwift.exe [2013-11-10 66336]

R2 WajamUpdater;WajamUpdater; C:\Program Files\Wajam\Updater\WajamUpdater.exe [2013-03-28 109064]

R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-31 136176]

S2 Update LinkSwift;Update LinkSwift; C:\Program Files\LinkSwift\updateLinkSwift.exe [2013-11-10 66336]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09 257416]

S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]

S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-03-31 654848]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-31 136176]

S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-03-31 194032]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]

S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-31 1343400]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites

Er is heel wat werk aan de winkel om dit weer netjes te krijgen :dong:

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
firefoxlook; 
emptyfolderscheck;delete 
 {11111111-1111-1111-1111-110411591167};c
 C:\Program Files\1ClickMovieDownloader V6;fs
 {1631550F-191D-4826-B069-D9439253D926};c
 C:\Program Files\PriceGong;fs
 {434D452D-5637-006A-76A7-7A786E7484D7};c
 C:\Program Files\AskPartnerNetwork;fs
 {A7A6995D-6EE1-4FD1-A258-49395D5BF99C};c
 C:\Program Files\Wajam;fs
 {E87806B5-E908-45FD-AF5E-957D83E58E68};c
 C:\Program Files\Softonic;fs
 {5018CFD2-804D-4C99-9F81-25EAEA2769DE};c
 ApnTBMon;s
 WajamUpdater;s
 C:\Windows\tasks\1ClickMovieDownloader V6-codedownloader.job;f
 C:\Windows\tasks\1ClickMovieDownloader V6-enabler.job;f
 C:\Windows\tasks\1ClickMovieDownloader V6-updater.job;f
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411591167}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{434D452D-5637-006A-76A7-7A786E7484D7}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}];r
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run];r
 "ApnTBMon"=-;r
 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r
 "AppInit_DLLs"=-;r
 C:\Users\Ricardo\AppData\Roaming\Softonic;fs
 C:\Users\Ricardo\AppData\Roaming\Intermediate;f
 C:\Users\Ricardo\AppData\Roaming\DataMgr;fs
 C:\Users\Ricardo\AppData\Roaming\SSync;fs
 C:\Users\Ricardo\AppData\Roaming\OfferMosquito;fs
 Intermediate;s
 C:\ProgramData\AskPartnerNetwork;fs
 C:\ProgramData\APN;fs
 C:\Program Files\1ClickMovieDownloader V6;fs
 C:\Program Files\1clickmoviedownloader.com;fs
 C:\Program Files\Optimizer Pro;fs
 startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • HijackThis Log
  • Reset Chrome
  • IE Defaults
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Ik probeer al een paar dagen het laatste gedeelte uit te voeren maar het blijft hangen op run script. Er komt geen logje ik heb hem een nacht laten staan.

ik zal eens proberen alle beveiligingen uit te schakelen.

Klik op de knop "Options" en vink nu de onderstaande opties aan.HijackThis Log

Reset Chrome

IE Defaults

Auto Clean

Klik nu op de knop "Run script".

Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).

Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.

Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Hoi

Het zou kunnen dat het uitschakelen van alle beveiligingssoftware helpt.

Maar een scan met zoek.exe zou nooit langer dan een uur mogen duren.

Tip: als hij weer niet doorloopt probeer het dan opnieuw maar laat het vinkje bij "Auto Clean" achterwege.

Het komt namelijk wel eens vaker voor dat zoek.exe daarop niet doorlopen wil ;-)

Link naar reactie
Delen op andere sites

Ik hoop dat dit goed is.

Het ging wel sneller dan voorheen.

Zoek.exe Version 4.0.0.5 Updated 14-November-2013

Tool run by Ricardo on do 21-11-2013 at 0:03:15,22.

Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Ricardo\Desktop\zoek.exe [script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2013-11-18-230907.log 34887 bytes

C:\zoek-results2013-11-18-235608.log 25660 bytes

C:\zoek-results2013-11-20-003207.log 24712 bytes

==== Empty Folders Check ======================

C:\ProgramData\WinZipEC deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411591167}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{434D452D-5637-006A-76A7-7A786E7484D7}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"ApnTBMon"=-

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=-

==== Deleting Files \ Folders ======================

C:\Program Files\1ClickMovieDownloader V6 not found

C:\Program Files\PriceGong not found

C:\Program Files\AskPartnerNetwork not found

C:\Program Files\Wajam not found

C:\Program Files\Softonic not found

C:\Users\Ricardo\AppData\Roaming\Softonic not found

C:\Users\Ricardo\AppData\Roaming\DataMgr not found

C:\Users\Ricardo\AppData\Roaming\SSync not found

C:\Users\Ricardo\AppData\Roaming\OfferMosquito not found

C:\ProgramData\AskPartnerNetwork not found

C:\ProgramData\APN not found

C:\Program Files\1ClickMovieDownloader V6 not found

C:\Program Files\1clickmoviedownloader.com not found

C:\Program Files\Optimizer Pro not found

"C:\Windows\tasks\1ClickMovieDownloader V6-codedownloader.job" not found

"C:\Windows\tasks\1ClickMovieDownloader V6-enabler.job" not found

"C:\Windows\tasks\1ClickMovieDownloader V6-updater.job" not found

"C:\Users\Ricardo\AppData\Roaming\Intermediate" not found

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Ricardo\AppData\Local\Temp ====

====== C:\Windows\system32 =====

2013-11-14 00:35:35 FED1803F2F9C4BDBA8267EA2DE47CFE2 2706432 ----a-w- C:\Windows\System32\mshtml.tlb

2013-11-14 00:35:34 6AD683FF326836EB6AE63B1F144A4F9D 690688 ----a-w- C:\Windows\System32\jscript.dll

2013-11-14 00:35:33 D42525513055C0A65FD4BEFAFACEB134 2877952 ----a-w- C:\Windows\System32\jscript9.dll

2013-11-14 00:35:31 E841206E319069920C394A5E3842568F 61440 ----a-w- C:\Windows\System32\iesetup.dll

2013-11-14 00:35:31 98B05ADD60BAA432E708BAFEBE5B1D70 39424 ----a-w- C:\Windows\System32\jsproxy.dll

2013-11-14 00:35:30 FEB2F07A980A9844AD1B5E886C9B5338 391168 ----a-w- C:\Windows\System32\ieui.dll

2013-11-14 00:35:27 AD6639EF2BD655C7E630B6BCF7203463 493056 ----a-w- C:\Windows\System32\msfeeds.dll

2013-11-14 00:35:27 8317DD8D4095FE4076E9F6EC3A747940 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2013-11-14 00:35:27 70F131E94E1B4496469A563C85279192 33280 ----a-w- C:\Windows\System32\iernonce.dll

2013-11-14 00:35:27 22A7CC05BE272D9500B312489E6950EB 42496 ----a-w- C:\Windows\System32\ie4uinit.exe

2013-11-14 00:35:26 A5897063A4B6796EFB7B34CEC5BC739F 1138176 ----a-w- C:\Windows\System32\urlmon.dll

2013-11-14 00:35:26 8D98D99DC6D4033591354156CEB25153 109056 ----a-w- C:\Windows\System32\iesysprep.dll

2013-11-14 00:35:24 DA5374911037841F81072A4DCBB02D93 2049024 ----a-w- C:\Windows\System32\iertutil.dll

2013-11-14 00:35:22 5FD4335DCD343D0FEA9FA6B18ED408D9 1767936 ----a-w- C:\Windows\System32\wininet.dll

2013-11-14 00:35:20 1191434BB424F18C2609AB5C955DD14E 13761024 ----a-w- C:\Windows\System32\ieframe.dll

2013-11-14 00:35:17 02A04841906A8892AD6CC7BDBCB5F61D 14355968 ----a-w- C:\Windows\System32\mshtml.dll

2013-11-13 20:59:29 5A775CAE7CCCAC581C05B8D2C92C0DF1 305152 ----a-w- C:\Windows\System32\gdi32.dll

2013-11-13 20:59:26 B9C54120F46392100478F58F374E5709 679424 ----a-w- C:\Windows\System32\IKEEXT.DLL

2013-11-13 20:59:25 F0D0E883EBBDC7615DC9EDEA0FFB2817 216576 ----a-w- C:\Windows\System32\FWPUCLNT.DLL

2013-11-13 20:59:24 CE2A48CD0D2B39FB77FA4797C6434E71 656896 ----a-w- C:\Windows\System32\nshwfp.dll

2013-11-13 20:59:14 CC09E0C9A2D89C6E71D093DC8BD121B7 1168384 ----a-w- C:\Windows\System32\crypt32.dll

2013-11-13 20:56:54 EE7CB55F77465CDAC4C80F587FF7C278 1796096 ----a-w- C:\Windows\System32\authui.dll

2013-11-13 20:56:52 4BCC63ED1C3D15B2635A8AE2B854B3EB 152576 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll

2013-11-13 20:56:51 E9BB0CD09DA17C71FD1B9954D75AEEF7 168960 ----a-w- C:\Windows\System32\credui.dll

2013-11-13 20:56:04 AA6F6457116B559B76BC6A012CB4C293 247808 ----a-w- C:\Windows\System32\schannel.dll

2013-11-13 20:56:00 EF6950D7B24AAF4E477065F5455DD4F8 1038848 ----a-w- C:\Windows\System32\lsasrv.dll

2013-11-13 20:55:56 BD6B9BC84D004C6BEE89CF7BDB95E1FC 99840 ----a-w- C:\Windows\System32\sspicli.dll

2013-11-13 20:55:56 AD7FB087A238883D1618F29F7BBBD584 220160 ----a-w- C:\Windows\System32\ncrypt.dll

2013-11-13 20:55:56 803B370865D907EA21DC0C2B6A8936B5 22016 ----a-w- C:\Windows\System32\lsass.exe

2013-11-13 20:55:54 372948BB5E41CE42341C4398DE572E56 22016 ----a-w- C:\Windows\System32\secur32.dll

2013-11-13 20:55:51 D89077E2E1C88A29C57F21FAD28DAC45 15872 ----a-w- C:\Windows\System32\sspisrv.dll

2013-11-09 01:37:54 FAA1E143AA44F2BD3C852E7381B0F7F0 593984 ----a-w- C:\Windows\System32\pmls.dll

====== C:\Windows\system32\drivers =====

2013-11-13 20:56:01 F286830298323272260332D6ABC905C1 67520 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2013-11-13 20:56:01 D7C760D57B1656DD748B9E4AB6CB5A51 136640 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2013-11-13 20:56:01 85449EEBE8F8EBD6481EFBF0F352B4EB 369848 ----a-w- C:\Windows\System32\drivers\cng.sys

2013-11-12 18:32:57 71D97F1A3CC47A56728F7A400A3F8295 76288 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2013-11-12 18:32:56 FDA6F2BB7FA034D95863ED8788B4E416 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys

2013-11-12 18:32:56 C4FB8E7ADEA9B5CEEA885A1B504B7E40 43008 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2013-11-12 18:32:56 86AA95ACB611001E26CD2C0145F2225A 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2013-11-12 18:32:56 6FB17D7A2E76B838886E5E8C60239DAE 6016 ----a-w- C:\Windows\System32\drivers\usbd.sys

2013-11-12 18:32:55 DCDF9855145A14DFCA0AB32308871961 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2013-11-12 18:32:55 8E51D04175BAA14C4F79AA5F6D248770 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

====== C:\Windows\Tasks ======

2013-11-16 12:32:21 8CD6D7091FE7AE5768892E100B5BC506 3148 ----a-w- C:\Windows\system32\Tasks\{EE9FCCFA-A728-4887-A32D-59BC2871A2FB}

2013-11-02 22:25:35 -------- d-----w- C:\Windows\system32\Tasks\NCH Software

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-11-18 19:47:41 -------- d-----w- C:\Program Files\WinZip

2013-11-17 23:55:28 -------- d-----w- C:\Program Files\trend micro

2013-11-14 21:12:01 -------- d-----w- C:\Program Files\Panicware

2013-11-09 01:41:14 -------- d-----w- C:\Program Files\Full DVD Ripper 9 Free

2013-11-02 22:25:12 -------- d-----w- C:\Program Files\NCH Software

======= C: =====

====== C:\Users\Ricardo\AppData\Roaming ======

2013-11-20 00:32:08 -------- d-----w- C:\Users\Ricardo\AppData\Local\Temp

2013-11-18 19:48:35 -------- d-----w- C:\Users\Ricardo\AppData\Local\WinZip

2013-11-18 19:39:08 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\0F1F1C2Y1H1P1C0I0T

2013-11-14 21:12:05 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Panicware

2013-11-13 22:22:36 -------- d-----w- C:\Users\Ricardo\AppData\Locallow\1ClickMovieDownloader V6

2013-11-13 10:46:46 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Ricardo\AppData\Roaming\MixPad.dmp

2013-11-13 10:36:25 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Ricardo\AppData\Roaming\WavePad.dmp

2013-11-09 01:44:34 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\dvdcss

2013-11-09 01:42:44 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\Full

2013-11-09 01:33:11 -------- d-----w- C:\Users\Ricardo\AppData\Local\TNT2

2013-11-09 01:21:10 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\MusicNet

2013-11-02 22:25:46 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite

2013-11-02 22:25:45 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Audio Related Programs

2013-11-02 22:25:35 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\NCH Software

====== C:\Users\Ricardo ======

2013-11-18 19:48:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip

2013-11-18 19:47:46 -------- d-----w- C:\ProgramData\WinZip

2013-11-18 19:38:40 14BFF9836A2D9717BC2E7DC90FCCA658 424360 ----a-w- C:\Users\Ricardo\Downloads\winzip [1].exe

2013-11-18 19:37:04 79FAF5D2EE076CC94C3B45764CDE9F71 644992 ----a-w- C:\Users\Ricardo\Desktop\winzip.exe

2013-11-17 23:54:45 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Ricardo\Desktop\RSIT.exe

2013-11-14 21:12:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panicware

2013-11-14 21:11:21 811F384B5AFFE7839E4F6C49C7F49685 488032 ----a-w- C:\Users\Ricardo\Desktop\PopUpStopperFree.exe

2013-11-13 21:26:16 EFC23FFBBEB54CC851DE91029ADDCF5C 305664 ----a-w- C:\Users\Ricardo\Downloads\WavePad.exe

2013-11-13 20:56:35 7F7D7F158D282B6594BD64536A42C196 169272 ----a-w- C:\Users\Ricardo\Downloads\Winzip.exe

2013-11-09 01:42:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Full DVD Ripper 9 Free

2013-11-09 01:39:34 -------- d-----w- C:\ProgramData\TEMP

2013-11-09 01:38:57 B45BD6468744046A0978F1C352892165 27355034 ----a-w- C:\Users\Ricardo\Downloads\full_dvd_ripper_9_free.exe

2013-11-09 01:30:39 1F2A451109C8991AA22346A17C59A0C4 1117856 ----a-w- C:\Users\Ricardo\Downloads\fulldvdripper-setup.exe

2013-11-02 22:25:35 -------- d-----w- C:\ProgramData\NCH Software

2013-11-02 22:25:17 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite

2013-11-02 22:25:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audio Related Programs

====== C: exe-files ==

2013-11-18 19:39:08 8C7FB9078A63B7E5E899E7A2DBB0DB53 1114624 ----a-w- C:\Users\Ricardo\AppData\Roaming\0F1F1C2Y1H1P1C0I0T\WinZip Packages\uninstaller.exe

2013-11-18 19:38:40 14BFF9836A2D9717BC2E7DC90FCCA658 424360 ----a-w- C:\Users\Ricardo\Downloads\winzip [1].exe

2013-11-18 19:37:04 79FAF5D2EE076CC94C3B45764CDE9F71 644992 ----a-w- C:\Users\Ricardo\Desktop\winzip.exe

2013-11-17 23:55:29 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Ricardo.exe

2013-11-17 23:54:45 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Ricardo\Desktop\RSIT.exe

2013-11-15 16:01:06 F06EE764FF00B7A049862C8D50D4215D 730976 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.57\31.0.1650.57_31.0.1650.48_chrome_updater.exe

2013-11-14 21:12:03 C71361A8E216FC5B2F7187B26B57D0F4 40960 ----a-w- C:\Program Files\Panicware\Pop-Up Stopper Free Edition\XA\xareg32.exe

2013-11-14 21:12:03 A8CFB8635238E76574C10A86EB376FCA 77824 ----a-w- C:\Program Files\Panicware\Pop-Up Stopper Free Edition\XAUpdate.exe

2013-11-14 21:12:02 267BF4F5C55803E299AD910CBB70A0D2 524288 ------w- C:\Program Files\Panicware\Pop-Up Stopper Free Edition\PSFree.exe

2013-11-14 21:12:01 443E13846997C537E8F5ED61130AB705 149504 ----a-w- C:\Program Files\Panicware\Pop-Up Stopper Free Edition\UNWISE.EXE

2013-11-14 21:11:21 811F384B5AFFE7839E4F6C49C7F49685 488032 ----a-w- C:\Users\Ricardo\Desktop\PopUpStopperFree.exe

2013-11-14 00:35:27 8317DD8D4095FE4076E9F6EC3A747940 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2013-11-14 00:35:27 22A7CC05BE272D9500B312489E6950EB 42496 ----a-w- C:\Windows\System32\ie4uinit.exe

2013-11-14 00:35:22 D7D5768B8A697FCBAEE2CFE137070F02 770736 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

=== C: other files ==

2013-11-20 00:34:12 E1D8D6F5A91431D81778F303E7AACBF6 136968 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\21fa8e3a-478b-47d3-b843-d1565059dce4.zip

2013-11-18 23:58:13 546103BBEB14AB471DD743A8248A539F 2240767 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\86494924-46b9-47d3-bb12-d1565059dce4.zip

2013-11-18 22:39:23 8FAA28F105669C3E38162ECACD3EA765 2198393 ----a-w- C:\Users\Public\Desktop\sample_18-11-2013_2339.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1705988117-2768847543-2802782899-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"EA Core"="C:\Program Files\Electronic Arts\EADM\Core.exe -silent"

"PopUpStopperFreeEdition"="C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"

"SSync"="C:\Users\Ricardo\AppData\Roaming\SSync\SSync.exe"

"Intermediate"="C:\Users\Ricardo\AppData\Roaming\Intermediate\Intermediate.exe"

"OMESupervisor"="C:\Users\Ricardo\AppData\Local\omesuperv.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY"

"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"CanonMyPrinter"="C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon"

"CanonSolutionMenu"="C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"EA Core"="C:\Program Files\Electronic Arts\EADM\Core.exe -silent"

"PopUpStopperFreeEdition"="C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"

"SSync"="C:\Users\Ricardo\AppData\Roaming\SSync\SSync.exe"

"Intermediate"="C:\Users\Ricardo\AppData\Roaming\Intermediate\Intermediate.exe"

"OMESupervisor"="C:\Users\Ricardo\AppData\Local\omesuperv.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-10-2013 19:39]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [31-03-2013 14:55]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [31-03-2013 14:55]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]

"C:\Windows\system32\tasks\NCH Software\WavePadSevenDays" [C:\Program Files\NCH Software\WavePad\WavePad.exe]

"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Chrome Look ======================

YouTube - Ricardo - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - Ricardo - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Search.us Search - Ricardo - Default\Extensions\khjeliekbbjfnngjnjpaoianfbfebmme

Google Wallet - Ricardo - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - Ricardo - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Google"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search"

==== Reset Google Chrome ======================

Nothing found to reset

==== HijackThis Entries ======================

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon

O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent

O4 - HKCU\..\Run: [PopUpStopperFreeEdition] C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe

O4 - HKCU\..\Run: [sSync] "C:\Users\Ricardo\AppData\Roaming\SSync\SSync.exe"

O4 - HKCU\..\Run: [intermediate] "C:\Users\Ricardo\AppData\Roaming\Intermediate\Intermediate.exe"

O4 - HKCU\..\Run: [OMESupervisor] C:\Users\Ricardo\AppData\Local\omesuperv.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe

O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgfws.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: PremierOpinion - Unknown owner - C:\Program Files\PremierOpinion\pmservice.exe (file missing)

O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe

==== After Reboot ======================

==== EOF on do 21-11-2013 at 0:17:18,66 ======================

Link naar reactie
Delen op andere sites

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  [font=&quot]C:\Users\Ricardo\AppData\Roaming\0F1F1C2Y1H1P1C0I0T;fs[/font]
 [font=&quot]C:\Users\Ricardo\AppData\Locallow\1ClickMovieDownloader V6;fs[/font]
 [font=&quot]C:\Users\Ricardo\Downloads\winzip [1].exe;f[/font]
 [font=&quot]C:\Users\Public\Desktop\sample_18-11-2013_2339.zip;f[/font]
 [font=&quot]PremierOpinion;s[/font]
 [font=&quot]C:\Program Files\PremierOpinion;fs[/font]
 [font=&quot]Khjeliekbbjfnngjnjpaoianfbfebmme;chr[/font]
 [font=&quot]autoclean;[/font]

  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Zoek.exe Version 4.0.0.5 Updated 14-November-2013

Tool run by Ricardo on do 21-11-2013 at 18:05:51,22.

Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Ricardo\Desktop\zoek.exe [script inserted]

==== Older Logs ======================

C:\zoek-results2013-11-18-230907.log 34887 bytes

C:\zoek-results2013-11-18-235608.log 25660 bytes

C:\zoek-results2013-11-20-003207.log 24712 bytes

C:\zoek-results2013-11-20-231718.log 23814 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PremierOpinion deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\PremierOpinion deleted successfully

==== Deleting Files \ Folders ======================

C:\Program Files\PremierOpinion not found

C:\Users\Ricardo\AppData\Roaming\0F1F1C2Y1H1P1C0I0T deleted

C:\Users\Ricardo\AppData\Locallow\1ClickMovieDownloader V6 deleted

"C:\Users\Public\Desktop\sample_18-11-2013_2339.zip" deleted

==== Chrome Look ======================

YouTube - Ricardo - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - Ricardo - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Search.us Search - Ricardo - Default\Extensions\khjeliekbbjfnngjnjpaoianfbfebmme

Google Wallet - Ricardo - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - Ricardo - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\Ricardo\AppData\Local\Google\Chrome\User Data\Default\Extensions\khjeliekbbjfnngjnjpaoianfbfebmme deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search"

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Ricardo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Ricardo\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Ricardo\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on do 21-11-2013 at 18:27:23,22 ======================

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.