Ga naar inhoud

nzien log


Aanbevolen berichten

  • Reacties 33
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

Geplaatste afbeeldingen

Help nu kan ik niet meer op internet via IE ik werk nu via google Chrome. ik denk d want het was goed.at er weer rommel tussen zit. zouden jullie mijn log nog eens na willen kijken want het was goed.

Logfile of Trend Micro HijackThis v2.0.5

Scan saved at 17:15:39, on 4-12-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\AVG\AVG2013\avgui.exe

C:\Program Files\Mobogenie\DaemonProcess.exe

C:\Program Files\Panicware\Pop-Up Stopper Free Edition\PSFree.exe

C:\Program Files\Optimizer Pro\OptProSmartScan.exe

C:\Program Files\Optimizer Pro\OptProReminder.exe

C:\PROGRA~1\SearchProtect\SearchProtect\bin\cltmng.exe

C:\PROGRA~1\SearchProtect\UI\bin\cltmngui.exe

C:\Program Files\WinZip\zipsendservice.exe

C:\Windows\explorer.exe

C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE

F:\PC\HijackThis.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Mobogenie\mgusb.exe

C:\Windows\system32\conhost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Zoeken

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: SecretSauce - {0ffd0ef2-dbe9-483a-80c4-d2c331da1ce4} - C:\Program Files\SecretSauce\SecretSaucebho.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon

O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon

O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe

O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent

O4 - HKCU\..\Run: [PopUpStopperFreeEdition] C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe

O4 - HKCU\..\Run: [Optimizer Pro] C:\Program Files\Optimizer Pro\OptProLauncher.exe

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - AppInit_DLLs: C:\PROGRA~1\SearchProtect\SearchProtect\bin\SPVC32Loader.dll c:\progra~1\optimi~1\optpro~1.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe

O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgfws.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Optimizer Pro Crash Monitor (ca82e1a5) - Unknown owner - c:\progra~1\optimi~1\OptProCrash.exe

O23 - Service: Search Protect by Conduit Service (CltMngSvc) - Conduit - C:\PROGRA~1\SearchProtect\Main\bin\CltMngSvc.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe

O23 - Service: Update SecretSauce - Unknown owner - C:\Program Files\SecretSauce\updateSecretSauce.exe

O23 - Service: Util SecretSauce - Unknown owner - C:\Program Files\SecretSauce\bin\utilSecretSauce.exe

--

End of file - 7062 bytes

Link naar reactie
Delen op andere sites

Start Hijackthis op. Selecteer “Scan”. Selecteer alleen de items die hieronder zijn genoemd:

O2 - BHO: SecretSauce - {0ffd0ef2-dbe9-483a-80c4-d2c331da1ce4} - C:\Program Files\SecretSauce\SecretSaucebho.dll

O4 - HKCU\..\Run: [Optimizer Pro] C:\Program Files\Optimizer Pro\OptProLauncher.exe

O20 - AppInit_DLLs: C:\PROGRA~1\SearchProtect\SearchProtect\bin\SPVC32Loader.dll c:\progra~1\optimi~1\optpro~1.dll

Klik op 'Fix checked' om de items te verwijderen.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\Program Files\Trend Micro\HiJackThis of C:\Program Files (x86)\Trend Micro\HiJackThis.

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Link naar reactie
Delen op andere sites

Logfile of random's system information tool 1.08 (written by random/random)

Run by Ricardo at 2013-12-06 02:23:12

Microsoft Windows 7 Professional Service Pack 1

System drive C: has 169 GB (57%) free of 295 GB

Total RAM: 2942 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 2:23:23, on 6-12-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Trusteer\Rapport\bin\RapportService.exe

C:\Windows\system32\taskhost.exe

C:\Program Files\AVG\AVG2013\avgui.exe

C:\Program Files\Mobogenie\DaemonProcess.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Panicware\Pop-Up Stopper Free Edition\PSFree.exe

C:\Program Files\Optimizer Pro\OptProSmartScan.exe

C:\Program Files\Optimizer Pro\OptProReminder.exe

C:\PROGRA~1\SearchProtect\SearchProtect\bin\cltmng.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files\Windows Media Player\wmprph.exe

C:\Program Files\AVG Secure Search\vprot.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Users\Ricardo\Downloads\RSIT-1.06.exe

C:\Program Files\trend micro\Ricardo.exe

C:\Program Files\Mobogenie\mgusb.exe

C:\Windows\system32\conhost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Zoeken

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL

O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon

O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon

O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe

O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"

O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent

O4 - HKCU\..\Run: [PopUpStopperFreeEdition] C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.1.2\ViProtocol.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe

O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgfws.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Optimizer Pro Crash Monitor (ca82e1a5) - Unknown owner - c:\progra~1\optimi~1\OptProCrash.exe

O23 - Service: Search Protect by Conduit Service (CltMngSvc) - Conduit - C:\PROGRA~1\SearchProtect\Main\bin\CltMngSvc.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe

O23 - Service: Update SecretSauce - Unknown owner - C:\Program Files\SecretSauce\updateSecretSauce.exe

O23 - Service: Util SecretSauce - Unknown owner - C:\Program Files\SecretSauce\bin\utilSecretSauce.exe

O23 - Service: vToolbarUpdater17.1.2 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe

--

End of file - 8123 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\AmiUpdXp.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]

AVG Security Toolbar - C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll [2013-12-06 3353624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-09 194640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-09 194640]

{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll [2013-12-06 3353624]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"AVG_UI"=C:\Program Files\AVG\AVG2013\avgui.exe [2013-09-23 4411952]

"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2008-03-17 1848648]

"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2008-12-11 722256]

"mobilegeni daemon"=C:\Program Files\Mobogenie\DaemonProcess.exe [2013-11-30 747712]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-06-18 1537320]

"vProt"=C:\Program Files\AVG Secure Search\vprot.exe [2013-12-06 2420248]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2009-03-28 3325952]

"PopUpStopperFreeEdition"=C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe [2003-10-29 524288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS3\Dreamweaver.exe","%1"

======List of files/folders created in the last 1 months======

2013-12-06 02:03:11 ----A---- C:\Windows\system32\drivers\avgtpx86.sys

2013-12-06 02:02:55 ----D---- C:\ProgramData\AVG Secure Search

2013-12-06 02:02:49 ----D---- C:\Program Files\Common Files\AVG Secure Search

2013-12-06 02:02:39 ----D---- C:\Program Files\AVG Secure Search

2013-12-06 01:46:42 ----D---- C:\Program Files\Synaptics

2013-12-03 17:26:00 ----D---- C:\Windows\system32\SearchProtect

2013-11-30 00:28:01 ----D---- C:\Users\Ricardo\AppData\Roaming\Optimizer Pro

2013-11-30 00:27:17 ----D---- C:\Program Files\Optimizer Pro

2013-11-30 00:25:05 ----D---- C:\Program Files\Mobogenie

2013-11-30 00:21:20 ----D---- C:\Program Files\SearchProtect

2013-11-30 00:20:22 ----D---- C:\Program Files\SecretSauce

2013-11-29 20:24:12 ----D---- C:\Users\Ricardo\AppData\Roaming\DriverTurbo

2013-11-28 23:24:24 ----D---- C:\Windows\system32\appmgmt

2013-11-28 23:23:15 ----D---- C:\Program Files\Acer

2013-11-27 06:50:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-27 06:50:43 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-27 06:50:43 ----A---- C:\Windows\system32\jsIntl.dll

2013-11-27 06:50:43 ----A---- C:\Windows\system32\elshyph.dll

2013-11-27 06:50:42 ----A---- C:\Windows\system32\wininet.dll

2013-11-27 06:50:42 ----A---- C:\Windows\system32\msls31.dll

2013-11-27 06:50:42 ----A---- C:\Windows\system32\jsproxy.dll

2013-11-27 06:50:42 ----A---- C:\Windows\system32\iertutil.dll

2013-11-27 06:50:41 ----A---- C:\Windows\system32\urlmon.dll

2013-11-27 06:50:41 ----A---- C:\Windows\system32\msrating.dll

2013-11-27 06:50:40 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-27 06:50:39 ----A---- C:\Windows\system32\dxtrans.dll

2013-11-27 06:50:39 ----A---- C:\Windows\system32\dxtmsft.dll

2013-11-27 06:50:38 ----A---- C:\Windows\system32\ieapfltr.dll

2013-11-27 06:50:38 ----A---- C:\Windows\system32\icardie.dll

2013-11-27 06:50:37 ----A---- C:\Windows\system32\ie4uinit.exe

2013-11-27 06:50:36 ----A---- C:\Windows\system32\iesetup.dll

2013-11-27 06:50:36 ----A---- C:\Windows\system32\iernonce.dll

2013-11-27 06:50:35 ----A---- C:\Windows\system32\url.dll

2013-11-27 06:50:34 ----A---- C:\Windows\system32\webcheck.dll

2013-11-27 06:50:34 ----A---- C:\Windows\system32\mshtmlmedia.dll

2013-11-27 06:50:34 ----A---- C:\Windows\system32\iedkcs32.dll

2013-11-27 06:50:33 ----A---- C:\Windows\system32\licmgr10.dll

2013-11-27 06:50:33 ----A---- C:\Windows\system32\inseng.dll

2013-11-27 06:50:32 ----A---- C:\Windows\system32\wextract.exe

2013-11-27 06:50:32 ----A---- C:\Windows\system32\mshtmled.dll

2013-11-27 06:50:32 ----A---- C:\Windows\system32\iexpress.exe

2013-11-27 06:50:31 ----A---- C:\Windows\system32\vbscript.dll

2013-11-27 06:50:31 ----A---- C:\Windows\system32\mshtml.dll

2013-11-27 06:50:31 ----A---- C:\Windows\system32\msfeeds.dll

2013-11-27 06:50:30 ----A---- C:\Windows\system32\ieUnatt.exe

2013-11-27 06:50:28 ----A---- C:\Windows\system32\occache.dll

2013-11-27 06:50:27 ----A---- C:\Windows\system32\pngfilt.dll

2013-11-27 06:50:26 ----A---- C:\Windows\system32\mshta.exe

2013-11-27 06:50:26 ----A---- C:\Windows\system32\ieetwproxystub.dll

2013-11-27 06:50:26 ----A---- C:\Windows\system32\ieetwcollectorres.dll

2013-11-27 06:50:26 ----A---- C:\Windows\system32\ieetwcollector.exe

2013-11-27 06:50:25 ----A---- C:\Windows\system32\MshtmlDac.dll

2013-11-27 06:50:25 ----A---- C:\Windows\system32\jscript.dll

2013-11-27 06:50:23 ----A---- C:\Windows\system32\imgutil.dll

2013-11-27 06:50:23 ----A---- C:\Windows\system32\iepeers.dll

2013-11-27 06:50:22 ----A---- C:\Windows\system32\msfeedsbs.dll

2013-11-27 06:50:21 ----A---- C:\Windows\system32\msfeedssync.exe

2013-11-27 06:50:20 ----A---- C:\Windows\system32\IEAdvpack.dll

2013-11-27 06:50:19 ----A---- C:\Windows\system32\SetIEInstalledDate.exe

2013-11-27 06:50:18 ----A---- C:\Windows\system32\mshtmler.dll

2013-11-27 06:50:18 ----A---- C:\Windows\system32\jscript9diag.dll

2013-11-27 06:50:18 ----A---- C:\Windows\system32\jscript9.dll

2013-11-27 06:50:18 ----A---- C:\Windows\system32\ieui.dll

2013-11-27 06:50:18 ----A---- C:\Windows\system32\iesysprep.dll

2013-11-27 06:50:17 ----A---- C:\Windows\system32\ieframe.dll

2013-11-26 23:17:51 ----D---- C:\Program Files\Speccy

2013-11-26 00:25:41 ----D---- C:\Program Files\DVDVideoSoft

2013-11-23 19:59:00 ----D---- C:\Users\Ricardo\AppData\Roaming\NCH Software

2013-11-23 19:59:00 ----D---- C:\ProgramData\NCH Software

2013-11-23 19:58:33 ----D---- C:\Program Files\NCH Software

2013-11-23 19:41:47 ----D---- C:\Users\Ricardo\AppData\Roaming\AVG

2013-11-23 19:40:11 ----D---- C:\ProgramData\AVG

2013-11-23 19:40:05 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}

2013-11-23 19:39:40 ----D---- C:\Users\Ricardo\AppData\Roaming\OpenCandy

2013-11-23 19:39:40 ----D---- C:\Program Files\Common Files\DVDVideoSoft

2013-11-22 18:51:59 ----D---- C:\AdwCleaner

2013-11-21 19:01:39 ----D---- C:\ProgramData\WinZipEC

2013-11-21 18:27:31 ----SHD---- C:\$RECYCLE.BIN

2013-11-21 18:23:41 ----D---- C:\Windows\Temp

2013-11-19 00:55:17 ----D---- C:\Program Files\HiJackThis

2013-11-18 23:10:41 ----D---- C:\zoek_backup

2013-11-18 20:47:46 ----D---- C:\ProgramData\WinZip

2013-11-18 20:47:41 ----D---- C:\Program Files\WinZip

2013-11-18 00:55:28 ----D---- C:\Program Files\trend micro

2013-11-18 00:55:27 ----D---- C:\rsit

2013-11-14 22:12:01 ----D---- C:\Program Files\Panicware

2013-11-13 21:59:29 ----A---- C:\Windows\system32\gdi32.dll

2013-11-13 21:59:26 ----A---- C:\Windows\system32\IKEEXT.DLL

2013-11-13 21:59:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL

2013-11-13 21:59:24 ----A---- C:\Windows\system32\nshwfp.dll

2013-11-13 21:59:14 ----A---- C:\Windows\system32\crypt32.dll

2013-11-13 21:56:54 ----A---- C:\Windows\system32\authui.dll

2013-11-13 21:56:52 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll

2013-11-13 21:56:51 ----A---- C:\Windows\system32\credui.dll

2013-11-13 21:56:04 ----A---- C:\Windows\system32\schannel.dll

2013-11-13 21:56:01 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2013-11-13 21:56:01 ----A---- C:\Windows\system32\drivers\ksecdd.sys

2013-11-13 21:56:01 ----A---- C:\Windows\system32\drivers\cng.sys

2013-11-13 21:56:00 ----A---- C:\Windows\system32\lsasrv.dll

2013-11-13 21:55:56 ----A---- C:\Windows\system32\sspicli.dll

2013-11-13 21:55:56 ----A---- C:\Windows\system32\ncrypt.dll

2013-11-13 21:55:56 ----A---- C:\Windows\system32\lsass.exe

2013-11-13 21:55:54 ----A---- C:\Windows\system32\secur32.dll

2013-11-13 21:55:51 ----A---- C:\Windows\system32\sspisrv.dll

2013-11-12 19:32:57 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2013-11-12 19:32:56 ----A---- C:\Windows\system32\drivers\usbport.sys

2013-11-12 19:32:56 ----A---- C:\Windows\system32\drivers\usbhub.sys

2013-11-12 19:32:56 ----A---- C:\Windows\system32\drivers\usbehci.sys

2013-11-12 19:32:56 ----A---- C:\Windows\system32\drivers\usbd.sys

2013-11-12 19:32:55 ----A---- C:\Windows\system32\drivers\usbuhci.sys

2013-11-12 19:32:55 ----A---- C:\Windows\system32\drivers\usbohci.sys

2013-11-09 02:44:34 ----D---- C:\Users\Ricardo\AppData\Roaming\dvdcss

2013-11-09 02:42:44 ----D---- C:\Users\Ricardo\AppData\Roaming\Full

2013-11-09 02:41:14 ----D---- C:\Program Files\Full DVD Ripper 9 Free

2013-11-09 02:39:34 ----AD---- C:\ProgramData\TEMP

2013-11-09 02:37:54 ----A---- C:\Windows\system32\pmls.dll

2013-11-09 02:21:10 ----D---- C:\Users\Ricardo\AppData\Roaming\MusicNet

======List of files/folders modified in the last 1 months======

2013-12-06 02:06:14 ----D---- C:\Windows\system32\config

2013-12-06 02:05:17 ----D---- C:\ProgramData\MFAData

2013-12-06 02:04:30 ----SHD---- C:\Windows\Installer

2013-12-06 02:04:24 ----D---- C:\Windows

2013-12-06 02:03:11 ----D---- C:\Windows\system32\drivers

2013-12-06 02:02:55 ----HD---- C:\ProgramData

2013-12-06 02:02:49 ----D---- C:\Program Files\Common Files

2013-12-06 02:02:39 ----RD---- C:\Program Files

2013-12-06 01:47:32 ----D---- C:\Windows\system32\catroot

2013-12-06 01:46:55 ----D---- C:\Windows\System32

2013-12-06 01:46:35 ----D---- C:\Windows\inf

2013-12-06 01:46:25 ----D---- C:\Windows\system32\DriverStore

2013-12-05 07:42:22 ----D---- C:\Windows\Microsoft.NET

2013-12-05 07:40:50 ----RSD---- C:\Windows\assembly

2013-12-05 07:00:53 ----D---- C:\Windows\system32\wbem

2013-12-05 06:58:58 ----D---- C:\Program Files\Common Files\microsoft shared

2013-12-05 06:58:56 ----D---- C:\Program Files\FileZilla FTP Client

2013-12-05 06:58:55 ----D---- C:\Program Files\Internet Explorer

2013-12-05 06:58:47 ----D---- C:\ProgramData\Microsoft Help

2013-12-05 06:58:00 ----D---- C:\Users\Ricardo\AppData\Roaming\DVDVideoSoft

2013-12-05 06:57:50 ----D---- C:\Windows\PolicyDefinitions

2013-12-05 06:57:49 ----D---- C:\Windows\rescache

2013-12-05 06:57:48 ----D---- C:\Windows\system32\migration

2013-12-05 06:57:48 ----D---- C:\Windows\system32\en-US

2013-12-05 06:57:48 ----D---- C:\Windows\system32\drivers\etc

2013-12-05 06:57:48 ----D---- C:\Windows\system32\CodeIntegrity

2013-12-05 06:57:48 ----D---- C:\Windows\system32\catroot2

2013-12-05 06:57:47 ----D---- C:\Windows\winsxs

2013-12-05 06:57:47 ----D---- C:\Windows\Tasks

2013-12-05 06:57:47 ----D---- C:\Windows\system32\Tasks

2013-12-05 06:57:47 ----D---- C:\Windows\system32\nl-NL

2013-12-05 06:57:47 ----D---- C:\Windows\system32\NDF

2013-12-05 06:57:38 ----D---- C:\Windows\registration

2013-12-05 06:45:06 ----A---- C:\Windows\win.ini

2013-12-05 06:33:45 ----SHD---- C:\System Volume Information

2013-12-03 23:14:18 ----D---- C:\Windows\system32\wfp

2013-12-02 23:57:58 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-11-30 01:18:24 ----D---- C:\Windows\Panther

2013-11-30 01:18:23 ----D---- C:\Windows\Logs

2013-11-30 00:20:29 ----D---- C:\Windows\Prefetch

2013-11-14 19:18:44 ----D---- C:\Windows\debug

2013-11-14 01:35:14 ----D---- C:\Windows\system32\MRT

2013-11-14 01:32:29 ----A---- C:\Windows\system32\MRT.exe

2013-11-13 01:30:51 ----D---- C:\Windows\system32\wdi

2013-11-12 00:05:40 ----HD---- C:\Program Files\InstallShield Installation Information

2013-11-12 00:05:40 ----D---- C:\Program Files\Electronic Arts

2013-11-10 20:55:37 ----D---- C:\Windows\Minidump

2013-11-09 02:30:54 ----D---- C:\Windows\Resources

2013-11-08 00:33:42 ----SD---- C:\Users\Ricardo\AppData\Roaming\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2013-07-20 60216]

R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2013-07-20 246072]

R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2013-07-01 96568]

R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2013-09-05 39224]

R0 RapportKELL;RapportKELL; C:\Windows\System32\Drivers\RapportKELL.sys [2013-09-10 97008]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]

R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6x.sys [2012-09-04 50296]

R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2013-07-20 208184]

R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2013-09-10 22328]

R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2013-07-20 171320]

R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2013-03-21 182072]

R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2013-12-06 37664]

R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]

R1 RapportCerberus_56758;RapportCerberus_56758; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_56758.sys [2013-08-24 330960]

R1 RapportEI;RapportEI; \??\C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [2013-09-10 148688]

R1 RapportPG;RapportPG; \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys [2013-09-10 222416]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]

R3 athr;Stuurprogramma Atheros Extensible draadloze LAN-apparaat; C:\Windows\system32\DRIVERS\athr.sys [2009-07-13 1096704]

R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]

R3 k57nd60x;Broadcom NetLink Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60x.sys [2009-07-13 229888]

R3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]

R3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]

R3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-06-18 212400]

R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]

S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]

S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]

S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]

S3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athur.sys [2010-01-05 1500160]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]

S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]

S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]

S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]

S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]

S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]

S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]

S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]

S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]

S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]

S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]

S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]

R2 avgfws;AVG Firewall; C:\Program Files\AVG\AVG2013\avgfws.exe [2013-09-04 1432080]

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]

R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [2013-07-23 283136]

R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]

R2 ca82e1a5;Optimizer Pro Crash Monitor; c:\progra~1\optimi~1\OptProCrash.exe [2013-11-30 143488]

R2 CltMngSvc;Search Protect by Conduit Service; C:\PROGRA~1\SearchProtect\Main\bin\CltMngSvc.exe [2013-11-25 1735968]

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]

R2 RapportMgmtService;Rapport Management Service; C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [2013-09-10 1435928]

R2 Update SecretSauce;Update SecretSauce; C:\Program Files\SecretSauce\updateSecretSauce.exe [2013-11-13 66848]

R2 Util SecretSauce;Util SecretSauce; C:\Program Files\SecretSauce\bin\utilSecretSauce.exe [2013-11-30 66848]

R2 vToolbarUpdater17.1.2;vToolbarUpdater17.1.2; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe [2013-12-06 1734680]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-31 136176]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09 257416]

S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]

S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-03-31 654848]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-31 136176]

S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-03-31 194032]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-27 108032]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-03-09 30798512]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]

S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]

S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-31 1343400]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
firefoxlook; 
 {95B7759C-8C7F-4BF1-B163-73684A933233};c
 C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll;f
 mobilegeni daemon;s
 C:\Program Files\Mobogenie;fs
 ca82e1a5;s
 CltMngSvc;s
 Update SecretSauce;s
 Util SecretSauce;s
 C:\Program Files\SecretSauce;fs
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}];r
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run];r
 "mobilegeni daemon"=-;r
 C:\Windows\system32\SearchProtect;fs
 C:\Users\Ricardo\AppData\Roaming\Optimizer Pro;fs
 C:\Program Files\Optimizer Pro;fs
 C:\Program Files\SearchProtect;fs
 C:\Users\Ricardo\AppData\Roaming\OpenCandy;fs
 C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308};fs
 C:\zoek_backup;f
 emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Firefox Defaults
  • Reset Chrome
  • IE Defaults
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

inmiddels mijn IE weer terug alleen in het engenls nu.

Zoek.exe Version 4.0.0.5 Updated 05-December-2013

Tool run by Ricardo on vr 06-12-2013 at 20:24:50,90.

Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Ricardo\Desktop\zoek.exe [script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2013-11-18-230907.log 34887 bytes

C:\zoek-results2013-11-18-235608.log 25660 bytes

C:\zoek-results2013-11-20-003207.log 24712 bytes

C:\zoek-results2013-11-20-231718.log 23814 bytes

C:\zoek-results2013-11-21-172723.log 4280 bytes

C:\zoek-results2013-12-06-180445.log 83629 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"mobilegeni daemon"=-

==== Deleting Files \ Folders ======================

C:\Program Files\Mobogenie not found

C:\Windows\system32\SearchProtect not found

C:\Users\Ricardo\AppData\Roaming\Optimizer Pro not found

C:\Program Files\Optimizer Pro not found

C:\Program Files\SearchProtect not found

C:\Users\Ricardo\AppData\Roaming\OpenCandy not found

C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} not found

"C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll" not found

"C:\Program Files\SecretSauce\bin\utilSecretSauce.exesearch" not deleted

"C:\zoek_backup" deleted

"C:\zoek_backup\C_Program Files_SecretSauce" deleted

"C:\zoek_backup\C_Users_Ricardo_AppData_Local_Google_Chrome_User Data_Default_Extensions_dbpebffoameokfhnaaedmefjncfboino" deleted

"C:\zoek_backup\C_Users_Ricardo_AppData_Local_Google_Chrome_User Data_Default_Local Extension Settings_dbpebffoameokfhnaaedmefjncfboino" deleted

"C:\zoek_backup\C_zoek_backup" deleted

"C:\zoek_backup\C_Program Files_SecretSauce\bin" deleted

"C:\zoek_backup\C_Users_Ricardo_AppData_Local_Google_Chrome_User Data_Default_Extensions_dbpebffoameokfhnaaedmefjncfboino\1.0.0_0" deleted

"C:\Program Files\SecretSauce" not deleted

"C:\Program Files\SecretSauce\bin" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Ricardo\AppData\Local\Temp ====

2013-12-06 01:01:44 A019576D52B2B42A05D76D9F9DE7AA21 4680728 ----a-w- C:\Users\Ricardo\AppData\Local\Temp\oi_{E9362B58-5A97-4814-A455-EA5357278968}.exe

2013-11-25 10:20:10 C019B50C4A7235AE1CC5A49B4B13C98A 5601720 ----a-w- C:\Users\Ricardo\AppData\Local\Temp\SPSetup.exe

====== C:\Windows\system32 =====

2013-11-27 05:50:44 C611C6ED5ECFE4608BA79472DFE3D49C 646144 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe

2013-11-27 05:50:43 C1A6E565B2782C09BC40AD749B46D9ED 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2013-11-27 05:50:43 AD27563BC16AB1EAACAE3033E99C2F78 194048 ----a-w- C:\Windows\System32\elshyph.dll

2013-11-27 05:50:43 9B8701A380CEE1B05D651B4ED4048C8F 645120 ----a-w- C:\Windows\System32\jsIntl.dll

2013-11-27 05:50:42 B68750104FBA545C633B7E9AEA660208 2166272 ----a-w- C:\Windows\System32\iertutil.dll

2013-11-27 05:50:42 B5EB5BD3066959611E1F7A80FD6CC172 1818112 ----a-w- C:\Windows\System32\wininet.dll

2013-11-27 05:50:42 4A7956EE34BE56D20C54CF6A47693C25 43008 ----a-w- C:\Windows\System32\jsproxy.dll

2013-11-27 05:50:42 298FDE634538B62CEEEC266D8773B21A 182272 ----a-w- C:\Windows\System32\msls31.dll

2013-11-27 05:50:41 9E170B0AF156B478BD2B1FD6A2250C9E 62464 ----a-w- C:\Windows\System32\tdc.ocx

2013-11-27 05:50:41 44D5C650C971910827EA65B4D989ED94 164864 ----a-w- C:\Windows\System32\msrating.dll

2013-11-27 05:50:41 2EE1E467D73642AFDDB03019F58C252B 1156608 ----a-w- C:\Windows\System32\urlmon.dll

2013-11-27 05:50:40 FB0D1CC2911A0645DDA6C0608473EB55 34816 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll

2013-11-27 05:50:39 D9F12F54E3B5A092F1D5F191F5286E53 337408 ----a-w- C:\Windows\System32\html.iec

2013-11-27 05:50:39 C3B0DBD04CC18574B0706CA119902474 367104 ----a-w- C:\Windows\System32\dxtmsft.dll

2013-11-27 05:50:39 08B56CF57B7CE44315034247CC76D0F1 244736 ----a-w- C:\Windows\System32\dxtrans.dll

2013-11-27 05:50:38 C17139EAF939964142C7A1AEEE02DC81 616104 ----a-w- C:\Windows\System32\ieapfltr.dat

2013-11-27 05:50:38 4F032F1FDEFEA5EC8EEA3562643B5EE8 69120 ----a-w- C:\Windows\System32\icardie.dll

2013-11-27 05:50:38 433161597584186EF806EFC8EA530433 703488 ----a-w- C:\Windows\System32\ieapfltr.dll

2013-11-27 05:50:37 D6BC25D55501DE093757675B3B120867 208896 ----a-w- C:\Windows\System32\ie4uinit.exe

2013-11-27 05:50:36 F862CD08F1AD4EE39BD506853F3C6103 16284 ----a-w- C:\Windows\System32\ieuinit.inf

2013-11-27 05:50:36 BE8B10D84DDD8F43A32EE013B54F5287 61952 ----a-w- C:\Windows\System32\iesetup.dll

2013-11-27 05:50:36 5DFE55E0221F0C5FA4D6CECFA72B1D78 32768 ----a-w- C:\Windows\System32\iernonce.dll

2013-11-27 05:50:35 CFCE4EFF1D6D909EE2EA3AFCB8F1E677 233472 ----a-w- C:\Windows\System32\url.dll

2013-11-27 05:50:34 81A605B0F3A29A117AB83A08D40F772F 1926656 ----a-w- C:\Windows\System32\inetcpl.cpl

2013-11-27 05:50:34 6922D7ED84AE102504174922D5D42F49 238288 ----a-w- C:\Windows\System32\iedkcs32.dll

2013-11-27 05:50:34 2AF48780D879AFC43733159CB29CD8BD 1051136 ----a-w- C:\Windows\System32\mshtmlmedia.dll

2013-11-27 05:50:34 03B3541AE6986602CF9CB5B3AD169C33 208384 ----a-w- C:\Windows\System32\webcheck.dll

2013-11-27 05:50:33 EC7038154490E50ACD405A022F51B204 83456 ----a-w- C:\Windows\System32\inseng.dll

2013-11-27 05:50:33 AB3B2CA52AFB695AFCDD2620A21E5B21 24576 ----a-w- C:\Windows\System32\licmgr10.dll

2013-11-27 05:50:32 9A33FDDD687A836A1FD478B43C5A95FD 151552 ----a-w- C:\Windows\System32\iexpress.exe

2013-11-27 05:50:32 6A92CEC8532056791C6832B2725D170D 139264 ----a-w- C:\Windows\System32\wextract.exe

2013-11-27 05:50:32 64831CAD496A073398853A34A5813675 69632 ----a-w- C:\Windows\System32\mshtmled.dll

2013-11-27 05:50:31 F9F114B2A6F876C92D317A755494F233 17142784 ----a-w- C:\Windows\System32\mshtml.dll

2013-11-27 05:50:31 71144A47CD02FDDC77DDF5EB5315767F 523776 ----a-w- C:\Windows\System32\msfeeds.dll

2013-11-27 05:50:31 6A794439B6612E43FEDE0217C919B652 454656 ----a-w- C:\Windows\System32\vbscript.dll

2013-11-27 05:50:30 F8DE2F74CD4323BABBDACAADD9A39254 112128 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-11-27 05:50:30 BC2C13A3B664B686DA52D558FE5502FC 2724864 ----a-w- C:\Windows\System32\mshtml.tlb

2013-11-27 05:50:28 1200D9C7DB0ADC1B8143A0A9921BF7DA 127488 ----a-w- C:\Windows\System32\occache.dll

2013-11-27 05:50:27 4BCC7EB5F20840DA67943BD86AE95735 56832 ----a-w- C:\Windows\System32\pngfilt.dll

2013-11-27 05:50:26 C629D814E48CAA81E0D806BD7ECA98B8 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll

2013-11-27 05:50:26 ABDFC692D9FE43E2BA8FE6CB5A8CB95A 13312 ----a-w- C:\Windows\System32\mshta.exe

2013-11-27 05:50:26 4D4726D1AD5ED1590A62685F92900594 51200 ----a-w- C:\Windows\System32\ieetwproxystub.dll

2013-11-27 05:50:26 14E18520903F925D296C8E29BDE6BD43 108032 ----a-w- C:\Windows\System32\ieetwcollector.exe

2013-11-27 05:50:25 779E142FE2159935E78C0FA2E190FF1E 610304 ----a-w- C:\Windows\System32\jscript.dll

2013-11-27 05:50:25 5EC13202430A3EB68DFF44CF1FEEA2BE 61952 ----a-w- C:\Windows\System32\MshtmlDac.dll

2013-11-27 05:50:23 6EB0B7301E00F717BD68A742D1391FAF 36352 ----a-w- C:\Windows\System32\imgutil.dll

2013-11-27 05:50:23 1AFBAA54BDF637F69B8E02A5578286B0 116736 ----a-w- C:\Windows\System32\iepeers.dll

2013-11-27 05:50:22 55969AADF0210A614700F89B48976F68 43008 ----a-w- C:\Windows\System32\msfeedsbs.dll

2013-11-27 05:50:21 53FC62C51CB18C9100A7DFAF2D2A6C47 12800 ----a-w- C:\Windows\System32\msfeedssync.exe

2013-11-27 05:50:20 F7B6E341F4B1947BEC0E14EEBE3C627E 111616 ----a-w- C:\Windows\System32\IEAdvpack.dll

2013-11-27 05:50:19 887055A3C8DD6C87D200D11EAFDBD45B 74240 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe

2013-11-27 05:50:18 F705F52FC41577641E82B9934728B02C 440832 ----a-w- C:\Windows\System32\ieui.dll

2013-11-27 05:50:18 AE6A2C5ECD3E96556E22F12816842F60 48640 ----a-w- C:\Windows\System32\mshtmler.dll

2013-11-27 05:50:18 AE254DBF16E3E3D7C35ED017B4B55EC6 4240384 ----a-w- C:\Windows\System32\jscript9.dll

2013-11-27 05:50:18 83F49FD1BC0A999B006D564C540C7258 86016 ----a-w- C:\Windows\System32\iesysprep.dll

2013-11-27 05:50:18 809804D8AED97AEA96B3D4B66A4C5C70 553472 ----a-w- C:\Windows\System32\jscript9diag.dll

2013-11-27 05:50:17 22868FAAF9C851BFA924B8D7EDB6CBC1 11220992 ----a-w- C:\Windows\System32\ieframe.dll

====== C:\Windows\system32\drivers =====

2013-12-06 01:03:11 15ACA2AD17ACECA4814F249783E63AD3 37664 ----a-w- C:\Windows\System32\drivers\avgtpx86.sys

2013-12-06 00:47:25 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf

2013-11-13 20:56:01 F286830298323272260332D6ABC905C1 67520 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2013-11-13 20:56:01 D7C760D57B1656DD748B9E4AB6CB5A51 136640 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2013-11-13 20:56:01 85449EEBE8F8EBD6481EFBF0F352B4EB 369848 ----a-w- C:\Windows\System32\drivers\cng.sys

2013-11-12 18:32:57 71D97F1A3CC47A56728F7A400A3F8295 76288 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2013-11-12 18:32:56 FDA6F2BB7FA034D95863ED8788B4E416 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys

2013-11-12 18:32:56 C4FB8E7ADEA9B5CEEA885A1B504B7E40 43008 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2013-11-12 18:32:56 86AA95ACB611001E26CD2C0145F2225A 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2013-11-12 18:32:56 6FB17D7A2E76B838886E5E8C60239DAE 6016 ----a-w- C:\Windows\System32\drivers\usbd.sys

2013-11-12 18:32:55 DCDF9855145A14DFCA0AB32308871961 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2013-11-12 18:32:55 8E51D04175BAA14C4F79AA5F6D248770 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

====== C:\Windows\Tasks ======

2013-11-16 12:32:21 8CD6D7091FE7AE5768892E100B5BC506 3148 ----a-w- C:\Windows\system32\Tasks\{EE9FCCFA-A728-4887-A32D-59BC2871A2FB}

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-12-06 00:46:42 -------- d-----w- C:\Program Files\Synaptics

2013-11-29 23:20:22 -------- d-----w- C:\Program Files\SecretSauce

2013-11-28 22:23:15 -------- d-----w- C:\Program Files\Acer

2013-11-26 22:17:51 -------- d-----w- C:\Program Files\Speccy

2013-11-25 23:25:41 -------- d-----w- C:\Program Files\DVDVideoSoft

2013-11-23 18:58:33 -------- d-----w- C:\Program Files\NCH Software

2013-11-23 18:39:40 -------- d-----w- C:\Program Files\Common Files\DVDVideoSoft

2013-11-18 19:47:41 -------- d-----w- C:\Program Files\WinZip

2013-11-17 23:55:28 -------- d-----w- C:\Program Files\trend micro

2013-11-14 21:12:01 -------- d-----w- C:\Program Files\Panicware

2013-11-09 01:41:14 -------- d-----w- C:\Program Files\Full DVD Ripper 9 Free

======= C: =====

====== C:\Users\Ricardo\AppData\Roaming ======

2013-12-04 15:46:17 F2A2D2DD73D5CE5E37136F3CDB53D2D5 9324 ----a-w- C:\Users\Ricardo\AppData\Roaming\Door lijstscheidingstekens gescheiden waarden (Windows).EML

2013-11-29 19:24:12 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\DriverTurbo

2013-11-28 22:23:15 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acer

2013-11-24 18:49:11 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\AVG

2013-11-23 18:59:00 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\NCH Software

2013-11-23 18:41:47 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\AVG

2013-11-21 17:23:41 -------- d-----w- C:\Users\Ricardo\AppData\Local\Temp

2013-11-18 19:48:35 -------- d-----w- C:\Users\Ricardo\AppData\Local\WinZip

2013-11-14 21:12:05 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Panicware

2013-11-13 10:46:46 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Ricardo\AppData\Roaming\MixPad.dmp

2013-11-13 10:36:25 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Ricardo\AppData\Roaming\WavePad.dmp

2013-11-09 01:44:34 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\dvdcss

2013-11-09 01:42:44 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\Full

2013-11-09 01:33:11 -------- d-----w- C:\Users\Ricardo\AppData\Local\TNT2

2013-11-09 01:21:10 -------- d-----w- C:\Users\Ricardo\AppData\Roaming\MusicNet

====== C:\Users\Ricardo ======

2013-12-06 01:20:05 DAAB3BCC6FA56354DECC22F4B9104F7F 339991 ----a-w- C:\Users\Ricardo\Downloads\RSIT-1.06.exe

2013-11-29 19:23:52 09D024F5167E0019AAE70092A13CCE6A 232016 ----a-w- C:\Users\Ricardo\Downloads\DriverTurboSetup.exe

2013-11-28 22:16:44 CE350B8D8B231A658D456DDFFDC7AA34 383480 ----a-w- C:\Users\Ricardo\Downloads\Allin1Convert.exe

2013-11-23 18:59:00 -------- d-----w- C:\ProgramData\NCH Software

2013-11-23 18:40:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft

2013-11-23 18:40:11 -------- d-----w- C:\ProgramData\AVG

2013-11-23 18:36:35 8529BAA9852F454CEC38203ECEA96E93 32132232 ----a-w- C:\Users\Ricardo\Desktop\FreeYouTubeToMP3Converter.exe

2013-11-18 19:48:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip

2013-11-18 19:47:46 -------- d-----w- C:\ProgramData\WinZip

2013-11-14 21:12:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panicware

2013-11-09 01:42:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Full DVD Ripper 9 Free

2013-11-09 01:39:34 -------- d---a-w- C:\ProgramData\TEMP

====== C: exe-files ==

2013-12-06 05:03:38 CA0A340ABCF0C14A09691CBC90186AB4 51080 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdateBroker.exe

2013-12-06 05:03:38 600B1A4BCC0823A96DC7B86F005ADBB8 51080 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdateOnDemand.exe

2013-12-06 05:03:36 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdateSetup.exe

2013-12-06 05:03:06 9CCBA5E2489E603BB1578D1D541252A8 273800 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler64.exe

2013-12-06 05:03:06 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe

2013-12-06 05:03:05 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdate.exe

2013-12-06 05:02:48 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.3\GoogleUpdateSetup.exe

2013-12-06 01:20:05 DAAB3BCC6FA56354DECC22F4B9104F7F 339991 ----a-w- C:\Users\Ricardo\Downloads\RSIT-1.06.exe

2013-12-06 01:01:44 A019576D52B2B42A05D76D9F9DE7AA21 4680728 ----a-w- C:\Users\Ricardo\AppData\Local\Temp\oi_{E9362B58-5A97-4814-A455-EA5357278968}.exe

2013-12-06 00:59:26 FB00AAA139DD6C8E516192873891A84D 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1705988117-2768847543-2802782899-1001\$I37YG5R.exe

2013-12-06 00:59:16 D91A05FC5BAAC8DE67B117A22A7D9040 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1705988117-2768847543-2802782899-1001\$IT7CNZD.exe

2013-12-04 20:01:11 0C04A51D2892F0501FED4D0EAA43FA36 1751392 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.63\31.0.1650.63_31.0.1650.57_chrome_updater.exe

2013-12-03 22:25:32 4C2AE8D0E01A80BD6A4C71E799BBBE67 5494320 ----a-w- C:\Program Files\AVG\AVG2013\avgcremx.exe

=== C: other files ==

2013-12-06 19:23:47 388C0EED6C59A0182A5F190BFBBDE5D7 2368 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\e304db58-50b6-47d3-a0b5-d1565059dce4.zip

2013-12-06 19:22:12 25E3CF90CDDD68D0FE3D3524FB2FD0D0 2390 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\cbba1342-50b6-47d3-a0b5-d1565059dce4.zip

2013-12-06 19:21:27 F1F5E84249C2AB4D4501FB6AA105914C 4086 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\82471d4d-50a0-47d3-a0b5-d1565059dce4.zip

2013-12-06 18:07:19 F2D1741F9BEAFB4FBF581518DA0BA3BE 143464 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\9e3f7360-50af-47d3-a0b5-d1565059dce4.zip

2013-12-06 01:03:11 15ACA2AD17ACECA4814F249783E63AD3 37664 ----a-w- C:\Windows\System32\drivers\avgtpx86.sys

2013-12-06 00:35:21 7C73EDDA7B34BDA6876467D979ECFAAE 279966 ----a-w- C:\Users\Ricardo\Downloads\src_204 (2).zip

2013-12-04 15:05:48 7C73EDDA7B34BDA6876467D979ECFAAE 279966 ----a-w- C:\Users\Ricardo\Downloads\src_204 (1).zip

2013-12-04 15:02:23 7C73EDDA7B34BDA6876467D979ECFAAE 279966 ----a-w- C:\Users\Ricardo\Downloads\src_204.zip

2013-11-29 19:33:32 F151F0BDC47F4A28B1B20A0818EA36D6 80896 ----a-w- C:\Users\Ricardo\AppData\Roaming\DriverTurbo\Backup\PS_2-compatibele muis - 6.1.7600.16385\i8042prt.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1705988117-2768847543-2802782899-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"EA Core"="C:\Program Files\Electronic Arts\EADM\Core.exe -silent"

"PopUpStopperFreeEdition"="C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY"

"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"CanonMyPrinter"="C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon"

"CanonSolutionMenu"="C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon"

"vProt"="C:\Program Files\AVG Secure Search\vprot.exe"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"EA Core"="C:\Program Files\Electronic Arts\EADM\Core.exe -silent"

"PopUpStopperFreeEdition"="C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-10-2013 19:39]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [31-03-2013 14:55]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [31-03-2013 14:55]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]

"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Chrome Look ======================

Google Wallet - Ricardo - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} Conduit Search Url="{searchTerms} - Bing="

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

==== Reset Google Chrome ======================

Nothing found to reset

==== After Reboot ======================

==== Deleting Files / Folders ======================

"C:\Program Files\SecretSauce\bin\utilSecretSauce.exesearch" not found

"C:\Program Files\SecretSauce" not found

"C:\Program Files\SecretSauce" not found

"C:\Program Files\SecretSauce" not found

"C:\Program Files\SecretSauce" not found

==== EOF on vr 06-12-2013 at 20:39:04,31 ======================

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.