Ga naar inhoud

Mail Delivery System <mailer-daemon@telenet-ops.be>


jpp

Aanbevolen berichten

Wijzig in eerste instantie alle belangrijke wachtwoorden. En voer dan het volgende uit:

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Link naar reactie
Delen op andere sites

Logfile of random's system information tool 1.09 (written by random/random)

Run by jean at 2013-11-24 18:52:36

Microsoft Windows 7 Home Premium

System drive C: has 354 GB (82%) free of 435 GB

Total RAM: 3255 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 18:52:40, on 24/11/2013

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\rundll32.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Launch Manager\HotkeyApp.exe

C:\Program Files\Launch Manager\OSD.exe

C:\Program Files\Launch Manager\WButton.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Hewlett-Packard\HP Software Update\hpwuschd2.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files\Fighters\Tray\FightersTray.exe

C:\Program Files\Fighters\SPAMfighter\sfagent.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe

C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe

C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe

C:\Windows\system32\RunDll32.exe

C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE

C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicatorCom.exe

C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Users\jean\Downloads\RSIT (2).exe

C:\Program Files\trend micro\jean.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = HLN.be, Nieuws, sport en showbizz, 24/24, 7/7, meer dan 350 nieuwsupdates per dag

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: (no name) - {7a55cbb2-2b2e-4a41-9de1-6ac5d2c2be0a} - (no file)

O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Search-Results Toolbar - {377e5d4d-77e5-476a-8716-7e70a9272da0} - (no file)

O2 - BHO: (no name) - {58f7b5ca-1162-42e8-8bbc-d543b4edd780} - (no file)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll

O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O3 - Toolbar: (no name) - {377e5d4d-77e5-476a-8716-7e70a9272da0} - (no file)

O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s

O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe"

O4 - HKLM\..\Run: [LMgrVolOSD] "C:\Program Files\Launch Manager\OSD.exe"

O4 - HKLM\..\Run: [LMgrOSD] "C:\Program Files\Launch Manager\OSDCtrl.exe"

O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"

O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"

O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"

O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"

O4 - HKLM\..\Run: [Adobe_ID0ENQBO] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

O4 - HKLM\..\Run: [CommonToolkitTray] C:\Program Files\Fighters\Tray\FightersTray.exe

O4 - HKLM\..\Run: [sfagent] C:\Program Files\Fighters\SPAMfighter\sfagent.exe

O4 - HKLM\..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\4a4f1d3c-a092-451f-b306-34df377ee904.exe /check

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun

O4 - HKCU\..\Run: [AdobeBridge] "C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe" -stealth

O4 - HKCU\..\Run: [HP Deskjet 3050A J611 series (NET)] "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN3541FKXJ05WK:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1

O4 - HKCU\..\Run: [Web Calendar Pad] C:\Program Files\CalendarPad\calendarpad.exe

O4 - HKCU\..\Run: [AppsHat] C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe

O4 - HKCU\..\Run: [Apps Hat] C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-21-25551073-2257259776-1906566035-1000\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')

O4 - HKUS\S-1-5-21-25551073-2257259776-1906566035-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')

O4 - Startup: Inktwaarschuwingen controleren - HP Deskjet 3050A J611 series (netwerk).lnk = ?

O4 - Startup: LaunchU3.exe.lnk = ?

O4 - Startup: lollipop.lnk = jean\AppData\Local\Lollipop\Lollipop.exe

O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html

O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU)

O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU)

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\Fighters\SPAMfighter\sfus.exe

O23 - Service: Suite Service - SPAMfighter ApS - C:\Program Files\Fighters\FighterSuiteService.exe

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe

O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--

End of file - 14654 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]

ContributeBHO Class - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-08-28 136560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377e5d4d-77e5-476a-8716-7e70a9272da0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58f7b5ca-1162-42e8-8bbc-d543b4edd780}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]

Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-05-14 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-11 4220304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-21 606544]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live Aanmelden - Help - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]

Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2009-02-27 349576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-22 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]

Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]

SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2009-02-27 349576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]

{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2009-02-27 349576]

{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-08-28 136560]

{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-21 606544]

{377e5d4d-77e5-476a-8716-7e70a9272da0}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-05-10 9177632]

"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [2010-05-10 1423904]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-05-10 141848]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-05-10 175640]

"Persistence"=C:\Windows\system32\igfxpers.exe [2010-05-10 167960]

"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2010-04-15 14830184]

"HotkeyApp"=C:\Program Files\Launch Manager\HotkeyApp.exe [2009-12-14 200704]

"LMgrVolOSD"=C:\Program Files\Launch Manager\OSD.exe [2009-12-11 348960]

"LMgrOSD"=C:\Program Files\Launch Manager\OSDCtrl.exe []

"Wbutton"=C:\Program Files\Launch Manager\Wbutton.exe [2010-01-13 413696]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-10 1594664]

"CLMLServer"=C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]

"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

"Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2009-10-03 38768]

"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2009-10-02 640376]

"Adobe_ID0ENQBO"=C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE [2008-08-15 378224]

"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]

"HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2003-12-22 241664]

""= []

"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2013-05-31 152392]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2013-05-01 421888]

"HP Software Update"=C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe [2011-10-28 49208]

"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-21 3568312]

"CommonToolkitTray"=C:\Program Files\Fighters\Tray\FightersTray.exe [2013-10-29 1681952]

"sfagent"=C:\Program Files\Fighters\SPAMfighter\sfagent.exe [2013-10-30 1069600]

"20131121"=C:\Program Files\AVAST Software\Avast\setup\emupdate\4a4f1d3c-a092-451f-b306-34df377ee904.exe [2013-11-23 180184]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-04-19 18678376]

"AdobeBridge"=C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe [2008-08-28 13145448]

"HP Deskjet 3050A J611 series (NET)"=C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2012-10-17 1837672]

"Web Calendar Pad"=C:\Program Files\CalendarPad\calendarpad.exe []

"AppsHat"=C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [2012-10-26 202752]

"Apps Hat"=C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [2012-10-26 202752]

C:\Users\jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

Inktwaarschuwingen controleren - HP Deskjet 3050A J611 series (netwerk).lnk - C:\Windows\system32\RunDll32.exe

LaunchU3.exe.lnk - C:\Users\jean\AppData\Roaming\Microsoft\Installer\{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}\_2cd672ae.exe

lollipop.lnk - C:\Users\jean\AppData\Local\Lollipop\Lollipop.exe

OneNote 2010 Schermopname en Snel starten.lnk - C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2010-05-10 227328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-11 4220304]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BsScanner]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=l3codecp.acm

"vidc.cvid"=iccvid.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"MSVideo8"=VfWWDM32.dll

"msacm.siren"=sirenacm.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS4\Dreamweaver.exe","%1"

======List of files/folders created in the last 1 month======

2013-11-24 17:06:28 ----D---- C:\Users\jean\AppData\Roaming\Malwarebytes

2013-11-24 17:06:08 ----D---- C:\ProgramData\Malwarebytes

2013-11-24 17:06:07 ----D---- C:\Program Files\Malwarebytes' Anti-Malware

2013-11-24 17:06:07 ----A---- C:\Windows\system32\drivers\mbam.sys

2013-11-24 13:48:23 ----D---- C:\rsit

2013-11-24 13:48:23 ----D---- C:\Program Files\trend micro

2013-11-24 13:41:09 ----D---- C:\AdwCleaner

2013-11-24 08:30:16 ----D---- C:\Users\jean\AppData\Roaming\LiveKit

2013-11-23 10:26:03 ----D---- C:\Program Files\Common Files\Common Toolkit Suite

2013-11-23 10:26:00 ----D---- C:\Program Files\Fighters

2013-11-23 10:25:52 ----D---- C:\Users\jean\AppData\Roaming\Fighters

2013-11-23 10:24:44 ----D---- C:\ProgramData\Fighters

2013-11-20 17:33:38 ----D---- C:\Users\jean\AppData\Roaming\AVAST Software

2013-11-20 05:55:01 ----SHD---- C:\Config.Msi

2013-11-19 20:19:19 ----D---- C:\Windows\system32\MRT

2013-11-19 05:21:49 ----D---- C:\Users\jean\AppData\Roaming\WinZip

2013-11-19 05:19:13 ----D---- C:\ProgramData\WinZip

2013-11-19 05:19:13 ----D---- C:\Program Files\WinZip System Utilities Suite

2013-11-11 12:31:59 ----D---- C:\ProgramData\McAfee

2013-10-26 09:15:34 ----D---- C:\ProgramData\AVS4YOU

2013-10-26 09:15:30 ----D---- C:\Users\jean\AppData\Roaming\AVS4YOU

2013-10-26 09:12:38 ----D---- C:\Program Files\Common Files\AVSMedia

2013-10-26 09:11:33 ----A---- C:\Windows\system32\msxml3a.dll

2013-10-26 09:11:32 ----D---- C:\Program Files\AVS4YOU

2013-10-26 08:50:56 ----D---- C:\Program Files\MyPC Backup

2013-10-26 08:50:39 ----D---- C:\Users\jean\AppData\Roaming\Systweak

======List of files/folders modified in the last 1 month======

2013-11-24 18:52:39 ----D---- C:\Windows\Temp

2013-11-24 18:52:30 ----D---- C:\Windows\Prefetch

2013-11-24 17:56:45 ----D---- C:\Windows\system32\drivers

2013-11-24 17:54:16 ----D---- C:\Windows\system32\config

2013-11-24 17:44:04 ----A---- C:\Windows\system32\log.txt

2013-11-24 17:43:34 ----D---- C:\ProgramData\BitGuard

2013-11-24 17:40:27 ----D---- C:\Windows\Performance

2013-11-24 17:40:19 ----D---- C:\Program Files\Search Results Toolbar

2013-11-24 17:40:18 ----RD---- C:\Program Files

2013-11-24 17:21:28 ----D---- C:\Windows\Offline Web Pages

2013-11-24 17:21:22 ----D---- C:\Windows\System32

2013-11-24 17:06:08 ----HD---- C:\ProgramData

2013-11-24 16:07:19 ----D---- C:\Windows\inf

2013-11-24 16:07:19 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-11-24 14:47:37 ----D---- C:\Users\jean\AppData\Roaming\Skype

2013-11-23 10:27:08 ----SHD---- C:\Windows\Installer

2013-11-23 10:26:03 ----D---- C:\Program Files\Common Files

2013-11-23 10:25:50 ----SHD---- C:\System Volume Information

2013-11-22 09:24:40 ----SD---- C:\Users\jean\AppData\Roaming\Microsoft

2013-11-22 06:52:07 ----D---- C:\Windows\system32\catroot

2013-11-21 17:38:43 ----D---- C:\Windows\system32\catroot2

2013-11-21 17:35:12 ----D---- C:\Windows\system32\Tasks

2013-11-21 17:35:05 ----D---- C:\Windows\winsxs

2013-11-21 17:35:02 ----D---- C:\Windows

2013-11-21 17:35:01 ----A---- C:\Windows\system32\aswBoot.exe

2013-11-21 05:29:23 ----D---- C:\Windows\Tasks

2013-11-21 05:29:23 ----D---- C:\Windows\system32\wfp

2013-11-21 05:29:22 ----D---- C:\Program Files\Windows Portable Devices

2013-11-21 05:29:18 ----D---- C:\Windows\system32\wbem

2013-11-21 05:28:13 ----D---- C:\Windows\system32\nl-NL

2013-11-21 05:28:13 ----D---- C:\Windows\system32\DriverStore

2013-11-21 05:28:13 ----D---- C:\Program Files\Internet Explorer

2013-11-21 05:28:11 ----D---- C:\Windows\Minidump

2013-11-21 05:28:07 ----D---- C:\Windows\AppCompat

2013-11-21 05:27:57 ----D---- C:\ProgramData\FLEXnet

2013-11-21 05:27:57 ----D---- C:\Program Files\WinRAR

2013-11-21 05:27:56 ----D---- C:\Program Files\Bonjour

2013-11-21 05:27:52 ----D---- C:\Program Files\Adobe

2013-11-21 05:27:04 ----D---- C:\Windows\registration

2013-11-21 05:25:31 ----D---- C:\Users\jean\AppData\Roaming\Adobe

2013-11-21 05:24:18 ----D---- C:\ProgramData\NVIDIA

2013-11-21 05:24:16 ----D---- C:\ProgramData\AVAST Software

2013-11-21 05:24:16 ----D---- C:\ProgramData\Adobe

2013-11-21 05:23:51 ----D---- C:\Program Files\Common Files\Adobe

2013-11-21 05:23:17 ----RHD---- C:\MSOCache

2013-11-20 17:46:31 ----D---- C:\Windows\Panther

2013-11-19 20:19:18 ----D---- C:\Windows\debug

2013-11-05 14:42:49 ----D---- C:\Users\jean\AppData\Roaming\HpUpdate

2013-10-28 09:20:57 ----D---- C:\Program Files\Google

2013-10-26 09:12:42 ----RSD---- C:\Windows\Fonts

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-11-21 49944]

R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-11-21 178304]

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-03 435736]

R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2008-02-06 44608]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]

R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-11-21 79720]

R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-11-21 774392]

R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-11-21 403440]

R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-11-21 57672]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]

R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]

R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-11-21 35656]

R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-11-21 70384]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]

R3 HECI;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2010-05-10 41088]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2010-05-10 8726528]

R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-05-10 132352]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-05-10 3083232]

R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-05-10 232960]

R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x86.sys [2010-05-10 67624]

R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\Windows\system32\DRIVERS\rtl8192se.sys [2010-05-10 1006624]

R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 9216]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-05-10 231600]

R3 X10Hid;X10 Hid Device; C:\Windows\System32\Drivers\x10hid.sys [2009-05-13 13720]

S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]

S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]

S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]

S3 mod7700;TV Tuner device; C:\Windows\system32\DRIVERS\mod7700.sys [2010-05-10 786400]

S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl.sys [2012-09-10 18432]

S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-05-10 191008]

S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]

S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2012-12-13 45056]

S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]

S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]

S3 XUIF;X10 USB Wireless Transceiver; C:\Windows\System32\Drivers\x10ufx2.sys [2009-05-13 27160]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-21 50344]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]

R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2013-09-10 101888]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe [2010-05-10 268824]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-04-15 219752]

R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-04-15 1800808]

R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-05-14 249136]

R2 SPAMfighter Update Service;SPAMfighter Update Service; C:\Program Files\Fighters\SPAMfighter\sfus.exe [2013-10-30 216608]

R2 Suite Service;Suite Service; C:\Program Files\Fighters\FighterSuiteService.exe [2013-10-29 1281568]

R2 UNS;Intel® Management & Security Application User Notification Service; C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-05-10 2320920]

R2 x10nets;X10 Device Network Service; C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe [2009-11-07 20480]

R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-05-31 553288]

R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]

R3 WisLMSvc;WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [2009-10-22 118560]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-25 116648]

S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-04-19 161384]

S3 Adobe Version Cue CS4;Adobe Version Cue CS4; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016]

S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]

S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-03-26 655624]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-25 116648]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-12-27 31124344]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
firefoxlook; 
emptyfolderscheck;delete 
 {7a55cbb2-2b2e-4a41-9de1-6ac5d2c2be0a};c
 {377e5d4d-77e5-476a-8716-7e70a9272da0};c
 {58f7b5ca-1162-42e8-8bbc-d543b4edd780};c
 {5C255C8A-E604-49b4-9D64-90988571CECB};c
 {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA};c
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377e5d4d-77e5-476a-8716-7e70a9272da0}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58f7b5ca-1162-42e8-8bbc-d543b4edd780}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}];r
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run];r
 ""=-;r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe];r
 C:\Program Files\MyPC Backup;fs
 C:\Users\jean\AppData\Roaming\Systweak;fs
 C:\ProgramData\BitGuard;fs
 C:\Program Files\Search Results Toolbar;fs
 startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Firefox Defaults
  • Reset Chrome
  • IE Defaults
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Zoek.exe is running now.

Do not start any browser windows, they will be closed automatically.

Please wait! This window will close when finished.

A logfile will open afterwards and can also be found on your systemdrive as zoek-results.log

- - - Updated - - -

Ik heb een 1/2 uur gewacht en krijg dit logbestand steeds te zien ?

bedankt voor de snelle reactie

JPP

- - - Updated - - -

Sorry ,

Dit heb ik toch gekregen op den duur !

grt

JPP

Zoek.exe Version 4.0.0.5 Updated 24-November-2013

Tool run by jean on ma 25/11/2013 at 5:17:59,62.

Microsoft Windows 7 Home Premium 6.1.7600 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\jean\Downloads\zoek\zoek.exe [script inserted] [Checkboxes used]

==== System Restore Info ======================

25/11/2013 5:21:19 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\Search Results Toolbar deleted successfully

C:\ProgramData\ALM deleted successfully

C:\ProgramData\Babylon deleted successfully

C:\ProgramData\Browser Manager deleted successfully

C:\ProgramData\BrowserProtect deleted successfully

C:\Users\jean\AppData\Roaming\Systweak deleted successfully

C:\Users\jean\AppData\Local\AppsHat Mobile Apps deleted successfully

C:\Users\jean\AppData\Local\Bundled software uninstaller deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{377e5d4d-77e5-476a-8716-7e70a9272da0} deleted successfully

HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58f7b5ca-1162-42e8-8bbc-d543b4edd780} deleted successfully

HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully

HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully

HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Internet Explorer\SearchScopes\{84dc9f6c-c9a5-4c64-ab67-d6ef60f963c8} deleted successfully

HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{377e5d4d-77e5-476a-8716-7e70a9272da0} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377e5d4d-77e5-476a-8716-7e70a9272da0} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58f7b5ca-1162-42e8-8bbc-d543b4edd780} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Internet Explorer\URLSearchHooks\{7a55cbb2-2b2e-4a41-9de1-6ac5d2c2be0a} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{377e5d4d-77e5-476a-8716-7e70a9272da0} deleted successfully

==== Deleting Services ======================

Link naar reactie
Delen op andere sites

Zelde probleem:

Logfile of random's system information tool 1.09 (written by random/random)

Run by admin at 2013-11-25 09:31:32

Microsoft® Windows Vista™ Home Premium Service Pack 2

System drive C: has 198 GB (67%) free of 295 GB

Total RAM: 3001 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 9:32:57, on 25/11/2013

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16520)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Windows\system32\igfxsrvc.exe

C:\Program Files\AVG PC TuneUp 2014\TuneUpUtilitiesApp32.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Launch Manager\LManager.exe

C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe

C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe

C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files\Common Files\MyPoiWorld Shared\MyPoiMonitor\MyPoiMonitor.exe

C:\Program Files\InboxAce_1g\bar\1.bin\1gbrmon.exe

C:\Program Files\AVG Secure Search\vprot.exe

C:\Program Files\Ask.com\Updater\Updater.exe

C:\Program Files\AVG\AVG2014\avgui.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Acer\Acer VCM\AcerVCM.exe

C:\Program Files\WinZip\WZQKPICK32.EXE

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Windows\system32\igfxext.exe

C:\Windows\system32\igfxsrvc.exe

C:\Program Files\File Association Helper\FAHWindow.exe

C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe

C:\Windows\ehome\ehmsas.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Windows\system32\igfxext.exe

C:\Program Files\AVG\AVG2014\avgcfgex.exe

C:\Program Files\Windows Mail\WinMail.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_117_ActiveX.exe

C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\39ZF65PG\RSIT.exe

C:\Program Files\trend micro\admin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE}

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE}

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyHeritage.com Search

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll

R3 - URLSearchHook: YouTubeUploaderLib.YouTubeUploaderLib - - (no file)

R3 - URLSearchHook: (no name) - {5fdb0cd8-5760-44d1-8d13-a78bf558c3c7} - C:\Program Files\InboxAce_1g\bar\1.bin\1gSrcAs.dll

R3 - URLSearchHook: (no name) - {93a3111f-4f74-4ed8-895e-d9708497629e} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll

O1 - Hosts: ::1 localhost

O2 - BHO: Search-Results Toolbar - {15a0413e-9f45-4d45-9a75-2c20b15b5b51} - C:\PROGRA~1\BEARSH~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: SeaRich-NeWTaB - {2631494D-FE09-AA8C-18A9-736FD93B96C6} - C:\ProgramData\SeaRich-NeWTaB\51f7e2c35d19d.dll

O2 - BHO: saFe syave - {2818D4B8-0229-A419-787A-743E6AD7032C} - (no file)

O2 - BHO: Toolbar BHO - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbar.dll

O2 - BHO: ToggleDU - {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - C:\Program Files\ToggleDU\prxtbTog2.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (file missing)

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: Zynga - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\prxtbZyng.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Search Assistant BHO - {9359da42-06fb-46f2-9e4a-05c05b98a5ef} - C:\Program Files\InboxAce_1g\bar\1.bin\1gSrcAs.dll

O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: DataMngr - {B939CF93-F2CB-443d-956C-DC523D85C9DB} - C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\BROWSE~1.DLL

O2 - BHO: Wincore Mediabar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - (no file)

O2 - BHO: Search Assistant BHO - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll

O2 - BHO: savensHare - {D2C705F2-3CC3-AFE1-E53A-C889A53E1B5C} - C:\ProgramData\savensHare\51f7e24a3bd12.dll

O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: Toolbar BHO - {d5a1d22b-9e17-454f-8ecd-83c578fb3983} - C:\PROGRA~1\INBOXA~2\bar\1.bin\1gbar.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: ToggleDU Toolbar - {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - C:\Program Files\ToggleDU\prxtbTog2.dll

O3 - Toolbar: Zynga Toolbar - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\prxtbZyng.dll

O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)

O3 - Toolbar: (no name) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - (no file)

O3 - Toolbar: InboxAce - {3775afd7-5921-4571-968f-85a631203d1c} - C:\Program Files\InboxAce_1g\bar\1.bin\1gbar.dll

O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll

O3 - Toolbar: Search-Results Toolbar - {15a0413e-9f45-4d45-9a75-2c20b15b5b51} - C:\PROGRA~1\BEARSH~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll

O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: VideoDownloadConverter - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup

O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe

O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -k

O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"

O4 - HKLM\..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe

O4 - HKLM\..\Run: [ODDPwr] "C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe"

O4 - HKLM\..\Run: [mwlDaemon] C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~1\BEARSH~1\Mediabar\Datamngr\DATAMN~1.EXE

O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

O4 - HKLM\..\Run: [MyPoi Monitor] "C:\Program Files\Common Files\MyPoiWorld Shared\MyPoiMonitor\MyPoiMonitor.exe"

O4 - HKLM\..\Run: [inboxAce Search Scope Monitor] "C:\PROGRA~1\INBOXA~2\bar\1.bin\1gsrchmn.exe" /m=2 /w /h

O4 - HKLM\..\Run: [inboxAce_1g Browser Plugin Loader] C:\PROGRA~1\INBOXA~2\bar\1.bin\1gbrmon.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [VideoDownloadConverter Search Scope Monitor] "C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h

O4 - HKLM\..\Run: [VideoDownloadConverter_4z Browser Plugin Loader] C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbrmon.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [FAHConsole] C:\Program Files\File Association Helper\FAHConsole.exe

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - Global Startup: Acer VCM.lnk = ?

O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK32.EXE

O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurigma/ImageUploader5.cab?20110324084242

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (file missing)

O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.1.2\ViProtocol.dll

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O20 - AppInit_DLLs: C:\PROGRA~1\BEARSH~1\Mediabar\Datamngr\datamngr.dll C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgfws.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files\Launch Manager\dsiwmis.exe

O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe

O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: InboxAceService (InboxAce_1gService) - COMPANYVERS_NAME - C:\PROGRA~1\INBOXA~2\bar\1.bin\1gbarsvc.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: lxbk_device - - C:\Windows\system32\lxbkcoms.exe

O23 - Service: MyWinLocker Service (MWLService) - EgisTec Inc. - C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe

O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

O23 - Service: Acer ODD Power Service (ODDPwrSvc) - Acer Incorporated - C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe

O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files\AVG PC TuneUp 2014\TuneUpUtilitiesService32.exe

O23 - Service: VideoDownloadConverterService (VideoDownloadConverter_4zService) - COMPANYVERS_NAME - C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbarsvc.exe

O23 - Service: vToolbarUpdater17.1.2 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe

--

End of file - 16890 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\RegClean Pro_DEFAULT.job

C:\Windows\tasks\RegClean Pro_UPDATES.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{15a0413e-9f45-4d45-9a75-2c20b15b5b51}]

Search-Results Toolbar - C:\PROGRA~1\BEARSH~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll [2012-12-05 89288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2631494D-FE09-AA8C-18A9-736FD93B96C6}]

SeaRich-NeWTaB - C:\ProgramData\SeaRich-NeWTaB\51f7e2c35d19d.dll [2013-07-30 118784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2818D4B8-0229-A419-787A-743E6AD7032C}]

saFe syave

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312f84fb-8970-4fd3-bddb-7012eac4afc9}]

Toolbar BHO - C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbar.dll [2013-10-08 712264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1}]

ToggleDU Toolbar - C:\Program Files\ToggleDU\prxtbTog2.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]

AVG Safe Search - C:\Program Files\AVG\AVG2012\avgssie.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}]

Zynga Toolbar - C:\Program Files\Zynga\prxtbZyng.dll [2011-03-28 176936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9359da42-06fb-46f2-9e4a-05c05b98a5ef}]

Search Assistant BHO - C:\Program Files\InboxAce_1g\bar\1.bin\1gSrcAs.dll [2013-01-20 62864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]

AVG Security Toolbar - C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll [2013-11-07 3353624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]

Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-10 194640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}]

DataMngr - C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\BROWSE~1.DLL [2013-02-17 89488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}]

Search Assistant BHO - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll [2013-10-08 62864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2C705F2-3CC3-AFE1-E53A-C889A53E1B5C}]

savensHare - C:\ProgramData\savensHare\51f7e24a3bd12.dll [2013-07-30 118784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]

Bing Bar Helper - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2013-03-31 1520776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d5a1d22b-9e17-454f-8ecd-83c578fb3983}]

Toolbar BHO - C:\PROGRA~1\INBOXA~2\bar\1.bin\1gbar.dll [2013-01-20 707728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - ToggleDU Toolbar - C:\Program Files\ToggleDU\prxtbTog2.dll [2011-01-17 175912]

{7b13ec3e-999a-4b70-b9cb-2617b8323822} - Zynga Toolbar - C:\Program Files\Zynga\prxtbZyng.dll [2011-03-28 176936]

{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]

{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}

{3775afd7-5921-4571-968f-85a631203d1c} - InboxAce - C:\Program Files\InboxAce_1g\bar\1.bin\1gbar.dll [2013-01-20 707728]

{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll [2013-11-07 3353624]

{15a0413e-9f45-4d45-9a75-2c20b15b5b51} - Search-Results Toolbar - C:\PROGRA~1\BEARSH~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll [2012-12-05 89288]

{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2013-03-31 1520776]

{48586425-6bb7-4f51-8dc6-38c88e3ebb58} - VideoDownloadConverter - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll [2013-10-08 712264]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-10 194640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]

"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-19 30192]

"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-04-11 7399968]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-02-06 1430824]

"LManager"=C:\Program Files\Launch Manager\LManager.exe [2009-04-09 1071624]

"BackupManagerTray"=C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2009-04-01 249600]

"LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2009-03-30 62760]

"Acer ePower Management"=C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [2009-04-08 440864]

"ODDPwr"=C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [2009-04-10 167936]

"mwlDaemon"=C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [2008-10-27 346672]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-08-25 136216]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-08-25 171032]

"Persistence"=C:\Windows\system32\igfxpers.exe [2010-08-25 170520]

"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

"DATAMNGR"=C:\PROGRA~1\BEARSH~1\Mediabar\Datamngr\DATAMN~1.EXE [2013-02-17 1684544]

"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 948440]

"MyPoi Monitor"=C:\Program Files\Common Files\MyPoiWorld Shared\MyPoiMonitor\MyPoiMonitor.exe [2010-03-26 2114808]

"InboxAce Search Scope Monitor"=C:\PROGRA~1\INBOXA~2\bar\1.bin\1gsrchmn.exe [2013-01-20 42536]

"InboxAce_1g Browser Plugin Loader"=C:\PROGRA~1\INBOXA~2\bar\1.bin\1gbrmon.exe [2013-01-20 30096]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

"vProt"=C:\Program Files\AVG Secure Search\vprot.exe [2013-11-07 2420248]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2013-05-01 421888]

"ApnUpdater"=C:\Program Files\Ask.com\Updater\Updater.exe [2013-03-31 1646216]

"AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2013-10-07 4908592]

"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2013-08-16 152392]

"VideoDownloadConverter Search Scope Monitor"=C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe [2013-10-08 44784]

"VideoDownloadConverter_4z Browser Plugin Loader"=C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbrmon.exe [2013-10-08 30096]

"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

"FAHConsole"=C:\Program Files\File Association Helper\FAHConsole.exe [2013-09-26 239288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]

"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2013-02-25 3288856]

"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-07-01 68856]

"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]

C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]

C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-02-12 186904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

C:\Program Files\iTunes\iTunesHelper.exe [2013-08-16 152392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2012-03-08 4280184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nikon Transfer Monitor]

C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe [2008-09-30 485208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

C:\Program Files\Skype\Phone\Skype.exe /nosplash /minimized []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel]

C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-04-11 1833504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]

C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2012-08-28 247768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]

C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2008-03-25 214360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Orion.lnk]

[]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Acer VCM.lnk - C:\Program Files\Acer\Acer VCM\AcerVCM.exe

WinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK32.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="C:\PROGRA~1\BEARSH~1\Mediabar\Datamngr\datamngr.dll C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2010-08-25 228864]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.cvid"=iccvid.dll

"MSVideo8"=VfWWDM32.dll

"msacm.siren"=sirenacm.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2013-11-25 09:31:33 ----D---- C:\Program Files\trend micro

2013-11-25 09:31:32 ----D---- C:\rsit

2013-11-24 18:55:12 ----D---- C:\Program Files\Adobe Photoshop CC 14.0

2013-11-24 18:25:00 ----D---- C:\Windows\LastGood

2013-11-24 18:16:56 ----A---- C:\Windows\system32\authuitu.dll

2013-11-24 18:16:52 ----A---- C:\Windows\system32\uxtuneup.dll

2013-11-24 18:09:29 ----A---- C:\Windows\system32\TURegOpt.exe

2013-11-24 18:08:21 ----D---- C:\Program Files\AVG PC TuneUp 2014

2013-11-24 18:06:14 ----D---- C:\Users\admin\AppData\Roaming\Philipp Winterberg

2013-11-24 18:06:05 ----D---- C:\Users\admin\AppData\Roaming\OpenCandy

2013-11-24 18:06:05 ----D---- C:\Program Files\RAR File Open Knife - Free Opener

2013-11-24 17:20:19 ----D---- C:\Program Files\File Association Helper

2013-11-24 17:18:37 ----D---- C:\ProgramData\WinZip

2013-11-24 17:18:26 ----D---- C:\Program Files\WinZip

2013-11-24 17:15:05 ----D---- C:\Program Files\AVG Internet Security 9.0.697 (License valid till 2018) [M8]

2013-11-14 03:31:22 ----A---- C:\Windows\system32\mshtmled.dll

2013-11-14 03:31:21 ----A---- C:\Windows\system32\vbscript.dll

2013-11-14 03:31:19 ----A---- C:\Windows\system32\jsproxy.dll

2013-11-14 03:31:19 ----A---- C:\Windows\system32\ieui.dll

2013-11-14 03:31:18 ----A---- C:\Windows\system32\ieUnatt.exe

2013-11-14 03:31:17 ----A---- C:\Windows\system32\wininet.dll

2013-11-14 03:31:17 ----A---- C:\Windows\system32\msfeeds.dll

2013-11-14 03:31:16 ----A---- C:\Windows\system32\jscript.dll

2013-11-14 03:31:15 ----A---- C:\Windows\system32\url.dll

2013-11-14 03:31:15 ----A---- C:\Windows\system32\jscript9.dll

2013-11-14 03:31:14 ----A---- C:\Windows\system32\iertutil.dll

2013-11-14 03:31:12 ----A---- C:\Windows\system32\urlmon.dll

2013-11-14 03:31:09 ----A---- C:\Windows\system32\ieframe.dll

2013-11-14 03:31:08 ----A---- C:\Windows\system32\mshtml.dll

2013-11-13 05:31:25 ----A---- C:\Windows\system32\gdi32.dll

2013-11-13 05:31:14 ----A---- C:\Windows\system32\crypt32.dll

2013-11-13 05:31:07 ----A---- C:\Windows\system32\IKEEXT.DLL

2013-11-13 05:31:06 ----A---- C:\Windows\system32\FWPUCLNT.DLL

2013-11-10 16:31:35 ----D---- C:\Program Files\stinger

2013-11-06 08:22:47 ----D---- C:\Program Files\MSECache

2013-10-26 11:05:18 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}

2013-10-22 06:26:41 ----D---- C:\ProgramData\Oracle

2013-10-21 22:11:34 ----A---- C:\Windows\system32\javaws.exe

2013-10-21 22:11:23 ----A---- C:\Windows\system32\WindowsAccessBridge.dll

2013-10-21 22:11:23 ----A---- C:\Windows\system32\javaw.exe

2013-10-21 22:11:22 ----A---- C:\Windows\system32\java.exe

2013-10-11 12:33:33 ----A---- C:\Windows\system32\DWrite.dll

2013-10-11 12:33:31 ----A---- C:\Windows\system32\FntCache.dll

2013-10-11 12:33:30 ----A---- C:\Windows\system32\d3d10warp.dll

2013-10-11 12:33:30 ----A---- C:\Windows\system32\d3d10level9.dll

2013-10-11 12:33:29 ----A---- C:\Windows\system32\d3d10_1core.dll

2013-10-11 12:33:29 ----A---- C:\Windows\system32\d2d1.dll

2013-10-11 12:33:28 ----A---- C:\Windows\system32\d3d10core.dll

2013-10-11 12:33:28 ----A---- C:\Windows\system32\d3d10.dll

2013-10-11 12:33:27 ----A---- C:\Windows\system32\d3d10_1.dll

2013-10-11 12:33:19 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys

2013-10-11 12:33:18 ----A---- C:\Windows\system32\cdd.dll

2013-10-11 12:33:16 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2013-10-11 12:33:09 ----A---- C:\Windows\system32\win32k.sys

2013-10-11 12:31:29 ----A---- C:\Windows\system32\drivers\usbhub.sys

2013-10-11 12:31:28 ----A---- C:\Windows\system32\drivers\usbd.sys

2013-10-11 12:31:28 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2013-10-11 12:31:27 ----A---- C:\Windows\system32\drivers\usbuhci.sys

2013-10-11 12:31:27 ----A---- C:\Windows\system32\drivers\usbport.sys

2013-10-11 12:31:27 ----A---- C:\Windows\system32\drivers\usbehci.sys

2013-10-11 12:31:01 ----A---- C:\Windows\system32\drivers\usbvideo.sys

2013-10-11 12:30:27 ----A---- C:\Windows\system32\drivers\Wdf01000.sys

2013-10-11 12:30:03 ----A---- C:\Windows\system32\atmfd.dll

2013-10-11 12:30:01 ----A---- C:\Windows\system32\atmlib.dll

2013-10-11 12:29:43 ----A---- C:\Windows\system32\comctl32.dll

2013-10-11 12:27:52 ----A---- C:\Windows\system32\drivers\usbscan.sys

2013-10-11 12:27:51 ----A---- C:\Windows\system32\drivers\hidparse.sys

2013-10-08 18:50:39 ----D---- C:\Program Files\VideoDownloadConverter

2013-10-08 18:49:25 ----D---- C:\Program Files\VideoDownloadConverter_4z

2013-09-27 09:53:06 ----A---- C:\Windows\system32\drivers\MpFilter.sys

2013-09-26 09:52:43 ----D---- C:\Users\admin\AppData\Roaming\AVG2014

2013-09-26 09:35:10 ----D---- C:\ProgramData\AVG2014

2013-09-25 19:57:14 ----A---- C:\Windows\system32\drivers\avgdiskx.sys

2013-09-19 10:17:47 ----D---- C:\ProgramData\tmp

2013-09-19 10:16:06 ----D---- C:\Program Files\ALDI Foto Service

2013-09-12 08:59:34 ----A---- C:\Windows\system32\themeui.dll

2013-09-10 21:11:44 ----A---- C:\Windows\system32\drivers\avgidsshimx.sys

2013-09-09 17:00:41 ----D---- C:\Program Files\OLYMPUS

2013-09-09 17:00:35 ----D---- C:\Program Files\DIFX

2013-09-08 21:12:16 ----A---- C:\Windows\system32\drivers\avgrkx86.sys

2013-09-02 09:39:32 ----A---- C:\Windows\system32\drivers\avgldx86.sys

2013-09-02 09:28:06 ----A---- C:\Windows\system32\drivers\avgidshx.sys

2013-09-02 09:28:04 ----A---- C:\Windows\system32\drivers\avgidsdriverx.sys

2013-09-02 09:28:00 ----A---- C:\Windows\system32\drivers\avglogx.sys

2013-08-31 18:24:09 ----A---- C:\Windows\system32\WMVDECOD.DLL

======List of files/folders modified in the last 3 months======

2013-11-25 09:31:46 ----D---- C:\Windows\Prefetch

2013-11-25 09:31:34 ----D---- C:\Windows\Temp

2013-11-25 09:31:33 ----RD---- C:\Program Files

2013-11-25 08:13:46 ----D---- C:\ProgramData\MFAData

2013-11-24 19:47:19 ----SHD---- C:\System Volume Information

2013-11-24 19:00:40 ----D---- C:\Windows\System32

2013-11-24 19:00:40 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-11-24 19:00:39 ----D---- C:\Windows\inf

2013-11-24 18:31:27 ----D---- C:\Windows

2013-11-24 18:25:04 ----D---- C:\Windows\system32\drivers

2013-11-24 18:23:22 ----D---- C:\ProgramData\MyPoiWorld

2013-11-24 18:18:26 ----SHD---- C:\Config.Msi

2013-11-24 18:17:05 ----SHD---- C:\Windows\Installer

2013-11-24 18:12:33 ----D---- C:\Program Files\AVG

2013-11-24 18:12:32 ----HD---- C:\ProgramData

2013-11-24 18:12:27 ----D---- C:\Windows\system32\catroot

2013-11-24 18:08:53 ----D---- C:\Users\admin\AppData\Roaming\AVG

2013-11-24 18:08:02 ----D---- C:\ProgramData\AVG

2013-11-24 15:01:39 ----D---- C:\Windows\system32\Tasks

2013-11-24 09:30:26 ----D---- C:\Windows\SoftwareDistribution

2013-11-23 20:31:11 ----D---- C:\Program Files\Acer GameZone

2013-11-23 19:41:16 ----D---- C:\Program Files\Amazon

2013-11-23 19:34:12 ----D---- C:\Program Files\Google

2013-11-21 09:58:45 ----RD---- C:\Users

2013-11-19 13:27:34 ----D---- C:\Windows\system32\catroot2

2013-11-19 11:21:30 ----N---- C:\Windows\system32\MpSigStub.exe

2013-11-18 13:04:00 ----D---- C:\Windows\system32\config

2013-11-18 11:53:12 ----D---- C:\ProgramData\AVG Secure Search

2013-11-15 13:08:23 ----D---- C:\Program Files\Microsoft Security Client

2013-11-14 08:18:47 ----D---- C:\Windows\Debug

2013-11-14 04:14:02 ----D---- C:\Windows\rescache

2013-11-14 03:51:41 ----D---- C:\Windows\system32\migration

2013-11-14 03:51:40 ----D---- C:\Program Files\Internet Explorer

2013-11-14 03:51:39 ----D---- C:\Windows\system32\nl-NL

2013-11-14 03:32:12 ----D---- C:\Windows\winsxs

2013-11-14 03:31:03 ----D---- C:\ProgramData\Microsoft Help

2013-11-14 03:17:52 ----D---- C:\Windows\system32\MRT

2013-11-14 03:10:38 ----A---- C:\Windows\system32\mrt.exe

2013-11-08 07:23:02 ----D---- C:\temp

2013-11-07 14:13:28 ----D---- C:\Program Files\AVG Secure Search

2013-11-06 08:19:03 ----SD---- C:\Windows\Downloaded Program Files

2013-10-22 06:38:56 ----D---- C:\Windows\AppPatch

2013-10-21 22:11:22 ----D---- C:\Program Files\Java

2013-10-13 16:09:19 ----D---- C:\Windows\Microsoft.NET

2013-10-13 16:08:43 ----RSD---- C:\Windows\assembly

2013-10-13 15:47:07 ----D---- C:\Program Files\Microsoft Silverlight

2013-10-09 16:55:57 ----A---- C:\Windows\system32\FlashPlayerApp.exe

2013-10-06 17:08:04 ----D---- C:\Users\admin\AppData\Roaming\gtk-2.0

2013-09-28 15:23:03 ----D---- C:\ProgramData\hps

2013-09-26 12:56:27 ----D---- C:\ProgramData\saFe syave

2013-09-19 14:55:37 ----D---- C:\Program Files\Fotoservice

2013-09-16 14:55:49 ----D---- C:\Program Files\Blokker Fotoservice

2013-09-07 19:04:34 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1

2013-09-07 19:04:33 ----D---- C:\Program Files\iTunes

2013-09-07 19:03:27 ----D---- C:\Program Files\iPod

2013-09-06 11:48:51 ----D---- C:\ProgramData\savensHare

2013-08-30 18:06:08 ----D---- C:\ProgramData\Xerox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2013-09-02 145720]

R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2013-09-02 223032]

R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2013-08-20 102200]

R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2013-09-08 27448]

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-02-12 329752]

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 214696]

R0 UBHelper;UBHelper; C:\Windows\system32\drivers\UBHelper.sys [2008-01-31 13824]

R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2013-09-25 120632]

R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2013-09-02 209208]

R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2013-09-10 22840]

R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2013-09-02 176952]

R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2013-08-01 193848]

R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2013-11-07 37664]

R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2008-01-21 95744]

R2 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2008-10-09 19504]

R2 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2008-10-09 16432]

R2 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2008-10-09 59952]

R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2009-03-26 21000]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2010-08-25 9024512]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-04-11 2358112]

R3 IntcHdmiAddService;Intel® High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2008-09-22 112128]

R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C60x86.sys [2009-02-22 49664]

R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]

R3 NETw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-09-25 3666432]

R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\Drivers\NTIDrvr.sys [2009-03-26 15360]

R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-21 9216]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-02-06 205232]

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\AVG PC TuneUp 2014\TuneUpUtilitiesDriver32.sys [2013-09-18 12320]

R3 UMPass;Microsoft UMPass-stuurprogramma; C:\Windows\system32\DRIVERS\umpass.sys [2008-01-21 7680]

R3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]

R3 usbvideo;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]

R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]

S1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6x.sys []

S3 AVFSFilter;AVFSFilter; C:\Windows\system32\DRIVERS\avfsfilter.sys []

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712]

S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]

S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 39272]

S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]

S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-11-04 102912]

S3 irsir;Microsoft-stuurprogramma voor serieel infraroodapparaat; C:\Windows\system32\DRIVERS\irsir.sys [2008-01-21 20992]

S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]

S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]

S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]

S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]

S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 104768]

S3 NSCIRDA;NSC Infrared Device Driver; C:\Windows\system32\DRIVERS\nscirda.sys [2008-01-21 30720]

S3 RTSTOR;Realtek USB 2.0 Card Reader; C:\Windows\system32\drivers\RTSTOR.SYS [2008-12-02 62976]

S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]

S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2012-02-15 43520]

S3 WinUsb;WinUSB-service; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-07-14 34944]

S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]

S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]

S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]

S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2013-10-03 3538480]

R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2013-09-25 301152]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]

R2 DsiWMIService;Dritek WMI Service; C:\Program Files\Launch Manager\dsiwmis.exe [2009-04-11 117256]

R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-04-08 703008]

R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-02-12 354840]

R2 InboxAce_1gService;InboxAceService; C:\PROGRA~1\INBOXA~2\bar\1.bin\1gbarsvc.exe [2013-01-20 42504]

R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 lxbk_device;lxbk_device; C:\Windows\system32\lxbkcoms.exe [2008-02-19 537256]

R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]

R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 22208]

R2 MWLService;MyWinLocker Service; C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2008-10-27 306736]

R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-04-01 54528]

R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-09-23 144632]

R2 ODDPwrSvc;Acer ODD Power Service; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [2009-04-10 114688]

R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-08-06 75136]

R2 RS_Service;Raw Socket Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [2009-02-05 237568]

R2 SeaPort;SeaPort; C:\Program Files\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]

R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2012-08-28 92632]

R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files\AVG PC TuneUp 2014\TuneUpUtilitiesService32.exe [2013-10-30 1739064]

R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-21 21504]

R2 VideoDownloadConverter_4zService;VideoDownloadConverterService; C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbarsvc.exe [2013-10-08 42504]

R2 vToolbarUpdater17.1.2;vToolbarUpdater17.1.2; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe [2013-11-07 1734680]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]

R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 553288]

S2 avgfws;AVG Firewall; C:\Program Files\AVG\AVG2014\avgfws.exe [2013-09-25 1358944]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate;Google Updateservice (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-14 135664]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09 257416]

S3 BBSvc;Bing Bar Update Service; C:\Program Files\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]

S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840]

S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-19 30192]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-14 135664]

S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-24 194032]

S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]

S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 280288]

S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-09-23 50424]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]

S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites

Zelde probleem
Dat is heel logisch, want dit is enkel een analyse van de berg rotzooi die op je PC is terechtgekomen. Nu beginnen we pas aan de verwijdering van die troep (zie de lange lijst besmettingen in het invulvenster) ;-)

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
firefoxlook; 
emptyfolderscheck;delete 
{00000000-6E41-4FD3-8538-502F5495E5FC};c
 C:\Program Files\Ask.com;u
 {5fdb0cd8-5760-44d1-8d13-a78bf558c3c7};c
 C:\Program Files\InboxAce_1g;fs
 {93a3111f-4f74-4ed8-895e-d9708497629e};c
 C:\Program Files\VideoDownloadConverter_4z;fs
 {15a0413e-9f45-4d45-9a75-2c20b15b5b51};c
 {2631494D-FE09-AA8C-18A9-736FD93B96C6};c
 C:\ProgramData\SeaRich-NeWTaB;fs
 {2818D4B8-0229-A419-787A-743E6AD7032C};c
 {312f84fb-8970-4fd3-bddb-7012eac4afc9};c
 {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1};c
 {7b13ec3e-999a-4b70-b9cb-2617b8323822};c
 C:\Program Files\Zynga;fs
 {9359da42-06fb-46f2-9e4a-05c05b98a5ef};c
 {95B7759C-8C7F-4BF1-B163-73684A933233};c
 C:\Program Files\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll;f
 {B939CF93-F2CB-443d-956C-DC523D85C9DB};c
 {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c};c
 {c547c6c2-561b-4169-a2a5-20ba771ca93b};c
 {D2C705F2-3CC3-AFE1-E53A-C889A53E1B5C};c
 C:\ProgramData\savensHare;fs
 {d2ce3e00-f94a-4740-988e-03dc2f38c34f};c
 C:\Program Files\Microsoft\BingBar;fs
 {D4027C7F-154A-4066-A1AD-4243D8127440};c
 {d5a1d22b-9e17-454f-8ecd-83c578fb3983};c
 {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1};c
 C:\Program Files\ToggleDU;fs
 {7b13ec3e-999a-4b70-b9cb-2617b8323822};c
 {8dcb7100-df86-4384-8842-8fa844297b3f};c
 {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c};c
 {3775afd7-5921-4571-968f-85a631203d1c};c
 {95B7759C-8C7F-4BF1-B163-73684A933233};c
 {15a0413e-9f45-4d45-9a75-2c20b15b5b51};c
 {D4027C7F-154A-4066-A1AD-4243D8127440};c
 {48586425-6bb7-4f51-8dc6-38c88e3ebb58};c
 DATAMNGR;s
 InboxAce Search Scope Monitor;s
 InboxAce_1g Browser Plugin Loader;s
 ApnUpdater;s
 {08B0E5C0-4FCB-11CF-AAA5-00401C608501};c
 {F274614C-63F8-47D5-A4D1-FBDDE494F8D1};c
 InboxAce_1gService;s
 VideoDownloadConverter_4zService;s
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{15a0413e-9f45-4d45-9a75-2c20b15b5b51}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2631494D-FE09-AA8C-18A9-736FD93B96C6}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2818D4B8-0229-A419-787A-743E6AD7032C}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312f84fb-8970-4fd3-bddb-7012eac4afc9}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9359da42-06fb-46f2-9e4a-05c05b98a5ef}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2C705F2-3CC3-AFE1-E53A-C889A53E1B5C}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d5a1d22b-9e17-454f-8ecd-83c578fb3983}];r
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run];r
 "DATAMNGR"=-;r
 "InboxAce Search Scope Monitor"=-;r
 "InboxAce_1g Browser Plugin Loader"=-;r
 "ApnUpdater"=-;r
 "VideoDownloadConverter Search Scope Monitor"=-;r
 "VideoDownloadConverter_4z Browser Plugin Loader"=-;r
 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r
 "AppInit_DLLs"=-;r
 C:\Users\admin\AppData\Roaming\OpenCandy;fs
 C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308};fs
 C:\Program Files\VideoDownloadConverter;fs
 C:\Program Files\VideoDownloadConverter_4z;fs
 C:\ProgramData\saFe syave;fs
 C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1;fs
 C:\ProgramData\savensHare;fs
 BBSvc;s
 startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • HijackThis Log
  • Firefox Look
  • Chrome Look
  • Firefox Defaults
  • Reset Chrome
  • IE Defaults
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Dit heb ik nog gevonden !

oek.exe Version 4.0.0.4 Updated 19-September-2013

Tool run by Van Ham on vr 20/09/2013 at 15:58:45,85.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Van Ham\Desktop\zoek.exe [script inserted]

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\VANHAM~1\AppData\Local\Temp ====

2013-09-19 16:00:46 067D8DDFBF8B8F0EAE9FBC719FD45E8D 224840 ------w- C:\Users\Van Ham\AppData\Local\Temp\jna-Van Ham\jna2274423161501129336.dll

2013-09-18 19:24:52 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\erunt\ERUNT.EXE

====== Java Cache =====

====== C:\Windows\SysWOW64 =====

2013-09-18 11:54:26 6BEE003DB3FEF04151F614303EBB1E7B 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2013-09-11 19:52:48 06EEAD5864F357ADC618F65A2F2C5156 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb

2013-09-11 19:52:47 BCA4913CDE903B4BDEEDAD1D6DBF5E2A 391168 ----a-w- C:\Windows\SysWOW64\ieui.dll

2013-09-11 19:52:46 7E540E07B97DCBCF8F76FA743B486BF2 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll

2013-09-11 19:52:46 43852485D0B78C021A47E9548A4CFFE0 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-09-11 19:52:46 3B74EADF1B70251D3CDB87BC338DC34D 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll

2013-09-11 19:52:46 281A720B0A984E325599EE1F0342E8FB 2048000 ----a-w- C:\Windows\SysWOW64\iertutil.dll

2013-09-11 19:52:46 000B55B43992179E69C2E83CCB8F1126 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll

2013-09-11 19:52:44 2EC47CF6A36F6A83BB8B98C1425B4D41 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll

2013-09-11 19:52:44 00531B52C9468929F2C651B3BCADCBC9 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll

2013-09-11 19:52:43 E5D91D6B81A293AB6854CAD112240A4B 1141248 ----a-w- C:\Windows\SysWOW64\urlmon.dll

2013-09-11 19:52:43 79DC575FE905D5DD5C5A4C5993A7C7F9 2876928 ----a-w- C:\Windows\SysWOW64\jscript9.dll

2013-09-11 19:52:41 7C63629508BB87227C3C861355A155B4 39424 ----a-w- C:\Windows\SysWOW64\jsproxy.dll

2013-09-11 19:52:41 535F6263035F2530A62D5D64EF6E73D3 1767936 ----a-w- C:\Windows\SysWOW64\wininet.dll

2013-09-11 19:52:40 4FCC53B82D91607FB9AE24E617108BB2 13761024 ----a-w- C:\Windows\SysWOW64\ieframe.dll

2013-09-11 19:52:37 5D2D7E7850CE963C2F401D4DEE7BB32A 14332928 ----a-w- C:\Windows\SysWOW64\mshtml.dll

2013-09-11 13:12:46 5D0325AEF9DE48330908EC2E2DB0359F 3913664 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe

2013-09-11 13:12:46 1A9E4EE88B31750E5CA207424143F99C 3968960 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe

2013-09-11 13:12:45 73EF27E157855E3CB18B021BC9622E4C 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll

2013-09-11 13:12:45 57EC6102661E0E1D156C1EC251E7CAF8 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll

2013-09-11 13:12:45 365A5034093AD9E04F433046C4CDF6AB 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll

2013-09-11 13:12:45 1B7343C3765638D4D17CB925F84F8ABE 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll

2013-09-11 13:12:45 0184CC60AB10C8124D69AFB332C6AF1C 1292192 ----a-w- C:\Windows\SysWOW64\ntdll.dll

2013-09-11 13:12:43 B83592F532FB320F0001F8099ECC192B 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe

2013-09-11 13:12:43 8489D083E46BFD2096A6CECFF6C7C227 2048 ----a-w- C:\Windows\SysWOW64\user.exe

2013-09-11 13:12:43 812A161FC470FA832C3F0CC3D7ACA2F9 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll

2013-09-11 13:12:43 3808FD7522646BEB1CCEA94C45D4228C 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe

2013-09-11 13:12:41 E02781D4871844DCD30DF1D69A650F78 12872704 ----a-w- C:\Windows\SysWOW64\shell32.dll

2013-09-11 13:12:41 2C4A87CA8C00E98EFDCFA2E8EC9A3503 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2013-09-11 19:52:48 B98DDA3209E252884F6F9431A43424B3 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb

2013-09-11 19:52:47 C016B4170A836CBA9DF98F02CD055C1B 526336 ----a-w- C:\Windows\Sysnative\ieui.dll

2013-09-11 19:52:46 91573C042B3D9163F29CB1E1E51FF51A 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll

2013-09-11 19:52:46 73BA149C61D2B164E25E1455D9D7F648 89600 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe

2013-09-11 19:52:46 7248896237039BBC477DBB9C62C37FCB 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll

2013-09-11 19:52:46 390231BA1644AFE0ADD5A7F186EF6FA4 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll

2013-09-11 19:52:46 3581F49B7B32B4514FFD9481ED8BAE61 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe

2013-09-11 19:52:45 8E9898BF21FF4232EE07BD5D1D1C6281 2647040 ----a-w- C:\Windows\Sysnative\iertutil.dll

2013-09-11 19:52:44 DCAE7117A97F5922B853981D6D491D71 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll

2013-09-11 19:52:44 CF57F63E6878BEA029B1098D03143AED 855552 ----a-w- C:\Windows\Sysnative\jscript.dll

2013-09-11 19:52:43 C6DBD79D39061F189A3F1055D44E1590 3959296 ----a-w- C:\Windows\Sysnative\jscript9.dll

2013-09-11 19:52:42 35552F806607A86E65B6047BF695D34B 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll

2013-09-11 19:52:41 AAFA952E774DDDB0956D3BDFAE5B5B99 2241024 ----a-w- C:\Windows\Sysnative\wininet.dll

2013-09-11 19:52:41 537394CF1A70BFFB0B3C7510404CF91C 53248 ----a-w- C:\Windows\Sysnative\jsproxy.dll

2013-09-11 19:52:40 08F6335D55310C334B13B9616E61D13D 15404544 ----a-w- C:\Windows\Sysnative\ieframe.dll

2013-09-11 19:52:39 CC4AE7E2ECAEE7612B3C0D3AB302375C 19246592 ----a-w- C:\Windows\Sysnative\mshtml.dll

2013-09-11 13:12:46 63B563F1FC047AB3E21530DBBE773260 5550528 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe

2013-09-11 13:12:45 F0970A4BC8395659C22BF53D0FADF16F 112640 ----a-w- C:\Windows\Sysnative\smss.exe

2013-09-11 13:12:45 D8973E71F1B35CD3F3DEA7C12D49D0F0 1161216 ----a-w- C:\Windows\Sysnative\kernel32.dll

2013-09-11 13:12:45 BF95EA5809E3BBF55370F7CB309FEBD0 338432 ----a-w- C:\Windows\Sysnative\conhost.exe

2013-09-11 13:12:45 B22C00ED0491FD7B8803D7DDE2849F4C 424448 ----a-w- C:\Windows\Sysnative\KernelBase.dll

2013-09-11 13:12:45 AA913C4E63B6F3F52E20BC9932205BCC 243712 ----a-w- C:\Windows\Sysnative\wow64.dll

2013-09-11 13:12:45 9209EA3F29DFC339A87EFD604E035FE4 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll

2013-09-11 13:12:45 88EDD0B34EED542745931E581AD21A32 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll

2013-09-11 13:12:45 659D71E315FB40FFE9AD46CB0588BEB1 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll

2013-09-11 13:12:45 5B79D52A0388D8DEC5BF68411EA05A02 1732032 ----a-w- C:\Windows\Sysnative\ntdll.dll

2013-09-11 13:12:45 49CEA3942A2B99A906EAFC94B853EDBD 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll

2013-09-11 13:12:45 216BABD555BC550952320EEA89C25DDF 43520 ----a-w- C:\Windows\Sysnative\csrsrv.dll

2013-09-11 13:12:43 70A1D465390C393AA118D9764E065B06 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll

2013-09-11 13:12:43 42A88ECF903BFE11411D188DCE830E84 3155456 ----a-w- C:\Windows\Sysnative\win32k.sys

2013-09-11 13:12:42 AD662B34B161198B9D66A564EDDA7D43 14172672 ----a-w- C:\Windows\Sysnative\shell32.dll

2013-09-11 13:12:41 23B001185B7C3CB1F4BDEB143E6B45B7 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll

====== C:\Windows\Sysnative\drivers =====

2013-09-14 15:04:08 A15860E920B02C9A7CE8F3A6C2FF1E3A 560184 ----a-w- C:\Windows\Sysnative\drivers\sptd.sys

2013-09-11 13:12:46 059F00DEF82BF41E433B7ED465847726 155584 ----a-w- C:\Windows\Sysnative\drivers\ataport.sys

====== C:\Windows\Tasks ======

2013-09-15 08:29:49 F49E63941A2454BA2B03CB37B7BA3D86 3460 ----a-w- C:\Windows\Sysnative\Tasks\{B70685B3-9A70-428B-8DFF-50C75FF00B54}

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-09-18 10:27:18 -------- d-----w- C:\Program Files\trend micro

======= C:\Program Files (x86) =====

2013-09-18 15:49:49 -------- d-----w- C:\Program Files (x86)\QuickPar

2013-09-18 11:54:39 -------- d-----w- C:\Program Files (x86)\Common Files\Java

2013-09-15 08:15:05 -------- d-----w- C:\Program Files (x86)\GrabIt

2013-09-13 12:52:00 -------- d-----w- C:\Program Files (x86)\MakeMKV

2013-09-01 09:11:29 -------- d-----w- C:\Program Files (x86)\theRenamer

2013-08-27 08:43:38 -------- d-----w- C:\Program Files (x86)\Spotnet

======= C: =====

====== C:\Users\Van Ham\AppData\Roaming ======

2013-09-18 18:59:15 -------- d-----w- C:\Users\Van Ham\AppData\Local\Temp

2013-09-18 15:50:35 -------- d-----w- C:\Users\Van Ham\AppData\Local\QuickPar

2013-09-18 15:49:49 -------- d-----w- C:\Users\Van Ham\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar

2013-09-15 08:19:50 -------- d-----w- C:\Users\Van Ham\AppData\Roaming\GrabIt

2013-09-14 17:46:01 -------- d-----w- C:\Users\Van Ham\AppData\Local\GHISLER

2013-09-13 12:52:01 -------- d-----w- C:\Users\Van Ham\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV

2013-09-03 16:09:24 -------- d-----w- C:\Users\Van Ham\AppData\Local\sabnzbd

2013-09-01 09:11:31 -------- d-----w- C:\Users\Van Ham\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\theRenamer

2013-08-27 08:43:18 -------- d-----w- C:\Users\Van Ham\AppData\Roaming\Spotnet

2013-08-26 10:04:59 -------- d-----w- C:\Users\Van Ham\AppData\Local\Spotnet

====== C:\Users\Van Ham ======

2013-09-19 11:07:39 5C7F463E437F271F849D5A433021A512 3812352 ----a-w- C:\Users\Van Ham\pc-onderhoud\RogueKillerX64.exe

2013-09-19 10:58:43 BF0360049B43B7D11D48982E27FABDF5 1029675 ----a-w- C:\Users\Van Ham\pc-onderhoud\JRT.exe

2013-09-19 10:54:21 6A6CE9A0410A29061FCF6CAD8DE0387C 1039554 ----a-w- C:\Users\Van Ham\pc-onderhoud\adwcleaner.exe

2013-09-18 15:49:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickPar

2013-09-18 11:56:11 -------- d-----w- C:\ProgramData\Oracle

2013-09-18 11:54:26 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2013-09-15 08:15:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GrabIt

2013-09-13 12:53:50 -------- d-----w- C:\Users\Van Ham\.MakeMKV

2013-08-27 08:43:38 -------- d-----w- C:\ProgramData\Spotnet

2013-08-27 08:43:35 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotnet

====== C: exe-files ==

2013-09-19 11:07:55 BABAB16E62CEB21725C36BE11DC3975E 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-806606645-1978654659-1127170122-1000\$I6VNXRI.exe

2013-09-19 11:07:39 5C7F463E437F271F849D5A433021A512 3812352 ----a-w- C:\Users\Van Ham\pc-onderhoud\RogueKillerX64.exe

2013-09-19 10:59:59 A74B0D5C2380422E96553606BB5ED56B 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-806606645-1978654659-1127170122-1000\$IC18XAD.exe

2013-09-19 10:59:27 71418611C5F351D12BA47C9FB33D06C7 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-806606645-1978654659-1127170122-1000\$IRVFBYI.exe

2013-09-19 10:58:43 BF0360049B43B7D11D48982E27FABDF5 1029675 ----a-w- C:\Users\Van Ham\pc-onderhoud\JRT.exe

2013-09-19 10:54:21 6A6CE9A0410A29061FCF6CAD8DE0387C 1039554 ----a-w- C:\Users\Van Ham\pc-onderhoud\adwcleaner.exe

2013-09-19 09:47:59 0B1CD71CE29E8123A664A5B40153D2FE 1915744 ----a-w- C:\Users\Van Ham\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\29.0.1547.76\29.0.1547.76_29.0.1547.66_chrome_updater.exe

2013-09-18 19:24:52 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\erunt\ERUNT.EXE

2013-09-18 15:49:49 BF31D1707F7E1D2F7903122ACD1C36AF 57273 ----a-w- C:\Program Files (x86)\QuickPar\uninst.exe

2013-09-18 11:54:23 F744671F237351A00580DEBDA7B13C58 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\servertool.exe

2013-09-18 11:54:23 DE16D31DDE767A35C4727D4F5C4F5165 49064 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe

2013-09-18 11:54:23 8B060210811F4C88280BB1FE097C8D18 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\policytool.exe

2013-09-18 11:54:23 85369335B06BA3EF80DBB2463BD75FC6 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmid.exe

2013-09-18 11:54:23 79E6E98DD340052FB62E85FC5C0F40B9 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe

2013-09-18 11:54:23 33329EE40961C9F75753135EEFEE5215 16296 ----a-w- C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe

2013-09-18 11:54:23 20121F1F03EA62AE7DBE20A5C065E62B 146344 ----a-w- C:\Program Files (x86)\Java\jre7\bin\unpack200.exe

2013-09-18 11:54:22 F07B981F68160C8932BD7E2A056E3542 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\kinit.exe

2013-09-18 11:54:22 ED2542D50B46FACB647E9ACE15376F71 52648 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe

2013-09-18 11:54:22 A5937B2A94424CF1B13A4AD503AF6B2E 182696 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jqs.exe

2013-09-18 11:54:22 8BAE06DA395B81D5BB9D335719B4C71F 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\keytool.exe

2013-09-18 11:54:22 879FBD4327A0411AD856CD256E05ACC8 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\pack200.exe

2013-09-18 11:54:22 46D4A740A9CD31274B372AB31FDAB767 16296 ----a-w- C:\Program Files (x86)\Java\jre7\bin\orbd.exe

2013-09-18 11:54:22 3F17C8C96551E1DFADAD909282D7A53B 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ktab.exe

2013-09-18 11:54:22 14478E73336D593E396FEE603118DF73 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\klist.exe

2013-09-18 11:54:21 FE62A080B6B3846FB18F04B488BF686F 66984 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javacpl.exe

2013-09-18 11:54:21 FB81754A3C79379C3882128875C8C948 48552 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe

2013-09-18 11:54:21 EC94122E6DCB6E731D8513A89AC9CF12 175016 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaw.exe

2013-09-18 11:54:21 EC2A0F271C0FD4AD57B137845577F539 175016 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java.exe

2013-09-18 11:54:21 ACA17F8E1F9E8891DE15E2527D8D74D0 264616 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaws.exe

2013-09-18 11:54:21 20238A6FE9CA82DB6AA17CB08F4906CF 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe

2013-09-18 10:27:19 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Van Ham.exe

2013-09-15 08:15:06 E6FDBB66A816B3D1D96A811069442AC8 229376 ----a-w- C:\Program Files (x86)\GrabIt\external\par2\par2.exe

2013-09-15 08:15:06 578DA05D920D3C450E3F8BA5ECC2AFB5 198144 ----a-w- C:\Program Files (x86)\GrabIt\external\unrar\unrar.exe

2013-09-15 08:15:05 5F7AE768CDD6E925A57E68D527101980 715038 ----a-w- C:\Program Files (x86)\GrabIt\unins000.exe

2013-09-15 08:15:05 197F98BFCD011BDF2E8846CEB5E007B0 4600320 ----a-w- C:\Program Files (x86)\GrabIt\GrabIt.exe

=== C: other files ==

2013-09-19 22:25:59 15E8617112AA052E24BA48B6BFA8B417 146143 ----a-w- C:\Users\Van Ham\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LN13LZD3\npo[1].zip

2013-09-18 19:24:51 FECF1773CAD3947BCE0670D9B2CB5E1E 10261 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\JRT.bat

2013-09-18 19:24:51 FDB9CF820305FE44231763042642F7A6 12733 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\searchlnk.bat

2013-09-18 19:24:51 CC6C23C02BE66014AD87F2678BBB3A1D 8117 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\modules.bat

2013-09-18 19:24:51 B964B792D3692699CD7D4FDB63EE470E 1239 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\FWPolicy.bat

2013-09-18 19:24:51 B45931E5313CB14CAA0F2BC3DA30E6FC 29648 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\ask.bat

2013-09-18 19:24:51 90DEA8FB8E2BFEA1480C79570E2D8993 150811 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\firefox.bat

2013-09-18 19:24:51 80D02380F1AC33E459324B088392A1EC 732 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\ev_clear.bat

2013-09-18 19:24:51 654E9FE74B930A454EE5BDE165794B65 85 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\delorphans.bat

2013-09-18 19:24:51 609A8FF52B78F3BFA6F29C81C32B3A83 16063 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\get.bat

2013-09-18 19:24:51 603595734D290C73FA40EDA1ACADF265 14973 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\chrome.bat

2013-09-18 19:24:51 58605DA3492FB918D3D40B1FB88046AE 39471 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\prelim.bat

2013-09-18 19:24:51 1FBF882AA934A741530741FC134872A3 1243 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\TDL4.bat

2013-09-18 19:24:51 14D6EE8B672684E2232FB430D8C4A928 18668 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\medfos.bat

2013-09-18 19:24:51 1277E771E8BF193B4C64BA5BAE6A424E 8398 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\runvalues.bat

2013-09-18 19:24:51 125AAE9F53A85B1CCE7E8523053AF4E2 146404 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\misc.bat

2013-09-18 19:24:51 0768E560CCD86C18F35FAD29DCEA7B80 1820 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\delfolders.bat

2013-09-18 19:24:51 05B282816F9DB49C325A5D88ECF0D9A1 29932 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\iexplore.bat

2013-09-18 19:14:05 90A594537C3731C9A3AB3B540868B60B 346 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\drives.vbs

2013-09-18 11:54:23 8C636C988365FC3E61F1B5C5ACECCB55 18675 ----a-w- C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip

2013-09-14 15:04:08 A15860E920B02C9A7CE8F3A6C2FF1E3A 560184 ----a-w- C:\Windows\System32\drivers\sptd.sys

==== Chrome Look ======================

Google Docs - Van Ham - Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - Van Ham - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - Van Ham - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

TVGiDS.tv - Van Ham - Default\Extensions\bocdjdnpjmkaaaangagmlnkcpfjkjfcn

Symbaloo Bookmarker 0.4 - Van Ham - Default\Extensions\cnjfgbikbkcmickdalamlmpmkhmbollm

Google Search - Van Ham - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

AdBlock - Van Ham - Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

Adblock for Pirate Bay - Van Ham - Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd

Pocket (formerly Read It Later) - Van Ham - Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj

Chrome In-App Payments service - Van Ham - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Google Quick Scroll - Van Ham - Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc

Gmail - Van Ham - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page Before"="http://go.microsoft.com/fwlink/?LinkId=69157"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

No DefaultScope Set For HKCU

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page Before"="http://go.microsoft.com/fwlink/?LinkId=69157"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay Url="http://rover.ebay.com/rover/1/1553-111073-34115-7?mpre=http://www.benl.ebay.be/sch/i.html?_nkw={searchTerms}"

{EF6C2097-4B6F-4DF5-87B6-DF3F293E3693} Google Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"

==== Reset Google Chrome ======================

C:\Users\Van Ham\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Users\Van Ham\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Van Ham\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Van Ham\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Van Ham\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\Users\Van Ham\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\VANHAM~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on vr 20/09/2013 at 16:20:34,30 ======================

Link naar reactie
Delen op andere sites

Dit is niet het actuele logje: kijk even naar datum en uur "Tool run by Van Ham on vr 20/09/2013 at 15:58:45,85." Verwijder al deze (oude) logjes en laat dan zoek.exe eens opnieuw scannen zoals aangegeven. Op de locatie waar je nu de antieke logjes hebt gevonden, zou dan een actueel log te vinden moeten zijn.

Link naar reactie
Delen op andere sites

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.