virusmelding?

[chrisv]

Hallo,

Net nadat het vorige probleem was opgelost, kreeg ik de volgende melding (zie bijlage). Een scan met hitman pro loste niets op.

Weet niet goed wat ik hier mee moet.

Alvast dank.

chrisv

melding.docx

[kape]

Ga naar de site van ESET Online Scanner.

Klik op de knop “Run ESET Online Scanner”

In een apart scherm krijg je de vraag om EsetSmartInstaller te downloaden

Klik op de link van esetsmartinstaller_enu.exe en dan start de download automatisch op.

Kies voor “Download” van dit bestand.

Klik op “uitvoeren” van dit bestand esetsmartinstaller_enu.exe

Zet een vinkje bij “YES, I accept the Terms of Use”

Klik op “Start”

Klik op "Advanced settings"

Zet een vinkje bij de volgende opties:

• Remove found threats
  
• Scan archives
  
• Scan for potentially unwanted applications
  
• Scan for potentially unsafe applications
  
• Enable Anti-Stealth technology
  

Klik op “Start”

De computer wordt nu gescand. Dit kan best lang duren, heb dus geduld.

Je mag het venster sluiten wanneer de scan klaar is.

Gebruik Kladblok om het logje te openen. Dit logje vind je op de locatie C:\\Program Files\\Eset\\EsetOnlineScanner\\log.txt

Kopieer en plak de inhoud van dit logje in je volgende bericht.

[chrisv]

Hallo, het probleem is niet opgelost. Ik heb gemerkt dat ik deze melding ook op mijn andere pc heb!! ik heb bij min weten geen thuisgroep of netwerk. Geen idee dus hoe dit ontstaan is. Zit dus niet in deze pc op zich, maar waar dan??

Hier bij het logbestand en nogmaals de melding (bijlage)

Alvast dank.

chrisv

log.txt

firefox indringer e.docx

[kape]

Download RSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

• RSIT 32 bit (RSIT.exe)
  
• RSIT 64 bit (RSITx64.exe)
  

Dubbelklik op RSIT.exe om de tool te starten.

• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  
• Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  
• Plaats de inhoud hiervan in het volgende bericht.
  

Bekijk ook de instructievideo.

[chrisv]

Hallo,

Deze zoekactie had ik net vorige week bij een ander probleem gedaan. Hierbij was malware opgespoord. Dit is verwijderd. Direct daarna begonnen de meldingen waar ik het nu over heb. het vreemde is dat ik deze melding ook kreeg op een andere pc, die ik bijna nooit gebruik en, dat hoorde ik gisteren, ook bij 2 kennissen van mij die allemaal ongeveer op dezelfde dag HitmanPro.alert hadden geïnstalleerd. Ongeveer een maand na installatie van deze software kregen wij deze melding, met het verzoek de computer met HitmanPro te scannen. Kan het misschien hiermee te maken hebben? Het is maar een gedachte!

Als ik HitmanPro.alert verwijder, maar alle andere beveiligingssoftware (bitdefender, HitmanPro) laat staan is de melding verdwenen!

Mogelijk heb je hier wat aan. Ik zal bij de volgende reactie voor de zekerheid toch het resultaat van de zoekactie opsturen.

Alvast dank.

chrisv

[kape]

Start Internet Explorer eens op vanuit de map "C:\Program Files\Internet Explorer", dubbelklik hier op iexplore.exe.

Verschijnt nu de melding van HitmanPro.Alert ?

[chrisv]

Hallo,

Ook met internet explorer krijg ik deze melding!

Chrisv

[kape]

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.exe naar het bureaublad (niet de .zip- of .rar-versie).

• Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  
• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

chromelook; 
firefoxlook; 
process;
installedprogs;
emptyfolderscheck;delete 
startupall; 
filesrcm;

• De optie "Scan All Users" staat standaard aangevinkt.
  
• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht.
  

[chrisv]

Bij deze het logje

groet,

chrisv

Zoek.exe v5.0.0.0 Updated 18-Januari-2014

Tool run by C on zo 19-01-2014 at 18:50:30,43.

Microsoft Windows 8.1 6.3.9600 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\C\Desktop\zoek.exe [scan all users] [script inserted]

==== System Restore Info ======================

19-1-2014 18:54:47 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Malwarebytes' Anti-Malware deleted successfully

C:\Users\C\AppData\Roaming\QuickScan deleted successfully

==== Installed Programs ======================

7-Zip 9.20 (x64 edition)

Acronis True Image 2014

Adobe Flash Player 12 Plugin

Apple Application Support

Apple Mobile Device Support

Apple Software Update

Ashampoo AppLauncher (Medion) v.1.0.0

Bitdefender Total Security

CCleaner

Classic Shell

CyberLink Home Cinema 10

CyberLink LabelPrint 2.5

CyberLink MediaEspresso 6.5

CyberLink PhotoDirector 3

CyberLink Power2Go 8

CyberLink PowerDirector 11

CyberLink PowerDVD 10

CyberLink PowerDVD Copy 1.5

CyberLink PowerRecover

CyberLink YouCam 5

D3DX10

Dolby Digital Plus Home Theater

Fotogalerie

Fotogalerija

Fot¢t r

Foxit Reader

FWdriver_v 1.01

Galerie de photos

Google Desktop

Harmony Browser Plug-in

HitmanPro 3.7

Intel® Management Engine Components

Intel® PRO/Wireless Driver

Intel® PROSet/Wireless for Bluetooth® + High Speed

Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 3.0.1335.5)

Intel® Rapid Storage Technology

Intel© PROSet/Wireless WiFi Software

Intel© Trusted Connect Service Client

iTunes

Kobo

Microsoft Application Error Reporting

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Excel MUI (Dutch) 2007

Microsoft Office File Validation Add-In

Microsoft Office Home and Student 2007

Microsoft Office Office 64-bit Components 2007

Microsoft Office OneNote MUI (Dutch) 2007

Microsoft Office PowerPoint MUI (Dutch) 2007

Microsoft Office Proof (Dutch) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (German) 2007

Microsoft Office Proofing (Dutch) 2007

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Shared 64-bit MUI (Dutch) 2007

Microsoft Office Shared MUI (Dutch) 2007

Microsoft Office Word MUI (Dutch) 2007

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Movie Maker

Mozilla Firefox 26.0 (x86 nl)

Mozilla Maintenance Service

MSVCRT

MSVCRT110

MSVCRT110_amd64

Photo Common

Photo Gallery

PhotoFiltre 7

Raccolta foto

Realtek Card Reader

Realtek Ethernet Controller Driver

Realtek High Definition Audio Driver

Secunia PSI (3.0.0.7009)

Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition

Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition

Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition

Synaptics Pointing Device Driver

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

Update voor Microsoft Office Excel 2007 Help (KB963678)

Update voor Microsoft Office Powerpoint 2007 Help (KB963669)

Update voor Microsoft Office Word 2007 Help (KB963665)

Windows Live

Windows Live Communications Platform

Windows Live Essentials

Windows Live Installer

Windows Live Photo Common

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Wipe

==== Running Processes ======================

C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\WINDOWS\SysWOW64\crytsrv10.exe

C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe

C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe

C:\Program Files (x86)\FWdriver_v\POSHXMain.exe

C:\Program Files (x86)\Secunia\PSI\PSIA.exe

C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe

C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe

C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe

C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe

C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe

C:\Program Files (x86)\Secunia\PSI\psi_tray.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe

C:\Users\C\Desktop\zoek.exe

C:\WINDOWS\SysWOW64\cmd.exe

C:\WINDOWS\SysWOW64\cmd.exe

C:\WINDOWS\SysWOW64\cmd.exe

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====

2014-01-12 10:11:20 D9F551D51350364EBF9D235F50FAD5A2 392727407 ----a-w- C:\WINDOWS\MEMORY.DMP

====== C:\Users\C\AppData\Local\Temp ====

2014-01-18 19:37:34 FBC207AD85D053D4FD9DD93C595D1A1D 285455 ----a-w- C:\Users\C\AppData\Local\Temp\Install_HOSTS_Anti-Adware.exe

2014-01-18 17:19:45 A3F2FA2017E978BEA7AE7261CE578A40 17888136 ----a-w- C:\Users\C\AppData\Local\Temp\fp_pl_pfs_installer.exe

2014-01-18 13:07:19 76874123C258B0FE7A5E7E8F71555D52 10264904 ----a-w- C:\Users\C\AppData\Local\Temp\HitmanPro_x64.exe

2014-01-18 13:01:27 76874123C258B0FE7A5E7E8F71555D52 10264904 ----a-w- C:\Users\C\AppData\Local\Temp\HitmanPro.exe

====== C:\WINDOWS\SysWOW64 =====

2014-01-16 18:33:17 7FA3046AC2751A408899EFD331FE1980 479744 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncHost.exe

2014-01-16 18:33:16 6A7D239E3A3B90818B9BFE7B7CCD4BFC 584192 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncCore.dll

2014-01-16 18:33:10 9EA661DB9B393F46046D6181A3DDC4AD 2804528 ----a-w- C:\WINDOWS\SysWOW64\msmpeg2vdec.dll

2014-01-16 18:33:07 BEFC9EE0724E53E004A6316C20931F99 2142936 ----a-w- C:\WINDOWS\SysWOW64\mfcore.dll

2014-01-16 18:33:06 A6A82DE8976069DBA0256AE5327110B5 1371312 ----a-w- C:\WINDOWS\SysWOW64\combase.dll

2014-01-16 18:33:06 2E6C68B92DFB0A95771F6DD7A4179FFE 13925888 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2014-01-16 18:33:04 E0C156E4380CE5C64CFBF2650895038D 18642504 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll

2014-01-16 18:33:03 72B3380DA5EA53028501F3B94E421FBB 2295808 ----a-w- C:\WINDOWS\SysWOW64\authui.dll

2014-01-16 18:33:02 D11A05032C28EE7588C135ECF7B49E81 1204968 ----a-w- C:\WINDOWS\SysWOW64\winmde.dll

2014-01-16 18:33:02 15DF7EF29273464E6112E7A131537BCD 669344 ----a-w- C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2014-01-16 18:33:01 FF73CDC3F09904D82B0CCC1CA750CD02 218112 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.dll

2014-01-16 18:33:01 CF4C3815E577C7DC32BB8DB90F0B34C1 552624 ----a-w- C:\WINDOWS\SysWOW64\oleaut32.dll

2014-01-16 18:33:01 C85EA737B20BEDC46CBA748DCE115184 433664 ----a-w- C:\WINDOWS\SysWOW64\mfds.dll

2014-01-16 18:33:01 92124EF7B1BF5492EFCA17B3A208E4F4 663680 ----a-w- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2014-01-16 18:33:00 ECD4A3F754224C954D3D19B6ECBFE5AA 513536 ----a-w- C:\WINDOWS\SysWOW64\rastls.dll

2014-01-16 18:33:00 4E556E5490191ED9B771576D9221A461 273920 ----a-w- C:\WINDOWS\SysWOW64\msieftp.dll

2014-01-16 18:33:00 48B8013201B1846F893A83606248A8CC 336384 ----a-w- C:\WINDOWS\SysWOW64\XpsGdiConverter.dll

2014-01-16 18:33:00 06730D9C233B01E2F99C1BE2461629F7 980480 ----a-w- C:\WINDOWS\SysWOW64\mispace.dll

2014-01-16 10:33:12 22D6B8C3DAA687E32363A69E82CAC2C9 105464 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2014-01-16 09:00:01 14F0A1D5E7E73F43B92FD75725A3C202 693240 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2014-01-15 09:14:22 ED8ED1CE6CAB56103230E2097763DC2B 695808 ----a-w- C:\WINDOWS\SysWOW64\WSShared.dll

2014-01-15 09:14:21 B6D28E8DC13F9EAF8B74BDB4F3DD9781 174592 ----a-w- C:\WINDOWS\SysWOW64\WSClient.dll

2014-01-15 09:14:19 73D0837E97CD7368BCA7DE4E373B8503 103936 ----a-w- C:\WINDOWS\SysWOW64\OEMLicense.dll

====== C:\WINDOWS\SysWOW64\drivers =====

====== C:\WINDOWS\Sysnative =====

2014-01-16 18:33:27 2B76F592B005FE7CF89B87643FDAB47E 115712 ----a-w- C:\WINDOWS\Sysnative\winbici.dll

2014-01-16 18:33:18 0E0796E3413D38A396B1C1591CE2B72E 4191232 ----a-w- C:\WINDOWS\Sysnative\win32k.sys

2014-01-16 18:33:16 F242938F69AA25B8ECD0D9E342799802 637952 ----a-w- C:\WINDOWS\Sysnative\SettingSyncHost.exe

2014-01-16 18:33:16 5905265F56C14E67D193DB4D53451154 4106240 ----a-w- C:\WINDOWS\Sysnative\SyncEngine.dll

2014-01-16 18:33:16 2EAF0A1F9E4DF34862CC5A2B5437E450 744448 ----a-w- C:\WINDOWS\Sysnative\SettingSyncCore.dll

2014-01-16 18:33:15 5F9799975EAB95431BF78428B26B4FF6 21196664 ----a-w- C:\WINDOWS\Sysnative\shell32.dll

2014-01-16 18:33:10 32370AF583EC8B24D790E1B9201D6811 3210528 ----a-w- C:\WINDOWS\Sysnative\msmpeg2vdec.dll

2014-01-16 18:33:10 013BB1B12833CD646175312307768F93 18577920 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll

2014-01-16 18:33:07 CA336E6ABF539A6D14DA3C49DDD24696 2131120 ----a-w- C:\WINDOWS\Sysnative\mfcore.dll

2014-01-16 18:33:07 3E7B2C9026986C821E507A3319EA1D80 1928144 ----a-w- C:\WINDOWS\Sysnative\combase.dll

2014-01-16 18:33:06 9FF95D589B5626852CECA2444C5C5A58 2617344 ----a-w- C:\WINDOWS\Sysnative\authui.dll

2014-01-16 18:33:04 D33E2A482C47ABFDD80185DD9C8C06F1 1399176 ----a-w- C:\WINDOWS\Sysnative\winmde.dll

2014-01-16 18:33:04 728D3349FAB251B0265EFA55C67DCA2D 1503232 ----a-w- C:\WINDOWS\Sysnative\wlansvc.dll

2014-01-16 18:33:02 FCB3BD54917D36FE79DFDF0ED7ACBEBB 764856 ----a-w- C:\WINDOWS\Sysnative\mfmpeg2srcsnk.dll

2014-01-16 18:33:02 EF276593AD1BDF5A99032F62D6272848 834048 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll

2014-01-16 18:33:02 D65B1C952AEB864C2BAC7A770B17ECCE 282112 ----a-w- C:\WINDOWS\Sysnative\SystemEventsBrokerServer.dll

2014-01-16 18:33:02 A6207A88B596F726DE558425F3B7E592 263168 ----a-w- C:\WINDOWS\Sysnative\bisrv.dll

2014-01-16 18:33:02 40B228D05DB02F4A5F2452600999F53F 809872 ----a-w- C:\WINDOWS\Sysnative\mfmp4srcsnk.dll

2014-01-16 18:33:02 39435F4007F1CEDEF04356892B18D174 202240 ----a-w- C:\WINDOWS\Sysnative\ubpm.dll

2014-01-16 18:33:02 1A1B60D269F745C021F69564B5906AD0 1374384 ----a-w- C:\WINDOWS\Sysnative\wmpmde.dll

2014-01-16 18:33:01 FF9F658A51CAD74C25AF83038DBD735D 306688 ----a-w- C:\WINDOWS\Sysnative\msieftp.dll

2014-01-16 18:33:01 E18E9C9EBCFCA456B74BB6A80B1DB226 1415680 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll

2014-01-16 18:33:01 B9FC41CEC711DC0E1BFE927EEDC49176 745336 ----a-w- C:\WINDOWS\Sysnative\oleaut32.dll

2014-01-16 18:33:01 B818F6F3CA67E4BD278EDE5600BDD65E 461824 ----a-w- C:\WINDOWS\Sysnative\XpsGdiConverter.dll

2014-01-16 18:33:01 91433B44B1EF301E7DD696EB5281BC20 589824 ----a-w- C:\WINDOWS\Sysnative\rastls.dll

2014-01-16 18:33:01 78AB9F5DC27E317F0B34C45D54ABB6B2 32088 ----a-w- C:\WINDOWS\Sysnative\ploptin.dll

2014-01-16 18:33:01 660891FFB1B22FF39AADB3F45CE15D45 470016 ----a-w- C:\WINDOWS\Sysnative\mfds.dll

2014-01-16 18:33:01 54A9F4AC86F2A4E7C3ADE47CAE5DE8E0 136704 ----a-w- C:\WINDOWS\Sysnative\psmsrv.dll

2014-01-16 18:33:01 34F8F7A0B782798F6A9511157BCC3E32 273408 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.dll

2014-01-16 18:33:00 CD45E3FE736150D45EFDC9145DA53757 24064 ----a-w- C:\WINDOWS\Sysnative\bi.dll

2014-01-16 18:33:00 BDE4ABD3AB4171CECADFD38F392E656C 1227264 ----a-w- C:\WINDOWS\Sysnative\mispace.dll

2014-01-16 18:33:00 AD95F86C8D1843BE653F89FDE213F9E7 207872 ----a-w- C:\WINDOWS\Sysnative\deviceregistration.dll

2014-01-16 18:33:00 4B916278E1487A5CD5F8F9A521980026 385614 ----a-w- C:\WINDOWS\Sysnative\ApnDatabase.xml

2014-01-15 09:14:23 D8E3A4701376CCFD0BE542D745FA4809 3395920 ----a-w- C:\WINDOWS\Sysnative\WSService.dll

2014-01-15 09:14:22 E3E168E733B0E8383BA5635542FDB96F 848384 ----a-w- C:\WINDOWS\Sysnative\WSShared.dll

2014-01-15 09:14:22 294AAE73D0D7BDAACC5224BC7334077B 206336 ----a-w- C:\WINDOWS\Sysnative\WSClient.dll

2014-01-15 09:14:21 3E245CCA42D78B9626A79FE77E111D7B 84480 ----a-w- C:\WINDOWS\Sysnative\WSCollect.exe

2014-01-15 09:14:20 30AE1D2A418A6C128CF3BD6EA37354DB 138240 ----a-w- C:\WINDOWS\Sysnative\OEMLicense.dll

2014-01-15 09:14:16 EF5A9D7523E4530D2030D4EA2D90FEC3 787968 ----a-w- C:\WINDOWS\Sysnative\uDWM.dll

====== C:\WINDOWS\Sysnative\drivers =====

2014-01-16 18:33:07 3D9A5AC880D7AA2305812D665D24ED23 2551128 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys

2014-01-16 18:33:02 ED39D676080A1AEA755F1DEC1A8DF1A4 1119064 ----a-w- C:\WINDOWS\Sysnative\drivers\ndis.sys

2014-01-16 18:33:02 79B6F3DF7CDFD12159871FF71464F0CE 403456 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb.sys

2014-01-16 18:33:01 B7342B3C58E91107F6E946A93D9D4EFD 142848 ----a-w- C:\WINDOWS\Sysnative\drivers\ipnat.sys

2014-01-16 18:33:01 4628B415A84EA9D4D396A56F1D0CB6C6 142680 ----a-w- C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS

2014-01-16 18:33:00 1C89EF529DB7DCA98E801EFDCC8437DE 19456 ----a-w- C:\WINDOWS\Sysnative\drivers\BtaMPM.sys

2014-01-09 21:42:18 38CB343BBE9586306A7CC01E6793727B 9122384 ----a-w- C:\WINDOWS\Sysnative\drivers\Netwfw02.dat

2014-01-09 21:42:16 B1ED085EC13B68EFC006D609EC705D8C 3607520 ----a-w- C:\WINDOWS\Sysnative\drivers\NETwbw02.sys

2013-12-28 16:04:34 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

2013-12-28 16:02:05 8E98D21EE06192492A5671A6144D092F 33240 ----a-w- C:\WINDOWS\Sysnative\drivers\GEARAspiWDM.sys

2013-12-24 13:37:50 370A6907DDF79532A39319492B1FA38A 231376 ----a-w- C:\WINDOWS\Sysnative\drivers\truecrypt.sys

====== C:\WINDOWS\Tasks ======

2014-01-15 21:00:47 018C164568007461A6C472A64B589521 3576 ----a-w- C:\WINDOWS\Sysnative\Tasks\Bitdefender Autoscan

2013-12-28 20:14:51 222A8A7BFD8EE88E3ECB4216D42B9412 3828 ----a-w- C:\WINDOWS\Sysnative\Tasks\Adobe Flash Player Updater

2013-12-28 20:14:51 12B585A653B1C5D8B86D16D3C343AB75 940 ----a-w- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2013-12-28 16:00:22 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\Apple

====== C:\WINDOWS\Temp ======

======= C:\Program Files =====

2014-01-18 13:07:49 -------- d-----w- C:\Program Files\HitmanPro

2014-01-12 16:07:30 -------- d-----w- C:\Program Files\trend micro

2013-12-28 16:01:34 -------- d-----w- C:\Program Files\iPod

2013-12-28 16:01:33 -------- d-----w- C:\Program Files\iTunes

2013-12-28 15:59:50 -------- d-----w- C:\Program Files\Common Files\Apple

======= C:\PROGRA~2 =====

2014-01-18 19:37:35 -------- d-----w- C:\PROGRA~2\Hosts_Anti_Adwares_PUPs

2014-01-17 07:26:43 -------- d-----w- C:\PROGRA~2\ESET

2014-01-16 20:25:27 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service

2014-01-12 09:07:43 -------- d-----w- C:\PROGRA~2\SciLor's grooveshark.com Downloader

2013-12-28 16:01:33 -------- d-----w- C:\PROGRA~2\iTunes

2013-12-28 16:00:14 -------- d-----w- C:\PROGRA~2\Apple Software Update

2013-12-28 15:59:18 -------- d-----w- C:\PROGRA~2\COMMON~1\Apple

2013-12-26 11:30:05 -------- d-----w- C:\PROGRA~2\Kobo

======= C: =====

====== C:\Users\C\AppData\Roaming ======

2014-01-18 17:20:56 -------- d-----w- C:\Users\C\AppData\Local\Adobe

2014-01-16 17:09:26 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp

2014-01-16 17:09:26 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp

2014-01-16 17:09:26 -------- d-----w- C:\Users\Default\AppData\Local\Temp

2014-01-16 17:09:26 -------- d-----w- C:\Users\C\AppData\Local\Temp

2014-01-16 17:09:26 -------- d-----w- C:\Users\Administrator\AppData\Local\Temp

2014-01-01 16:30:37 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\PnrpSqm

2013-12-28 16:02:22 -------- d-----w- C:\Users\C\AppData\Roaming\Apple Computer

2013-12-28 16:02:22 -------- d-----w- C:\Users\C\AppData\Local\Apple Computer

2013-12-28 16:00:18 -------- d-----w- C:\Users\C\AppData\Local\Apple

2013-12-28 16:00:02 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Apple Computer

2013-12-26 17:11:02 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking

2013-12-26 17:10:52 -------- d-----w- C:\Users\C\AppData\Roaming\CyberLink

2013-12-26 11:30:36 -------- d-----w- C:\Users\C\AppData\Local\Kobo

2013-12-24 13:38:30 -------- d-----w- C:\Users\C\AppData\Roaming\TrueCrypt

====== C:\Users\C ======

2014-01-18 19:31:34 246FE58EFFD357B2078842708155E46C 1236282 ----a-w- C:\Users\C\Downloads\AdwCleaner.exe

2014-01-18 13:07:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro

2014-01-18 13:05:07 1393FBD6435180ABCD55AA93C56579E4 1830768 ----a-w- C:\Users\C\Downloads\hmpalert(1).exe

2014-01-18 13:03:23 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp

2014-01-17 07:26:25 E8D3E34FFDAF21DF7C09CBBBA5763237 2347384 ----a-w- C:\Users\C\Downloads\esetsmartinstaller_enu.exe

2014-01-16 20:30:06 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\C\Downloads\mbam-setup-1.75.0.1300.exe

2014-01-16 20:24:06 FD3E66E1EAD5DA5EC23174D29B8376D6 283128 ----a-w- C:\Users\C\Downloads\Firefox Setup Stub 26.0 (1).exe

2014-01-15 21:00:21 -------- d-----w- C:\ProgramData\ClassicShell

2014-01-14 10:02:26 FD3E66E1EAD5DA5EC23174D29B8376D6 283128 ----a-w- C:\Users\C\Downloads\Firefox Setup Stub 26.0.exe

2014-01-12 09:07:48 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SciLor's grooveshark™.com Downloader

2014-01-06 18:01:49 47C203471B017D84C38836653E793FE5 11863248 ----a-w- C:\Users\C\Downloads\HarmonyBrowserPlug-in.exe

2013-12-28 16:02:13 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2013-12-28 16:01:33 -------- d-----w- C:\ProgramData\Apple Computer

2013-12-28 15:59:18 -------- d-----w- C:\ProgramData\Apple

2013-12-26 11:30:26 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kobo

====== C: exe-files ==

2014-01-18 19:37:41 C1DB9BDF885C2F1ADC15264FBEA2788F 302961 ----a-w- C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe

2014-01-18 19:37:40 C1DB9BDF885C2F1ADC15264FBEA2788F 302961 ----a-w- C:\Users\C\AppData\Local\Microsoft\Windows\INetCache\IE\12AT2N3E\HOSTS_Anti-Adware_main[1].exe

2014-01-18 19:37:39 59538D76EA7D0FE8283D72265833E0E4 285795 ----a-w- C:\Users\C\AppData\Local\Microsoft\Windows\INetCache\IE\3B1J97HV\HOSTS_Anti-Adware[1].exe

2014-01-18 19:37:34 FBC207AD85D053D4FD9DD93C595D1A1D 285455 ----a-w- C:\Users\C\AppData\Local\Temp\Install_HOSTS_Anti-Adware.exe

2014-01-18 19:37:34 FBC207AD85D053D4FD9DD93C595D1A1D 285455 ----a-w- C:\Users\C\AppData\Local\Microsoft\Windows\INetCache\IE\EV4AKVFP\Install_HOSTS_Anti-Adware[1].exe

2014-01-18 19:31:34 246FE58EFFD357B2078842708155E46C 1236282 ----a-w- C:\Users\C\Downloads\AdwCleaner.exe

2014-01-18 17:19:45 A3F2FA2017E978BEA7AE7261CE578A40 17888136 ----a-w- C:\Users\C\AppData\Local\Temp\fp_pl_pfs_installer.exe

2014-01-18 13:07:50 AACD31D9B4129F05ECDE27DE98E6D96A 109352 ----a-w- C:\Program Files\HitmanPro\hmpsched.exe

2014-01-18 13:07:49 76874123C258B0FE7A5E7E8F71555D52 10264904 ----a-w- C:\Program Files\HitmanPro\HitmanPro.exe

2014-01-18 13:07:19 76874123C258B0FE7A5E7E8F71555D52 10264904 ----a-w- C:\Users\C\AppData\Local\Temp\HitmanPro_x64.exe

2014-01-18 13:07:19 76874123C258B0FE7A5E7E8F71555D52 10264904 ----a-w- C:\Users\C\AppData\Local\Microsoft\Windows\INetCache\IE\12AT2N3E\HitmanPro_x64[1].exe

2014-01-18 13:05:07 1393FBD6435180ABCD55AA93C56579E4 1830768 ----a-w- C:\Users\C\Downloads\hmpalert(1).exe

2014-01-18 13:01:27 76874123C258B0FE7A5E7E8F71555D52 10264904 ----a-w- C:\Users\C\AppData\Local\Temp\HitmanPro.exe

2014-01-18 12:07:16 04EFD47F2F2846A57E09227E4F2C714C 2476632 ----a-w- C:\Windows\LastGood.Tmp\system32\IntelWiDiVAD64.exe

2014-01-18 12:06:57 7E1ED9DCFB39E36E1192574A75CD9224 397784 ----a-w- C:\Windows\LastGood.Tmp\system32\igfxext.exe

2014-01-18 12:06:56 D35D88DBD57ED367107DDAF4A70E695F 396760 ----a-w- C:\Windows\LastGood.Tmp\system32\CustomModeApp.exe

2014-01-18 12:06:56 D0DC666D5FE83C9822AFBD1F4141D923 755160 ----a-w- C:\Windows\LastGood.Tmp\system32\GfxUIHotKeyMenu.exe

2014-01-18 12:06:55 563F74B0BCB4E51E64A3BF260DDF9A15 7596504 ----a-w- C:\Windows\LastGood.Tmp\system32\GfxUIEx.exe

2014-01-18 12:06:55 47189B3FB35A23FD5A491A79EDBEDA0D 770520 ----a-w- C:\Windows\LastGood.Tmp\system32\igfxpers.exe

2014-01-18 12:06:54 A608F8BDF259CB3C323247CC1A533A10 771544 ----a-w- C:\Windows\LastGood.Tmp\system32\hkcmd.exe

2014-01-18 12:06:53 D5F868A46AED8E7CAD6C30E0599DD100 279000 ----a-w- C:\Windows\LastGood.Tmp\SysWow64\IntelCpHeciSvc.exe

2014-01-18 12:06:53 CB0CAECF7EE7C34A07066BE69C71198D 153048 ----a-w- C:\Windows\LastGood.Tmp\system32\difx64.exe

2014-01-18 11:48:45 A2029E77352010E1779DBBB87ADFADB8 4069888 ----a-w- C:\Users\C\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Solitaire\bdf4a2bf169f30dc166d67b363cdba1d\Solitaire.ni.exe

2014-01-17 07:26:49 CE0D0B11986FD2C0247AE88A59B36A6E 579904 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe

2014-01-17 07:26:49 BDB7D97012F9B3102DB72AA76A24942A 546944 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe

2014-01-17 07:26:49 7C9EEC809FB9CDA26EFC245C001EA980 2347384 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

2014-01-17 07:26:49 7ABF8849E76732C357F419B1AF5668F2 546944 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScannerA.exe

2014-01-17 07:26:49 6D4ED8A5C071F29730A6F0B943FEEA3A 122584 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe

2014-01-17 07:26:25 E8D3E34FFDAF21DF7C09CBBBA5763237 2347384 ----a-w- C:\Users\C\Downloads\esetsmartinstaller_enu.exe

2014-01-16 20:30:06 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\C\Downloads\mbam-setup-1.75.0.1300.exe

2014-01-16 20:25:27 99F20CB58E61DAAD19935122AEE8B376 106212 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe

2014-01-16 20:25:27 3B9398E0146855B1DC0E3D9769C80F01 119408 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

2014-01-16 20:24:06 FD3E66E1EAD5DA5EC23174D29B8376D6 283128 ----a-w- C:\Users\C\Downloads\Firefox Setup Stub 26.0 (1).exe

2014-01-16 18:33:17 7FA3046AC2751A408899EFD331FE1980 479744 ----a-w- C:\Windows\SysWOW64\SettingSyncHost.exe

2014-01-16 18:33:16 F242938F69AA25B8ECD0D9E342799802 637952 ----a-w- C:\Windows\System32\SettingSyncHost.exe

2014-01-16 18:25:23 FF63857E9C1C948393346A86CAD39112 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2816235752-810234289-1669953389-1001\$IJQOFBV.exe

2014-01-16 09:00:01 14F0A1D5E7E73F43B92FD75725A3C202 693240 ----a-w- C:\Windows\SysWOW64\FlashPlayerApp.exe

2014-01-15 09:14:21 F8309DE5A45867745C7AA835DF50AA29 25304 ----a-w- C:\Windows\WinStore\WSHost.exe

2014-01-15 09:14:21 3E245CCA42D78B9626A79FE77E111D7B 84480 ----a-w- C:\Windows\System32\WSCollect.exe

2014-01-14 10:02:26 FD3E66E1EAD5DA5EC23174D29B8376D6 283128 ----a-w- C:\Users\C\Downloads\Firefox Setup Stub 26.0.exe

2014-01-14 09:55:26 49E549A01BB5FF6E82E386176E4D7305 96320 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\Shell Extensions\FoxitPrevhost.exe

2014-01-14 09:54:56 22152100B2D32BE9DAF13591096DE58D 2084416 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\SendCrashReport.exe

2014-01-14 09:54:54 B8B811C4655490676C2DED04E531F106 9577536 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Updater.exe

2014-01-14 09:54:49 15D2200C10CA3506C2AD566FBAE1E13B 36229696 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe

2014-01-14 09:54:47 B2A596DCEE491DF39DBDC13A8A7CB05A 60480 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\Creator\FXC_ProxyProcess.exe

2014-01-14 09:54:46 7FC062F566DBEE26A6DF69119C93B7B9 755672 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\UninstallPrint.exe

2014-01-14 09:54:36 D4945107DF8F56CC4DC858C0694C13E2 26688 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\Checkupdate\Checkupdate.exe

2014-01-14 09:54:35 5C7CD5168055514AB1722E4F926DCEF5 1904192 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\unins000.exe

2014-01-13 06:54:58 084BE4D9B1C2B51F423C97285B89E558 1281536 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2816235752-810234289-1669953389-1001\$RJQOFBV.exe

=== C: other files ==

2014-01-18 12:06:49 4F6363C26B4A3DDBC9FAFCBA68602B01 4216320 ----a-w- C:\Windows\LastGood.Tmp\system32\DRIVERS\igdkmd64.sys

2014-01-16 18:33:18 0E0796E3413D38A396B1C1591CE2B72E 4191232 ----a-w- C:\Windows\System32\win32k.sys

2014-01-16 18:33:07 3D9A5AC880D7AA2305812D665D24ED23 2551128 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2014-01-16 18:33:02 ED39D676080A1AEA755F1DEC1A8DF1A4 1119064 ----a-w- C:\Windows\System32\drivers\ndis.sys

2014-01-16 18:33:02 79B6F3DF7CDFD12159871FF71464F0CE 403456 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys

2014-01-16 18:33:01 B7342B3C58E91107F6E946A93D9D4EFD 142848 ----a-w- C:\Windows\System32\drivers\ipnat.sys

2014-01-16 18:33:01 4628B415A84EA9D4D396A56F1D0CB6C6 142680 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS

2014-01-16 18:33:00 1C89EF529DB7DCA98E801EFDCC8437DE 19456 ----a-w- C:\Windows\System32\drivers\BtaMPM.sys

2014-01-16 18:25:11 B9EF470582184E213F54962F58E493E5 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2816235752-810234289-1669953389-1001\$IV1P27H.com

2014-01-12 23:20:14 0EABC923312CEFC45484D2F7D28A9C7A 1410166 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2816235752-810234289-1669953389-1001\$RV1P27H.com

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

"Bitdefender Wallet"="C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard"

"Bitdefender Wallet Application Agent"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

[HKEY_USERS\S-1-5-21-2816235752-810234289-1669953389-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

"Bitdefender Wallet Application Agent"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

"Wipe Maintance"="C:\Program Files\net1-wipe\net1.exe windowsStartup"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]

"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

"Bitdefender Wallet"="C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard"

"Bitdefender Wallet Application Agent"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CLMLServer_For_P2G8"="C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"

"CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R"

"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"

"YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s"

"Google Desktop Search"="C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe /startup"

"TrueImageMonitor.exe"="C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"

"AcronisTibMounterMonitor"="C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

"Bitdefender Wallet Application Agent"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

"Wipe Maintance"="C:\Program Files\net1-wipe\net1.exe windowsStartup"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

"RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4"

"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp"

"POSHX"="C:\Program Files (x86)\FWdriver_v\POSHX.exe /start"

"Bdagent"="C:\Program Files\Bitdefender\Bitdefender\bdagent.exe"

"Acronis Scheduler2 Service"="C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"

"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe"

"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe"

"Persistence"="C:\WINDOWS\system32\igfxpers.exe"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2013-11-12 17:42:57 1870 ----a-w- C:\Users\C\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wipe Tray Agent.lnk

2013-11-23 17:57:24 1126 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [18-01-2014 18:21]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\WINDOWS\SysNative\tasks\Bitdefender Autoscan" [C:\Program Files\Bitdefender\Bitdefender\mtasklaunch.exe]

"C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\WINDOWS\SysNative\tasks\Dolby Selector" [C:\Program Files\Dolby Digital Plus\ddp.exe]

"C:\WINDOWS\SysNative\tasks\Synaptics TouchPad Enhancements" ["C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"]

"C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"ffpwdman@bitdefender.com"="C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman" [28-10-2013 21:41]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\C\AppData\Roaming\Mozilla\Firefox\Profiles\ayqcbdhb.default

2557FBC582910A71CDEB0F22886D118D - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll - Shockwave Flash

BAD62EC082FBC9BF6D54FAB91E53A35A - C:\Program Files\Bitdefender\Bitdefender\Antispam32\npcomm.dll - BitDefender 16

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

ccahoghmggldkcdjiebjkidpfongdfbl - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx[18-12-2013 22:16]

omaonpoimgkmbllpdihbnmgphjoipdhf - C:\Program Files (x86)\Logitech\Harmony Remote Driver\harmony_chrome.crx[01-05-2012 21:45]

==== C:\zoek_backup content ======================

C:\zoek_backup (files=107 folders=26 40532529 bytes)

==== EOF on zo 19-01-2014 at 19:02:42,10 ======================

[kape]

Dubbelklik op Zoek.exe om de tool te starten.

• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

autoclean;

• De optie "Scan All Users" staat standaard aangevinkt.
  
• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht.