Kunnen bijlagen windows mail niet openen?

[annouk21]

Kunnen bijlagen windows mail niet openen?

[kape]

Download RSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

• RSIT 32 bit (RSIT.exe)
  
• RSIT 64 bit (RSITx64.exe)
  

Dubbelklik op RSIT.exe om de tool te starten.

• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  
• Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .
  

RSIT Logbestanden plaatsen

• Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
  
• Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  
• Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
  

Bekijk ook de instructievideo.

[annouk21]

[ATTACH]31531[/ATTACH]

- - - Updated - - -

Logfile of random's system information tool 1.09 (written by random/random)

Run by USER at 2014-04-23 17:39:46

WIN_VISTA Service Pack 2

System drive C: has 43 GB (37%) free of 116 GB

Total RAM: 1980 MB (35% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 17:42:51, on 23/04/2014

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16545)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files\Malwarebytes Anti-Malware\mbam.exe

C:\Program Files\Norton AntiVirus\Norton AntiVirus\Engine\21.2.0.38\NAV.exe

C:\Program Files\Norton Identity Safe\Engine\2014.7.0.43\NST.exe

C:\Program Files\Adobe1\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe

C:\Program Files\Lexmark X5400 Series\lxdvmon.exe

C:\Program Files\Lexmark X5400 Series\lxdvamon.exe

C:\Program Files\Common Files\Siemens\S7UBTOOX\S7ubTstx.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Ask.com\Updater\Updater.exe

C:\Program Files\QuickTime\QTTask.exe

C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe

C:\Windows\RTHDCPL.EXE

C:\Program Files\Symantec\Norton Utilities 16\sMonitor\SSDMonitor.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe

C:\Program Files\WinZip\WZQKPICK32.EXE

C:\Windows\ehome\ehmsas.exe

C:\Program Files\Common Files\Siemens\S7UBTOOX\S7ubtoox.exe

C:\Program Files\Common Files\Siemens\Sqlany\dbsrv9.exe

C:\Windows\system32\wuauclt.exe

C:\Windows\system32\taskeng.exe

C:\Users\USER\Desktop\RSIT.exe

C:\Program Files\trend micro\USER.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Windows\System32\NOTEPAD.EXE

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe

C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe

C:\Windows\system32\SearchFilterHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://nl.intl.acer.yahoo.com

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://uk.rd.yahoo.com/customize/ycomp/defaults/su/*http://uk.yahoo.com

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll

O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Norton AntiVirus\Engine\21.2.0.38\IPS\IPSBHO.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Norton Identity Protection - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files\Norton Identity Safe\Engine\2014.7.0.43\coIEPlg.dll

O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files\Norton Identity Safe\Engine\2014.7.0.43\coIEPlg.dll

O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll

O3 - Toolbar: SiteFinder - {CCC7B159-1D8C-11E3-B2AD-F3EF3D58318D} - C:\Program Files\SiteFinder\SiteFinder.dll (file missing)

O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe

O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe

O4 - HKLM\..\Run: [Adobe Version Cue CS2] "C:\Program Files\Adobe1\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe"

O4 - HKLM\..\Run: [lxdvmon.exe] "C:\Program Files\Lexmark X5400 Series\lxdvmon.exe"

O4 - HKLM\..\Run: [lxdvamon] "C:\Program Files\Lexmark X5400 Series\lxdvamon.exe"

O4 - HKLM\..\Run: [Lexmark X5400 Series Fax Server] "C:\Program Files\Lexmark X5400 Series\fm3032.exe" /s

O4 - HKLM\..\Run: [skyTel] SkyTel.EXE

O4 - HKLM\..\Run: [s7UB Start] "C:\Program Files\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"

O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [isaKbcCertUpdate] C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [sSDMonitor] C:\Program Files\Symantec\Norton Utilities 16\sMonitor\SSDMonitor.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"

O4 - HKUS\S-1-5-21-1717089987-3443068779-1963731462-1005\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (User '?')

O4 - HKUS\S-1-5-21-1717089987-3443068779-1963731462-1005\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" (User '?')

O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK32.EXE

O9 - Extra button: Site Finder - {CCC7B152-1D8C-11E3-B2AD-F3EF3D58318D} - C:\Program Files\SiteFinder\SiteFinder.dll (file missing)

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted Zone: http://cbc-pdf.cbc.be

O15 - Trusted Zone: http://static.cbc.be

O15 - Trusted Zone: http://www.cbccorporate.be

O15 - Trusted Zone: http://www.csob.cz

O15 - Trusted Zone: http://www.csob.sk

O15 - Trusted Zone: http://col.isabel.be

O15 - Trusted Zone: http://www.isabel.be

O15 - Trusted Zone: http://www.beta.isabel.be

O15 - Trusted Zone: http://col.isabel.eu

O15 - Trusted Zone: http://www.isabel.eu

O15 - Trusted Zone: http://www.beta.isabel.eu

O15 - Trusted Zone: http://kbc-pdf.kbc.be

O15 - Trusted Zone: http://static.kbc.be

O15 - Trusted Zone: *.kbc.be

O15 - Trusted Zone: http://www.kbcam.be

O15 - Trusted Zone: http://www.kbcam.com

O15 - Trusted Zone: http://www.kbcbankingforbusiness.com

O15 - Trusted Zone: http://www.kbccorporates.com

O15 - Trusted Zone: http://www.kbcfi.com

O15 - Trusted Zone: http://www.kbcmerchantbanking.com

O15 - Trusted Zone: http://www.kh.hu

O15 - Trusted Zone: http://cbc-pdf.cbc.be (HKLM)

O15 - Trusted Zone: http://static.cbc.be (HKLM)

O15 - Trusted Zone: http://www.cbccorporate.be (HKLM)

O15 - Trusted Zone: http://www.csob.cz (HKLM)

O15 - Trusted Zone: http://www.csob.sk (HKLM)

O15 - Trusted Zone: http://col.isabel.be (HKLM)

O15 - Trusted Zone: http://www.isabel.be (HKLM)

O15 - Trusted Zone: http://www.beta.isabel.be (HKLM)

O15 - Trusted Zone: http://col.isabel.eu (HKLM)

O15 - Trusted Zone: http://www.isabel.eu (HKLM)

O15 - Trusted Zone: http://www.beta.isabel.eu (HKLM)

O15 - Trusted Zone: http://kbc-pdf.kbc.be (HKLM)

O15 - Trusted Zone: http://static.kbc.be (HKLM)

O15 - Trusted Zone: http://www.kbcam.be (HKLM)

O15 - Trusted Zone: http://www.kbcam.com (HKLM)

O15 - Trusted Zone: http://www.kbcbankingforbusiness.com (HKLM)

O15 - Trusted Zone: http://www.kbccorporates.com (HKLM)

O15 - Trusted Zone: http://www.kbcfi.com (HKLM)

O15 - Trusted Zone: http://www.kbcmerchantbanking.com (HKLM)

O15 - Trusted Zone: http://www.kh.hu (HKLM)

O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab

O16 - DPF: {8FD07749-EFFA-48C6-947C-45A8D7BF422F} (CLVistaGenie Control) - http://www.cyberlink.com/vista/prog/CLVistaGenie.cab

O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/74914091/activex/IPSUploader4.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: Adobe Version Cue CS2 - Adobe Systems Incorporated - C:\Program Files\Adobe1\Adobe Version Cue CS2\bin\VersionCueCS2.exe

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Norton Disk Doctor Service (DiskDoctorService) - Symantec Corporation - C:\Program Files\Symantec\Norton Utilities 16\Tools\Disk Doctor\DiskDoctorSrv.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: lxdvCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdvserv.exe

O23 - Service: lxdv_device - - C:\Windows\system32\lxdvcoms.exe

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files\Norton AntiVirus\Norton AntiVirus\Engine\21.2.0.38\NAV.exe

O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - C:\Program Files\Norton Identity Safe\Engine\2014.7.0.43\NST.exe

O23 - Service: Norton Utilities 16 Start Manager Service (NU16StartManagerSvc) - Unknown owner - C:\Program Files\Symantec\Norton Utilities 16\sMonitor\StartManSvc.exe

O23 - Service: Planner voor Automatische LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe

O23 - Service: S7 Global Services (s7asysvx) - SIEMENS AG - C:\Program Files\Siemens\Step7\S7BIN\s7asysvx.exe

O23 - Service: SIMATIC IEPG Help Service (s7oiehsx) - SIEMENS AG - C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe

O23 - Service: S7TraceServiceX - SIEMENS AG - C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe

O23 - Service: Norton SpeedDisk Service (SpeedDiskService) - Symantec Corporation - C:\Program Files\Symantec\Norton Utilities 16\Tools\SpeedDisk\SpeedDiskSrv.exe

O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

--

End of file - 13188 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\NUAutoUpdate.job

=========Mozilla firefox=========

ProfilePath - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2x58z1l6.default

prefs.js - "browser.search.useDBForOrder" - "false"

prefs.js - "browser.startup.homepage" - "http://www.default-search.net?sid=476&aid=135&itype=n&ver=12302&tm=316&src=hmp"

prefs.js - "extensions.enabledItems" - "{A89AED22-9133-424c-88E7-C8235C5FF302}:0.9.1, {3112ca9c-de6d-4884-a869-9855de68056c}:7.1.20110316W, {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}:6.0.02, {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07, {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}:6.0.05, {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11, {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {20a82645-c095-46ed-80e3-08825760534b}:1.1, {8545daff-ad1e-493f-a37e-eed1ac79682b}:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

prefs.js - "keyword.URL" - "http://www.default-search.net/search?sid=476&aid=135&itype=n&ver=12302&tm=316&src=ds&p="

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5

"{F04D2D30-776C-4d02-8627-8E4385ECA58D}"=C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.5.0.67\coFFPlgn\

"belgiumeid@eid.belgium.be"=C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be

"{BBDA0591-3099-440a-AA10-41764D9DB4DB}"=C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_21.2.0.38\IPSFF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 12.0.0.77 Plugin

"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]

"Description"=DivX Plus Web Player

"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0]

"Description"=DivX® Content Upload Plugin

"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]

"Description"=

"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]

"Description"=DivX VOD Helper Plug-in

"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]

"Description"=Google Earth in your browser

"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3]

"Description"=Office Live Update v1.3

"Path"=C:\Program Files\Microsoft\Office Live\npOLW.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]

"Description"=Windows Presentation Foundation plug-in for Mozilla browsers

"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\

belgiumeid@eid.belgium.be

{3112ca9c-de6d-4884-a869-9855de68056c}

{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\

nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\

np-mswmp.dll

nppdf32.dll

npqtplugin.dll

npqtplugin2.dll

npqtplugin3.dll

npqtplugin4.dll

npqtplugin5.dll

npqtplugin6.dll

npqtplugin7.dll

npqtplugin8.dll

QuickTimePlugin.class

WMP Firefox Plugin License.rtf

WMP Firefox Plugin RelNotes.txt

C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2x58z1l6.default\extensions\

sitefinder@sitefinder.com

toolbar@ask.com

{3112ca9c-de6d-4884-a869-9855de68056c}

{635abd67-4fe9-1b23-4f01-e679fa7484c1}

{E42AC5EF-EAFC-E69C-365F-EF5AF17A5D4D}

C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2x58z1l6.default\searchplugins\

askcom.xml

default-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]

DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]

Norton Vulnerability Protection - C:\Program Files\Norton AntiVirus\Norton AntiVirus\Engine\21.2.0.38\IPS\IPSBHO.DLL [2014-02-21 392344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live Aanmelden - Help - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}]

Norton Identity Protection - C:\Program Files\Norton Identity Safe\Engine\2014.7.0.43\coIEPlg.dll [2014-03-11 654176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]

Bing Bar Helper - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-12 1431712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2012-10-17 1521352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2012-10-17 1521352]

{A13C2648-91D4-4bf3-BC6D-0079707C4389} - Norton Identity Safe Toolbar - C:\Program Files\Norton Identity Safe\Engine\2014.7.0.43\coIEPlg.dll [2014-03-11 654176]

{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-12 1431712]

{CCC7B159-1D8C-11E3-B2AD-F3EF3D58318D} - SiteFinder - C:\Program Files\SiteFinder\SiteFinder.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"eRecoveryService"=C:\Acer\Empowering Technology\eRecovery\eRAgent.exe [2006-06-01 413696]

"ntiMUI"=c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe [2005-05-11 45056]

"Adobe Version Cue CS2"=C:\Program Files\Adobe1\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [2005-04-06 856064]

"lxdvmon.exe"=C:\Program Files\Lexmark X5400 Series\lxdvmon.exe [2007-11-02 455336]

"lxdvamon"=C:\Program Files\Lexmark X5400 Series\lxdvamon.exe [2007-11-02 25256]

"Lexmark X5400 Series Fax Server"=C:\Program Files\Lexmark X5400 Series\fm3032.exe [2007-11-02 307880]

"SkyTel"=C:\Windows\SkyTel.EXE [2006-05-16 2879488]

"S7UB Start"=C:\Program Files\Common Files\Siemens\S7ubtoox\s7ubtstx.exe [2007-07-27 102453]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-08-25 136216]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-08-25 171032]

"Persistence"=C:\Windows\system32\igfxpers.exe [2010-08-25 170520]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

""= []

"ApnUpdater"=C:\Program Files\Ask.com\Updater\Updater.exe [2012-10-17 1573576]

"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2012-11-01 1263512]

"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-10-11 59280]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2012-10-25 421888]

"IsaKbcCertUpdate"=C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe [2012-10-15 1085528]

"RTHDCPL"=C:\Windows\RTHDCPL.EXE [2006-06-01 16208384]

"SoundMan"=C:\Windows\SOUNDMAN.EXE [2006-05-04 86016]

"AlcWzrd"=C:\Windows\ALCWZRD.EXE [2006-05-04 2808832]

"Alcmtr"=C:\Windows\ALCMTR.EXE [2005-05-03 69632]

"SSDMonitor"=C:\Program Files\Symantec\Norton Utilities 16\sMonitor\SSDMonitor.exe [2014-01-17 106112]

"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]

"TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2011-03-09 247728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdVantage]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

C:\Program Files\iTunes\iTunesHelper.exe [2007-03-14 257088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Smart Start UP]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\thdlphqjfaoynye]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WarReg_PopUp]

C:\Acer\WR_PopUp\WarReg_PopUp.exe [2006-09-23 61440]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

WinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK32.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2010-08-25 228864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll, schannel.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles

"legalnoticecaption"=

"legalnoticetext"=

"DisableStatusMessages"=0

"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=149

"NoDrives"=0

"NoInstrumentation"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"AllowLegacyWebView"=1

"AllowUnhashedWebView"=1

"BindDirectlyToPropertySetStorage"=0

"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"vidc.uyvy"=msyuv.dll

"vidc.yuy2"=msyuv.dll

"vidc.yvyu"=msyuv.dll

"vidc.iyuv"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"vidc.yvu9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.cvid"=iccvid.dll

"msacm.msaudio1"=msaud32.acm

"msacm.msg723"=msg723.acm

"msacm.sl_anet"=sl_anet.acm

"msacm.trspch"=tssoft32.acm

"vidc.iv31"=ir32_32.dll

"vidc.iv32"=ir32_32.dll

"vidc.iv41"=ir41_32.ax

"vidc.iv50"=ir50_32.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"msacm.siren"=sirenacm.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-04-22 13:51:28 ----A---- C:\MBAM Scanlog.txt

2014-04-22 13:23:30 ----D---- C:\Program Files\trend micro

2014-04-22 13:22:58 ----D---- C:\rsit

2014-04-22 13:07:07 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys

2014-04-22 13:06:31 ----A---- C:\Windows\system32\drivers\mwac.sys

2014-04-22 13:06:31 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys

2014-04-22 13:06:30 ----D---- C:\Program Files\Malwarebytes Anti-Malware

2014-04-16 21:18:59 ----A---- C:\Windows\system32\mshtmled.dll

2014-04-16 21:18:58 ----A---- C:\Windows\system32\vbscript.dll

2014-04-16 21:18:57 ----A---- C:\Windows\system32\msfeeds.dll

2014-04-16 21:18:57 ----A---- C:\Windows\system32\jsproxy.dll

2014-04-16 21:18:57 ----A---- C:\Windows\system32\ieUnatt.exe

2014-04-16 21:18:57 ----A---- C:\Windows\system32\ieui.dll

2014-04-16 21:18:56 ----A---- C:\Windows\system32\wininet.dll

2014-04-16 21:18:56 ----A---- C:\Windows\system32\jscript.dll

2014-04-16 21:18:55 ----A---- C:\Windows\system32\url.dll

2014-04-16 21:18:55 ----A---- C:\Windows\system32\jscript9.dll

2014-04-16 21:18:54 ----A---- C:\Windows\system32\iertutil.dll

2014-04-16 21:18:53 ----A---- C:\Windows\system32\urlmon.dll

2014-04-16 21:18:53 ----A---- C:\Windows\system32\ieframe.dll

2014-04-16 21:18:46 ----A---- C:\Windows\system32\mshtml.dll

2014-04-16 20:50:39 ----A---- C:\Windows\system32\kernel32.dll

2014-04-15 20:26:53 ----D---- C:\Program Files\SiteFinder

2014-04-15 20:26:51 ----D---- C:\Users\USER\AppData\Roaming\SimilarSites

2014-04-13 12:38:36 ----D---- C:\Program Files\Settings Manager

2014-04-13 12:38:31 ----D---- C:\ProgramData\systemk

2014-04-10 21:28:59 ----D---- C:\Windows\PCHEALTH

2014-04-01 17:31:44 ----SHD---- C:\found.002

2014-03-28 11:24:30 ----A---- C:\ProgramData\SPLFCB5.tmp

2014-03-28 11:13:39 ----A---- C:\Windows\system32\drivers\symlcbrd.sys

2014-03-28 11:05:02 ----D---- C:\Program Files\Norton AntiVirus

2014-03-28 11:04:14 ----A---- C:\Windows\system32\drivers\SYMEVENT.SYS

2014-03-28 08:37:54 ----A---- C:\ProgramData\SPLD7A8.tmp

2014-03-28 00:03:13 ----A---- C:\ProgramData\SPL189E.tmp

2014-03-27 23:29:54 ----A---- C:\ProgramData\SPLB3F3.tmp

2014-03-27 20:57:27 ----D---- C:\ProgramData\PCSettings

2014-03-27 18:15:32 ----A---- C:\ProgramData\SPLD113.tmp

2014-03-27 17:13:25 ----A---- C:\ProgramData\SPLD33D.tmp

2014-03-27 08:40:43 ----A---- C:\ProgramData\SPL5C80.tmp

2014-03-26 23:04:52 ----A---- C:\ProgramData\SPLC4B5.tmp

2014-03-26 22:41:06 ----A---- C:\ProgramData\SPLB579.tmp

2014-03-26 22:33:43 ----D---- C:\Users\USER\AppData\Roaming\Norton Utilities 16

2014-03-26 21:56:19 ----A---- C:\ProgramData\SPL4549.tmp

2014-03-26 21:45:41 ----A---- C:\ProgramData\SPL9EB.tmp

2014-03-26 21:24:25 ----D---- C:\ProgramData\Oracle

2014-03-26 21:23:29 ----A---- C:\Windows\system32\javaws.exe

2014-03-26 21:21:59 ----A---- C:\Windows\system32\WindowsAccessBridge.dll

2014-03-26 21:21:59 ----A---- C:\Windows\system32\javaw.exe

2014-03-26 21:21:58 ----A---- C:\Windows\system32\java.exe

2014-03-26 21:20:34 ----A---- C:\Windows\system32\msxml4a.dll

2014-03-26 21:20:32 ----A---- C:\Windows\system32\CleanMFT32.exe

2014-03-26 21:19:31 ----AD---- C:\ProgramData\TEMP

2014-03-26 21:19:10 ----D---- C:\Users\USER\AppData\Roaming\Product_NU16

2014-03-26 12:49:38 ----A---- C:\ProgramData\SPLA192.tmp

======List of files/folders modified in the last 1 month======

2014-04-23 17:41:08 ----D---- C:\Windows\Prefetch

2014-04-23 17:39:44 ----D---- C:\Windows\temp

2014-04-23 09:00:05 ----SHD---- C:\System Volume Information

2014-04-23 07:44:25 ----SHD---- C:\Windows\Installer

2014-04-23 07:44:24 ----D---- C:\Config.Msi

2014-04-23 07:44:15 ----D---- C:\Windows

2014-04-22 23:20:15 ----A---- C:\Windows\SchedLgU.Txt

2014-04-22 21:02:40 ----RD---- C:\Users

2014-04-22 19:27:25 ----D---- C:\Windows\tracing

2014-04-22 19:27:25 ----D---- C:\Windows\system32\drivers

2014-04-22 19:27:25 ----D---- C:\ProgramData

2014-04-22 13:23:30 ----RD---- C:\Program Files

2014-04-22 13:06:42 ----D---- C:\Users\USER\AppData\Roaming\Malwarebytes

2014-04-22 13:06:42 ----D---- C:\ProgramData\Malwarebytes

2014-04-22 07:52:28 ----D---- C:\Windows\system32\catroot2

2014-04-16 22:44:12 ----D---- C:\Windows\system32\MRT

2014-04-16 22:44:12 ----D---- C:\Windows\System32

2014-04-16 22:40:08 ----D---- C:\Windows\Debug

2014-04-16 22:40:02 ----A---- C:\Windows\system32\mrt.exe

2014-04-16 21:27:31 ----D---- C:\Windows\system32\migration

2014-04-16 21:27:30 ----D---- C:\Program Files\Internet Explorer

2014-04-16 21:20:44 ----D---- C:\Windows\winsxs

2014-04-16 21:20:39 ----D---- C:\Windows\system32\catroot

2014-04-15 20:50:24 ----A---- C:\Windows\system32\FlashPlayerApp.exe

2014-04-13 11:44:55 ----D---- C:\Windows\Microsoft.NET

2014-04-10 21:29:00 ----D---- C:\Program Files\Common Files\microsoft shared

2014-04-10 21:26:52 ----RSD---- C:\Windows\assembly

2014-04-10 21:26:46 ----D---- C:\Program Files\Windows Live

2014-04-10 21:24:10 ----DC---- C:\Windows\system32\DRVSTORE

2014-04-10 21:04:17 ----D---- C:\Program Files\Common Files

2014-04-08 20:46:27 ----SD---- C:\ProgramData\Microsoft

2014-04-08 20:38:17 ----D---- C:\Windows\Logs

2014-04-08 20:32:08 ----RSD---- C:\Windows\Fonts

2014-04-08 20:31:08 ----D---- C:\Users\USER\AppData\Roaming\Azureus

2014-04-08 20:30:02 ----D---- C:\Windows\Minidump

2014-04-04 12:47:37 ----D---- C:\ProgramData\Lx_cats

2014-04-01 21:59:10 ----D---- C:\Windows\system32\config

2014-03-29 22:47:42 ----HD---- C:\Program Files\InstallShield Installation Information

2014-03-29 22:47:41 ----D---- C:\Program Files\NewSoft

2014-03-29 22:47:41 ----D---- C:\Program Files\Common Files\NewSoft

2014-03-29 19:00:41 ----D---- C:\ProgramData\Symantec

2014-03-29 19:00:36 ----SD---- C:\Windows\Tasks

2014-03-29 19:00:36 ----D---- C:\Windows\system32\Tasks

2014-03-29 13:31:58 ----D---- C:\ProgramData\Norton

2014-03-29 13:31:43 ----D---- C:\Program Files\Common Files\Symantec Shared

2014-03-29 12:53:13 ----D---- C:\Windows\system32\drivers\NAV

2014-03-29 11:52:17 ----D---- C:\Program Files\NortonInstaller

2014-03-28 11:06:20 ----D---- C:\Program Files\Symantec

2014-03-27 20:57:27 ----D---- C:\ProgramData\NortonInstaller

2014-03-27 18:00:03 ----SD---- C:\Windows\Downloaded Program Files

2014-03-27 08:58:35 ----D---- C:\Boot

2014-03-26 21:44:33 ----SD---- C:\Users\USER\AppData\Roaming\Microsoft

2014-03-26 21:23:38 ----D---- C:\Program Files\Common Files\Java

2014-03-26 21:21:58 ----D---- C:\Program Files\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2007-03-27 36624]

R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2008-04-03 685816]

R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NAV\1502000.026\SYMDS.SYS [2013-10-30 367704]

R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NAV\1502000.026\SYMEFA.SYS [2014-03-04 936152]

R0 UBHelper;UBHelper; C:\Windows\system32\drivers\UBHelper.sys [2004-12-17 13952]

R1 BHDrvx86;BHDrvx86; \??\C:\Program Files\Norton AntiVirus\Norton AntiVirus\NortonData\21.2.0.38\Definitions\BASHDefs\20140409.001\BHDrvx86.sys [2014-03-19 1098968]

R1 ccSet_NAV;NAV Settings Manager; C:\Windows\system32\drivers\NAV\1502000.026\ccSetx86.sys [2014-02-25 127064]

R1 ccSet_NST;Norton Identity Safe Settings Manager; C:\Windows\system32\drivers\NST\7DE07000.02B\ccSetx86.sys [2013-09-27 127064]

R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2014-03-28 376920]

R1 IDSvix86;IDSVix86; \??\C:\Program Files\Norton AntiVirus\Norton AntiVirus\NortonData\21.2.0.38\Definitions\IPSDefs\20140422.001\IDSvix86.sys [2014-03-28 395992]

R1 SRTSP;Symantec Real Time Storage Protection; C:\Windows\system32\drivers\NAV\1502000.026\SRTSP.SYS [2014-02-13 664280]

R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\Windows\system32\drivers\NAV\1502000.026\SRTSPX.SYS [2013-10-30 32344]

R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NAV\1502000.026\Ironx86.SYS [2013-10-30 206936]

R1 SYMTDIv;Symantec Vista Network Dispatch Driver; C:\Windows\system32\drivers\NAV\1502000.026\SYMTDIV.SYS [2014-02-18 384728]

R2 irda;IrDA-protocol; C:\Windows\system32\DRIVERS\irda.sys [2008-01-19 95744]

R2 s7snsrtx;PROFINET IO RT-Protocol; C:\Windows\system32\DRIVERS\s7snsrtx.sys [2007-07-30 71168]

R2 SNTIE;SIMATIC Industrial Ethernet (ISO); C:\Windows\system32\DRIVERS\sntie.sys [2007-08-10 328192]

R3 GEARAspiWDM;GEAR CDRom Filter; C:\Windows\SYSTEM32\DRIVERS\GEARAspiWDM.sys [2006-09-19 15664]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2010-08-25 9024512]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RtkHDAud.sys [2006-06-06 4284928]

R3 irsir;Microsoft-stuurprogramma voor serieel infraroodapparaat; C:\Windows\system32\DRIVERS\irsir.sys [2008-01-19 20992]

R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-04-03 23256]

R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-04-23 107736]

R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-04-03 51416]

R3 NAVENG;NAVENG; \??\C:\Program Files\Norton AntiVirus\Norton AntiVirus\NortonData\21.2.0.38\Definitions\VirusDefs\20140422.033\NAVENG.SYS [2014-03-28 93272]

R3 NAVEX15;NAVEX15; \??\C:\Program Files\Norton AntiVirus\Norton AntiVirus\NortonData\21.2.0.38\Definitions\VirusDefs\20140422.033\NAVEX15.SYS [2014-03-28 1612376]

R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2006-09-14 6144]

R3 pfc;Padus ASPI Shell; C:\Windows\system32\drivers\pfc.sys [2008-11-04 9856]

R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2006-11-02 47104]

R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2014-03-29 142936]

R3 USBCCID;USB Smart Card reader; C:\Windows\system32\DRIVERS\usbccid.sys [2010-04-30 29184]

R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]

S0 nglep;nglep; C:\Windows\System32\drivers\jueutola.sys []

S0 SMR410;Symantec SMR Utility Service 4.1.0; C:\Windows\System32\drivers\SMR410.SYS []

S2 Dpmtrcdd;Dpmtrcdd; C:\Windows\System32\DRIVERS\dpmtrcdd.sys []

S3 a6ju4h81;a6ju4h81; C:\Windows\system32\drivers\a6ju4h81.sys []

S3 catchme;catchme; \??\C:\Users\USER\AppData\Local\Temp\catchme.sys []

S3 cpuz132;cpuz132; \??\C:\Users\USER\AppData\Local\Temp\cpuz132\cpuz132_x32.sys []

S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]

S3 EraserUtilDrv11310;EraserUtilDrv11310; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11310.sys []

S3 FXDrv32;FXDrv32; \??\E:\FXDrv32.sys []

S3 int15.sys;int15.sys; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys []

S3 MHNDRV;MHN-stuurprogramma; C:\Windows\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]

S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]

S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]

S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]

S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]

S3 psdfilter;psdfilter; \??\C:\WINDOWS\system32\Drivers\psdfilter.sys []

S3 psdvdisk;psdvdisk; \??\C:\WINDOWS\system32\Drivers\psdvdisk.sys []

S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-02 2028032]

S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-05-02 122368]

S3 StMp3Rec;Player Recovery Device Control Driver; C:\Windows\System32\Drivers\StMp3Rec.sys [2004-12-18 38229]

S3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2007-01-09 27576]

S3 TIEHDUSB;TIEHDUSB; C:\Windows\system32\drivers\tiehdusb.sys [2004-02-04 49536]

S3 usb_rndisx;USB RNDIS-adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]

S3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2006-11-02 194048]

S3 ZD1211BU(ZyDAS);ZyDAS ZD1211B IEEE 802.11 b+g Wireless LAN Driver (USB)(ZyDAS); C:\Windows\system32\DRIVERS\zd1211Bu.sys [2005-10-28 402432]

S3 ZD1211U(ZyDAS);ZyDAS ZD1211 IEEE 802.11b+g Wireless LAN Driver (USB)(ZyDAS); C:\Windows\system32\DRIVERS\zd1211u.sys [2005-10-04 280064]

S3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\ZDPSp50.sys [2004-10-25 17664]

S3 ZDPSp60;ZDPSp60 NDIS Protocol Driver; C:\Windows\System32\Drivers\ZDPSp60.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Adobe Version Cue CS2;Adobe Version Cue CS2; C:\Program Files\Adobe1\Adobe Version Cue CS2\bin\VersionCueCS2.exe [2005-04-06 163840]

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]

R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]

R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]

R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2008-01-19 21504]

R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-02-17 73728]

R2 lxdv_device;lxdv_device; C:\Windows\system32\lxdvcoms.exe [2007-10-18 594600]

R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-04-03 1809720]

R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2014-04-03 857912]

R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2006-10-26 335872]

R2 NAV;Norton AntiVirus; C:\Program Files\Norton AntiVirus\Norton AntiVirus\Engine\21.2.0.38\NAV.exe [2014-03-12 262968]

R2 NCO;Norton Identity Safe; C:\Program Files\Norton Identity Safe\Engine\2014.7.0.43\NST.exe [2014-03-11 130104]

R2 NU16StartManagerSvc;Norton Utilities 16 Start Manager Service; C:\Program Files\Symantec\Norton Utilities 16\sMonitor\StartManSvc.exe [2014-01-17 795776]

R2 Planner voor Automatische LiveUpdate;Planner voor Automatische LiveUpdate; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [2007-01-17 554616]

R2 s7asysvx;S7 Global Services; C:\Program Files\Siemens\Step7\S7BIN\s7asysvx.exe [2007-07-27 69685]

R2 s7oiehsx;SIMATIC IEPG Help Service; C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe [2007-11-07 208968]

R2 S7TraceServiceX;S7TraceServiceX; C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe [2007-08-31 163840]

R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2011-03-09 92592]

R3 BBUpdate;BBUpdate; C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.exe [2014-03-12 247968]

S2 BBSvc;BingBar Service; C:\Program Files\Microsoft\BingBar\7.3.132.0\BBSvc.exe [2014-03-12 193696]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]

S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-14 135664]

S2 lxdvCATSCustConnectService;lxdvCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdvserv.exe [2007-10-18 98984]

S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-05-02 72704]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-15 257712]

S3 DiskDoctorService;Norton Disk Doctor Service; C:\Program Files\Symantec\Norton Utilities 16\Tools\Disk Doctor\DiskDoctorSrv.exe [2014-01-17 1150592]

S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-04-03 654848]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-14 135664]

S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]

S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2007-03-14 500800]

S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-01-19 21504]

S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-03-19 119408]

S3 SpeedDiskService;Norton SpeedDisk Service; C:\Program Files\Symantec\Norton Utilities 16\Tools\SpeedDisk\SpeedDiskSrv.exe [2014-01-17 1163904]

S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]

S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 TlntSvr;@%SystemRoot%\system32\tlntsvr.exe,-119; C:\Windows\System32\tlntsvr.exe [2009-04-11 71168]

-----------------EOF-----------------

rk\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 TlntSvr;@%SystemRoot%\system32\tlntsvr.exe,-119; C:\Windows\System32\tlntsvr.exe [2009-04-11 71168]

-----------------EOF-----------------

log.txt

[kape]

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

• Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  
• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

  {00000000-6E41-4FD3-8538-502F5495E5FC};c
 C:\Program Files\Ask.com;fs
 {D4027C7F-154A-4066-A1AD-4243D8127440};c
 {CCC7B159-1D8C-11E3-B2AD-F3EF3D58318D};c
 C:\Program Files\SiteFinder;fs
 ApnUpdater;s
 Alcmtr;s
 C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2x58z1l6.default\extensions\sitefinder@sitefinder.com;fs
 C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2x58z1l6.default\extensions\toolbar@ask.com;fs
 C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2x58z1l6.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c};fs
 C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2x58z1l6.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1};fs
 C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2x58z1l6.default\extensions\{E42AC5EF-EAFC-E69C-365F-EF5AF17A5D4D}
 C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2x58z1l6.default\searchplugins\askcom.xml;f
C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\2x58z1l6.default\searchplugins\default-search.xml;f
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}];r
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run];r
 ""= -;r
"ApnUpdater"=-;r
 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\thdlphqjfaoynye];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe];r
 C:\Program Files\SiteFinder;fs
C:\Users\USER\AppData\Roaming\SimilarSites;fs
C:\Program Files\Settings Manager;fs
C:\ProgramData\systemk;fs
 C:\found.002;fs
 C:\ProgramData\SPLFCB5.tmp;f
 C:\ProgramData\SPLD7A8.tmp;f
 C:\ProgramData\SPL189E.tmp;f
 C:\ProgramData\SPLB3F3.tmp;f
 C:\ProgramData\PCSettings;f
 C:\ProgramData\SPLD113.tmp;f
 C:\ProgramData\SPLD33D.tmp;f
 C:\ProgramData\SPL5C80.tmp;f
 C:\ProgramData\SPLC4B5.tmp;f
 C:\ProgramData\SPLB579.tmp;f
 C:\ProgramData\SPL4549.tmp;f
 C:\ProgramData\SPL9EB.tmp;f
 C:\ProgramData\SPLA192.tmp;f
 emptyfolderscheck;delete 
startupall; 
filesrcm;

• Klik op de knop "Options" en vink nu de onderstaande opties aan.
  
• Do a Quick Scan
  
  
• Auto Clean
  
• De optie "Scan All Users" staat standaard aangevinkt.
  
• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht als bijlage.
  

Zoek.exe logbestand plaatsen

• Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\\Zoek-results.log.)
  
• Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
  

[kape]

Je hebt HIER al een gelijkaardig topic lopen. Om geen dubbel werk te doen, stoppen we met dit topic. Eerst de zaakjes afhandelen in het andere onderwerp en dan kunnen we nog steeds verder zien. Maar ook daar word je perfect geholpen, dus zal dit topic verder niet meer noodzakelijk zijn. We zetten hier dan ook een slotje op !