Ga naar inhoud

istart.webssearches.com

maze
 Delen

Aanbevolen berichten

maze Leerling

maze

Geplaatst:
Geplaatst:

Hallo,

 

ik heb last van istart.webssearches.com en ik krijg het niet weg.

 

Van alles volgens alle instructies geprobeerd maar niets lijkt te lukken.

 

Wie kan mij helpen?

 

Ik ben hier nieuw en moet nog even uitvinden hoe dit forum werkt...

 

Thnx en Grzzz...

 

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Bekijk ook de instructievideo.

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Je Java software is verouderd.

Oudere versies hebben lekken die malware de kans geeft om zich te installeren op je systeem.

Ga naar Java en download daar de correcte Java versie.

  • Klik op "Gratis Java-download".
  • Ga akkoord met de licentiebepalingen en klik op de button voor de gratis download.
  • Het bestand JavaSetup wordt aangeboden - kies hier voor "bestand opslaan".
  • Sluit alle programma's die eventueel open zijn - zeker je web browser!
  • Ga dan naar Start > Configuratiescherm > Software en verwijder alle oudere versies van Java uit de Softwarelijst.
  • Vink alles aan met Java Runtime Environment (JRE of J2SE of JAVA) in de naam.
  • Klik dan op Verwijderen of op de Wijzig/Verwijder knop.
  • Herhaal dit tot alle oudere versies verdwenen zijn.
  • Na het verwijderen van alle oudere versies, herstart je pc.
  • Klik vervolgens op JavaSetup om de nieuwste versie van Java te installeren.
  • Vink de installatie van de Ask toolbar uit en ga dan verder met de installatie.

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5};c
SpUninstallDeleteDir;s
LiveUpdateSvc;s
C:\Program Files (x86)\IObit\LiveUpdate;fs
C:\Windows\tasks\ParetoLogic Registration3.job;f
C:\Windows\tasks\ParetoLogic Update Version3.job;f
C:\Program Files (x86)\Common Files\ParetoLogic;fs
C:\Windows\tasks\SpyHunter4.job;f
C:\Program Files\Enigma Software Group;fs
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}];r64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r64
""=-;r64
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks];r64
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=-;r64
emptyfolderscheck;delete
startupall;
filesrcm;
  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Deep Scan
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.
Zoek.exe logbestand plaatsen
  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Wil je dan toch het logje van zoek.exe even in een bericht hangen, zodat we kunnen nakijken of er eventueel nog restjes zijn overgebleven die nog verwijderd moeten worden. Het is niet omdat het visueel opgelost is, dat in de diepte ook alles weer perfect loopt. Dat willen we nog wel even controleren ;)

Link naar reactie
Delen op andere sites
maze Leerling

maze

Geplaatst:
  • Auteur
Geplaatst:

Zoek.exe v5.0.0.0 Updated 08-February-2015
Tool run by maze on ma 09-02-2015 at 11:45:52,33.
Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\maze\Desktop\zoek.exe [scan all users]   [Deep Scan] [Auto Clean]

==== Older Logs ======================

C:\zoek-results2015-02-07-175534.log 161985 bytes

==== Empty Folders Check ======================

C:\Users\maze\AppData\Local\Google deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2061184732-1361665356-1039020203-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} deleted successfully
HKEY_USERS\S-1-5-21-2061184732-1361665356-1039020203-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Running Processes ======================

C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Prey\platform\windows\cronsvc.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\pdfconverter.com\PDF Converter Elite\3.0\pcSONPrnDisp.exe
C:\Program Files (x86)\uTorrent\utorrent.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Windows\STK03N\STK03NM.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\SysWOW64\MIHDBG.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
C:\Users\maze\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

==== Deleting Services ======================

==== System Specs ======================

Windows: Windows 7 Ultimate Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 5845 MB
CPU Info: AMD A6-3600 APU with Radeon HD Graphics
CPU Speed: 2055,2 MHz
Sound Card: Not detected
Display Adapters: AMD Radeon HD 6530D | AMD Radeon HD 6530D | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen PnP-beeldscherm |
Screen Resolution: 1680 X 1050 - 32 bit
Network: Network Present
Network Adapters: 802.11n Wireless LAN Card | Realtek PCIe GBE Family Controller
CD / DVD Drives: 3x (E: | F: | G: | ) E: HL-DT-STDVDRAM GH70N     | F: TSSTcorpCDDVDW SE-S224Q  | G: TSSTcorpCD/DVDW SH-S182M
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 3 Button Wheel Mouse Present
Hard Disks: C:  914,4GB | D:  100,0MB | J:  931,5GB | N:  1397,3GB
Hard Disks - Free: C:  484,8GB | D:  42,1MB | J:  690,4GB | N:  635,5GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 08/05/11 | ACRSYS - 1072009
Time Zone: West-Europa (standaardtijd)
Motherboard *: Acer Aspire X3470
Country: Nederland
Language: NLD

==== System Specs (Software) ======================

Anti-Virus: ESET NOD32 Antivirus 6.0 On-access scanning disabled (Outdated)
Anti-Spyware: ESET NOD32 Antivirus 6.0 disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Internet Explorer Version: 11.0.9600.17501
Adobe Reader version: 11.0.10.32
Sun Java version: 1.8.0_31 (32-bit)
Sun Java version: 1.8.0_31 (64-bit)
Flash Player version: 11.7.700.224
Shockwave Player version: 12.0.2r122

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-01-22 16:38:42 84B4F61F59A421BD85D97B35D194B42B 86016 ----a-w- C:\Windows\unvise32.exe
2015-01-18 21:41:02 E40041E0CA436C712332EDAA9DB7DF08 286720 ------w- C:\Windows\Setup1.exe
2015-01-18 21:41:01 996F83E516552CA3B51445BB994A6D38 73216 ----a-w- C:\Windows\ST6UNST.EXE
2015-01-10 23:11:49 D906AF9B0308F41FB3015DEB91F33DC9 396 ----a-w- C:\Windows\BeatBox.INI
2015-01-10 23:06:32 3F872BF58729457EB8B28D9C27C6F124 6610 ----a-w- C:\Windows\mgxoschk.ini
====== C:\Users\maze\AppData\Local\Temp ====
====== Java Cache =====
2015-02-08 23:36:13 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\maze\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-5c0afeeb
2015-02-08 23:36:01 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\maze\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-52c047aa
2015-02-08 23:36:01 DDE910B8EE7675F66E56E9F46DD40113 424 ----a-w- C:\Users\maze\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap
2015-02-08 23:36:00 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\maze\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-6a2e04ec
2015-02-08 23:36:01 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- C:\Users\maze\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-69770c30
====== C:\Windows\SysWOW64 =====
2015-02-08 23:35:20 13D186FA6F19823C598335443CE233BC 98216 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-02-03 09:36:17 FFFAAEF7265285A274C3535B65238693 208935 ----a-w- C:\Windows\SysWOW64\drv33260.dll
2015-02-03 09:36:17 79D15C3C4C03674FB88A95D8AFD470FE 273408 ----a-w- C:\Windows\SysWOW64\Pncrt.dll
2015-02-03 09:36:17 711DBC8F0A5D89A2C946C33F2D717C75 217127 ----a-w- C:\Windows\SysWOW64\drv43260.dll
2015-02-03 09:36:17 5FB0F4D86C76470E559CFC0A320B2D35 102439 ----a-w- C:\Windows\SysWOW64\sipr3260.dll
2015-02-03 09:36:17 3E1054C32532E726D9DAF20FA9048BE8 65602 ----a-w- C:\Windows\SysWOW64\cook3260.dll
2015-02-03 09:36:17 2BF29D229C9F685031945E77E6BABD34 176165 ----a-w- C:\Windows\SysWOW64\drv23260.dll
2015-02-03 09:36:16 CB4CC3D4EA7C94A35F1D81C3D750BC8D 626688 ----a-w- C:\Windows\SysWOW64\vp7vfw.dll
2015-02-03 09:36:16 6D22E6E5F03CDA4EEBED1E68CCAA1695 1184984 ----a-w- C:\Windows\SysWOW64\wvc1dmod.dll
2015-01-30 22:32:11 D5C7324203F2A2B4A606317D090A091F 1455616 ----a-w- C:\Windows\SysWOW64\iSED.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-01-30 23:20:18 C8A7EE156FA0E860CB926C1EE3B6F0DB 29712 ----a-w- C:\Windows\Sysnative\nitrolocalmon2.dll
2015-01-30 23:20:18 0412EBC207990E01E1C6232167749704 17936 ----a-w- C:\Windows\Sysnative\nitrolocalui2.dll
2015-01-30 22:32:10 C04F295A40F303FD84298F98D6D25B31 136704 ----a-w- C:\Windows\Sysnative\pc3PCR2PortMon.dll
2015-01-29 13:03:06 EBB227970873D5A5D9A87D9C781CDCEC 114872 ----a-w- C:\Windows\Sysnative\pdfcmon.dll
====== C:\Windows\Sysnative\drivers =====
====== C:\Windows\Tasks ======
2015-02-02 14:00:42 8DA63B1058D3BD78FEA1FB5A8A5E10EC 2530 ----a-w- C:\Windows\Sysnative\Tasks\PC Health Advisor
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-02-04 20:36:12 -------- d-----w- C:\Program Files\trend micro
2015-01-30 23:20:02 -------- d-----w- C:\Program Files\Common Files\Nitro
2015-01-30 23:10:17 36139648 ----a-w- C:\Program Files\nitro_pdf_reader_64.exe
2015-01-22 21:05:07 -------- d-----w- C:\Program Files\wanscam
2015-01-22 21:04:46 -------- d-----w- C:\Program Files\VideoActiveX
======= C:\PROGRA~2 =====
2015-01-31 16:07:18 -------- d-----w- C:\PROGRA~2\UniPDF
2015-01-30 23:20:00 -------- d-----w- C:\PROGRA~2\Nitro
2015-01-30 23:20:00 -------- d-----w- C:\PROGRA~2\COMMON~1\Nitro
2015-01-30 22:59:53 -------- d-----w- C:\PROGRA~2\Adobe Download Assistant
2015-01-30 22:59:51 -------- d-----w- C:\PROGRA~2\COMMON~1\Adobe AIR
2015-01-30 22:32:13 -------- d-----w- C:\PROGRA~2\COMMON~1\PS
2015-01-30 22:32:06 -------- d-----w- C:\PROGRA~2\pdfconverter.com
2015-01-30 22:12:35 -------- d-----w- C:\PROGRA~2\Abex Document Converter Pro
2015-01-30 07:53:19 -------- d-----w- C:\PROGRA~2\Free PDF to Word Doc Converter
2015-01-22 21:04:39 -------- d-----w- C:\PROGRA~2\Wanscam
2015-01-22 16:46:15 -------- d-----w- C:\PROGRA~2\IPCamClient
2015-01-18 21:46:27 -------- d-----w- C:\PROGRA~2\Installation Wizard
2015-01-15 22:25:21 -------- d-----w- C:\PROGRA~2\RemoteViewer_4ch
2015-01-15 22:25:04 -------- d-----w- C:\PROGRA~2\Backup CD Player
2015-01-15 22:23:34 -------- d-----w- C:\PROGRA~2\CdrPlayBack_J2K
2015-01-15 22:20:05 -------- d-----w- C:\PROGRA~2\Remote_J2K
2015-01-15 22:16:12 -------- d-----w- C:\PROGRA~2\Samsung
======= C: =====
2015-02-05 22:33:03 B5671809361EA31E85209D90C4D75E09 726 ----a-w- C:\DelFix.txt
2015-02-04 09:24:59 A7F0FB6CB0515118058730653F559423 57 ----a-w- C:\momotor.txt
2015-01-15 18:38:44 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Debug.QC6
====== C:\Users\maze\AppData\Roaming ======
2015-02-07 17:53:39 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2015-02-07 17:53:39 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2015-02-07 17:53:39 -------- d-----w- C:\Users\Default\AppData\Local\Temp
2015-02-07 17:53:39 -------- d-----w- C:\Users\Default User\AppData\Local\Temp
2015-02-07 17:53:38 -------- d-----w- C:\Users\maze\AppData\Local\Temp
2015-02-04 20:09:18 -------- d-sh--w- C:\Users\maze\AppData\Locallow\EmieUserList
2015-02-04 20:09:18 -------- d-sh--w- C:\Users\maze\AppData\Locallow\EmieSiteList
2015-02-04 20:09:18 -------- d-sh--w- C:\Users\maze\AppData\Locallow\EmieBrowserModeList
2015-02-04 09:24:57 -------- d-----w- C:\Users\maze\AppData\Roaming\MailUpdate
2015-01-31 16:09:22 -------- d-----w- C:\Users\maze\AppData\Roaming\YCanPDF
2015-01-31 16:07:21 -------- d-----w- C:\Users\maze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UniPDF
2015-01-31 12:09:03 -------- d-----w- C:\Users\maze\AppData\Roaming\com.adobe.formscentral.FormsCentralForAcrobat
2015-01-30 23:20:37 -------- d-----w- C:\Users\maze\AppData\Roaming\Nitro
2015-01-30 23:20:37 -------- d-----w- C:\Users\maze\AppData\Roaming\FileOpen
2015-01-30 23:08:53 -------- d-----w- C:\Users\maze\AppData\Roaming\Downloaded Installations
2015-01-30 22:59:55 -------- d-----w- C:\Users\maze\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
2015-01-22 20:48:14 -------- d-----w- C:\Users\maze\AppData\Roaming\iSpy
2015-01-16 16:16:45 B0C1836039CD7957227378B2FAE29C07 186712 ----a-w- C:\Users\maze\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-15 22:25:26 -------- d-----w- C:\Users\maze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RemoteViewer_4ch
2015-01-15 22:25:09 -------- d-----w- C:\Users\maze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Backup CD Player
2015-01-15 21:22:23 -------- d-----w- C:\Users\maze\AppData\Local\ElevatedDiagnostics
2015-01-15 18:54:19 -------- d-----w- C:\Users\maze\AppData\Roaming\Leadertech
====== C:\Users\maze ======
2015-02-08 23:35:07 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-02-07 17:03:07 CA2522F1E480FA299060C05B859DE16D 639912 ----a-w- C:\Users\maze\Desktop\JavaSetup8u31.com
2015-02-06 15:45:26 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\maze\Desktop\RSITx64.exe
2015-02-05 10:05:11 8E1B08222F20E45A3E8DB04C569F9CB7 8 --sha-r- C:\ProgramData\ntuser.pol
2015-02-04 09:24:57 -------- d-----w- C:\ProgramData\MailUpdate
2015-01-31 16:07:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UniPDF
2015-01-30 23:20:37 -------- d-----w- C:\ProgramData\FileOpen
2015-01-30 23:20:00 -------- d-----w- C:\ProgramData\Nitro
2015-01-30 23:19:14 4AC6B92A601056E1FCDCDC48625DEAFE 36139648 ----a-w- C:\Users\maze\Downloads\nitro_pdf_reader_64.exe
2015-01-30 23:13:38 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2015-01-30 22:59:08 7F8A0E628D3561287725FD1C77D1D773 2603176 ----a-w- C:\Users\maze\Desktop\AdobeDownloadAssistant.exe
2015-01-30 22:32:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Converter Elite 3
2015-01-30 22:13:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Abex Document Converter Pro
2015-01-30 07:53:22 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free PDF to Word Doc Converter
2015-01-23 21:43:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-01-22 21:06:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoActiveX
2015-01-18 21:46:28 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Installation Wizard
2015-01-15 22:25:26 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RemoteViewer_4ch
2015-01-15 22:25:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup CD Player
2015-01-15 22:23:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD-R BACKUP PLAYER J2K
2015-01-15 22:20:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote_J2K
2015-01-15 22:16:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartViewer 2.0 for ProDVR

====== C: exe-files ==
2015-02-08 23:35:07 B0D46640968F989830413EB88F43E0D0 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe
2015-02-08 23:35:07 52C8B9FD016E6317FDB151296FF90877 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe
2015-02-08 23:35:07 3E72E1AB196855916E2065C604674631 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe
2015-02-08 23:34:30 F9D744CD9BC58F287F8FA59D32508EDD 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\orbd.exe
2015-02-08 23:34:30 DBB5C8AE19ACFA2857CFB90C7305AC56 51112 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssvagent.exe
2015-02-08 23:34:30 DA34E76DE9CD93471F24E7BD43139958 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\kinit.exe
2015-02-08 23:34:30 CDB1FE0DCF2ADB755EBF65C8AEBBC871 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\servertool.exe
2015-02-08 23:34:30 AF82EA1498FEC5C49B8A1AE5AA0A5F6C 77224 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2launcher.exe
2015-02-08 23:34:30 A8884FB8246655C84F110E77DF5E1B4A 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\ktab.exe
2015-02-08 23:34:30 90C02BD6D01BBC1C620323F9E330E89C 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jjs.exe
2015-02-08 23:34:30 8B6DF9CD28359C5E819446FD79CE3948 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\rmiregistry.exe
2015-02-08 23:34:30 7479DA0BED071427A3F0017AC51CC27B 159656 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\unpack200.exe
2015-02-08 23:34:30 69BD74EE834B5629226BF89468B8020B 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\keytool.exe
2015-02-08 23:34:30 5F7C51E0DCA813D647F14FC12AE675F2 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\policytool.exe
2015-02-08 23:34:30 577F5DCBA4DE4C345631873670F84E79 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\tnameserv.exe
2015-02-08 23:34:30 39685FC75B6FB2144E793595F1AB111D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\pack200.exe
2015-02-08 23:34:30 2F77C9862B1A2401278C4A5B932DA69D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\klist.exe
2015-02-08 23:34:30 0FB2ACAC796B166F6486B593B604A3FF 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\rmid.exe
2015-02-08 23:34:29 F5EA785B2BCC08DC28CBC2D96E05F2C1 68520 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\javacpl.exe
2015-02-08 23:34:29 DF1C8EDDAF14D2960A06A9DF7B2D0A89 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\java-rmi.exe
2015-02-08 23:34:29 B0D46640968F989830413EB88F43E0D0 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\java.exe
2015-02-08 23:34:29 52C8B9FD016E6317FDB151296FF90877 272296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\javaws.exe
2015-02-08 23:34:29 3E72E1AB196855916E2065C604674631 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\javaw.exe
2015-02-08 23:34:29 063A1044A451660B159426B9C5E75957 30632 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jabswitch.exe
2015-02-06 15:45:26 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\maze\Desktop\RSITx64.exe
2015-02-05 22:09:02 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\maze.exe
2015-02-04 09:24:57 6A428C99419BB3B7CABEA883FDD0661C 774144 ----a-w- C:\Users\maze\AppData\Roaming\MailUpdate\MailUpdate.exe
2015-02-03 09:36:24 18D4A023842DC83FC6615A63B571C933 2002944 ----a-w- C:\Program Files (x86)\VSO\ConvertX\4\lang\EditLoc.exe
2015-02-03 09:36:17 9338A77C9FA83B346D3C32B0CE76DB52 2279464 ----a-w- C:\Program Files (x86)\VSO\pcsetup\PcSetup.exe
2015-02-03 09:36:12 1096E1AF36A8E19D4AC1CA2664D09A99 9862944 ----a-w- C:\Program Files (x86)\VSO\ConvertX\4\ConvertXtoDvd.exe
2015-02-03 09:36:11 F185691FDD052468CB5B39139AC0A162 1158472 ----a-w- C:\Program Files (x86)\VSO\ConvertX\4\unins000.exe
=== C: other files ==
2015-02-08 23:34:30 3315140254247E248C3531F159C79109 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\lib\deploy\ffjcext.zip
2015-02-07 17:03:07 CA2522F1E480FA299060C05B859DE16D 639912 ----a-w- C:\Users\maze\Desktop\JavaSetup8u31.com

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2061184732-1361665356-1039020203-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"æTorrent"="C:\Program Files (x86)\uTorrent\utorrent.exe"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"
"MIHDBG"="C:\Windows\system32\MIHDBG.exe"
"ArcSoft Connection Service"="C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"Acrobat Assistant 8.0"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"æTorrent"="C:\Program Files (x86)\uTorrent\utorrent.exe"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe /hide /waitservice"
"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"PDF Converter Elite Print Dispatcher"="C:\Program Files (x86)\pdfconverter.com\PDF Converter Elite\3.0\pcSONPrnDisp.exe"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

==== Startup Folders ======================

2013-07-08 15:09:36 289 ----a-w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RUN.CMD
2013-07-08 15:09:36 289 ----a-w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RUN.CMD
2013-11-16 11:02:10 1958 ----a-w- C:\Users\maze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP 5510 studio.lnk
2014-08-21 22:11:04 1556 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\STK03N PNP Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\DriverNavigator Scheduled Scan.job --a------ C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe [23-12-2013 01:25]
C:\Windows\tasks\RDReminder.job --a------ C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe []
C:\Windows\tasks\SpyHunter4.job --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe []
C:\Windows\tasks\Wise Care 365.job --a------ C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\DriverUpdate Startup" [C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe]
"C:\Windows\SysNative\tasks\HPCustParticipation HP Photosmart 5510d series" ["C:\Program Files\HP\HP Photosmart 5510d series\Bin\HPCustPartic.exe"]
"C:\Windows\SysNative\tasks\PC Health Advisor" [C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe]
"C:\Windows\SysNative\tasks\SpyHunter4Startup" ["C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe"]
"C:\Windows\SysNative\tasks\Uninstaller_SkipUac_maze" [C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [02-02-2015 14:38]

==== Firefox Extensions ======================

ProfilePath: C:\Users\maze\AppData\Roaming\Mozilla\Firefox\Profiles\gidjpabe.default-1418068477404
- Undetermined - C:\Program Files (x86)\IObit Apps Toolbar\FF
- Advanced SystemCare Surfing Protection - %ProfilePath%\extensions\iobitascsurfingprotection@iobit.com

ProfilePath: C:\Users\maze\AppData\Roaming\Mozilla\Firefox\Profiles\i0tuvvts.default
- Advanced SystemCare Surfing Protection - %ProfilePath%\extensions\iobitascsurfingprotection@iobit.com
- Link Capture - %ProfilePath%\extensions\{95f3ed70-1b14-11dd-bd0b-0800200c9a66}.xpi

ProfilePath: C:\Users\maze\AppData\Roaming\TomTom\HOME\Profiles\4flxqqr0.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com
- Emulator - %ProfilePath%\extensions\Navcore.9.500.1161701@tomtom.com
- Tyre - %ProfilePath%\extensions\tyre@tyre.tk

==== Firefox Plugins ======================

Profilepath: C:\Users\maze\AppData\Roaming\Mozilla\Firefox\Profiles\gidjpabe.default-1418068477404
4D937A89BA27B3F7EB2474EFF2D711E6 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll - Shockwave Flash
66640A55AEFF3819C94E0A8D40D7E0AD - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll - Shockwave for Director / Shockwave for Director

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[03-12-2014 07:31]

DropToS - maze\AppData\Local\Torch\User Data\Default\Extensions\cipmepknanmbbaneimacddfemfbfgpgo
Torch Games - maze\AppData\Local\Torch\User Data\Default\Extensions\elnodfjhjgpnmdhklbfeijeaehcgffnp
Torch Music - maze\AppData\Local\Torch\User Data\Default\Extensions\gcjbdjlojcomlphfchhihkigepfabcad
FaceLift - maze\AppData\Local\Torch\User Data\Default\Extensions\gimjmfipknpppbpmkdenjjpfhobiiojk
Torch Helper - maze\AppData\Local\Torch\User Data\Default\Extensions\lecpjhggilhbceadobnggaagnpfpafhg
Torch Torrent - maze\AppData\Local\Torch\User Data\Default\Extensions\mpdmibcjecdaibcnlilhiopefjgegjjc
Google Wallet - maze\AppData\Local\Torch\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Torch Music - maze\AppData\Local\Torch\User Data\Default\Extensions\ohimbkoaphfnmekmfppijeblmkncneed
Hola - maze\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://msn.nl/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://msn.nl/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{80c554b9-c7f8-4a21-9471-06d606da78a2}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{80c554b9-c7f8-4a21-9471-06d606da78a2} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE"

==== HijackThis Entries ======================

O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [MIHDBG] C:\Windows\system32\MIHDBG.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [µTorrent] "C:\Program Files (x86)\uTorrent\utorrent.exe"
O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: []  (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [spUninstallDeleteDir] rmdir /s /q "\SearchProtect" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: []  (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [spUninstallDeleteDir] rmdir /s /q "\SearchProtect" (User 'Default user')
O4 - .DEFAULT User Startup: RUN.CMD (User 'Default user')
O4 - Startup: Inktwaarschuwingen controleren - HP 5510 studio.lnk = ?
O4 - Global Startup: STK03N PNP Monitor.lnk = ?
O8 - Extra context menu item: Converteren naar Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Doel van koppeling converteren naar Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Doel van koppeling toevoegen aan bestaande PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Toevoegen aan bestaande PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{8FBE62DB-7C25-4C56-A7FB-855A6F018F84}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Cron Service for Prey (CronService) - Fork Ltd. - C:\Prey\platform\windows\cronsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NitroPDFReaderDriverCreatorReadSpool3 (NitroReaderDriverReadSpool3) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PDF Architect 2 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\ws.exe
O23 - Service: pdfforge CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\maze\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\maze\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X3GWDSDY will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\maze\AppData\Local\Mozilla\Firefox\Profiles\gidjpabe.default-1418068477404\cache2 emptied successfully
C:\Users\maze\AppData\Local\Mozilla\Firefox\Profiles\i0tuvvts.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\maze\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\maze\AppData\Local\Torch\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\maze\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\maze\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\maze\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X3GWDSDY" not found

==== EOF on ma 09-02-2015 at 12:36:27,75 ======================

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download adwcleaner.pngAdwCleaner by Xplode naar het bureaublad (verwijder eerst eventuele aanwezige oudere versies van deze tool op je PC, zodat je nu de meest recente database van AdwCleaner kan gebruiken).

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik op Scan.
  • Klik vervolgens op Clean.
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.

Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[s0].txt.

Logbestand plaatsen

  • Voeg het logbestand met de naam C:\AdwCleaner\AdwCleaner[s0].txt als bijlage toe aan het volgende bericht.
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Link naar reactie
Delen op andere sites
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.