Zoek.exe Version 4.0.0.4 Updated 31-08-2013 Tool run by stefaan on do 05-09-2013 at 23:22:58,34. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: D:\Users\stefaan\Desktop\zoek.exe [Deep Scan] ==== System Restore Info ====================== 5-9-2013 23:25:40 Zoek.exe System Restore Point Created Succesfully. ==== Running Processes ====================== D:\Windows\System32\smss.exe D:\PROGRA~1\AVG\AVG2013\avgrsx.exe D:\Program Files\AVG\AVG2013\avgcsrvx.exe D:\Windows\system32\csrss.exe D:\Windows\system32\wininit.exe D:\Windows\system32\csrss.exe D:\Windows\system32\winlogon.exe D:\Windows\system32\services.exe D:\Windows\system32\lsass.exe D:\Windows\system32\lsm.exe D:\Windows\System32\spoolsv.exe D:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe D:\Program Files\AVG\AVG2013\avgidsagent.exe D:\Program Files\AVG\AVG2013\avgwdsvc.exe D:\Program Files\Bonjour\mDNSResponder.exe D:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE D:\Program Files\AVG\AVG2013\avgnsx.exe D:\Program Files\AVG\AVG2013\avgemcx.exe D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe D:\Windows\system32\taskeng.exe D:\Program Files\Windows Media Player\wmpnetwk.exe D:\Windows\system32\SearchIndexer.exe D:\Program Files\Microsoft\BingBar\7.2.241.0\SeaPort.exe D:\Windows\system32\taskhost.exe D:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe D:\Windows\system32\Dwm.exe D:\Windows\Explorer.EXE D:\Program Files\AVG\AVG2013\avgui.exe D:\Windows\System32\igfxtray.exe D:\Windows\System32\hkcmd.exe D:\Windows\System32\igfxpers.exe D:\Program Files\DivX\DivX Update\DivXUpdate.exe D:\Program Files\HP\HP Software Update\hpwuschd2.exe D:\Program Files\iTunes\iTunesHelper.exe D:\Program Files\Windows Sidebar\sidebar.exe D:\Windows\system32\igfxsrvc.exe D:\Windows\system32\RunDll32.exe D:\Program Files\Stardock\ObjectDockFree\ObjectDock.exe D:\Program Files\iPod\bin\iPodService.exe D:\Program Files\Google\Chrome\Application\chrome.exe D:\Program Files\Google\Chrome\Application\chrome.exe D:\Program Files\Google\Chrome\Application\chrome.exe D:\Program Files\Google\Chrome\Application\chrome.exe D:\Program Files\Google\Chrome\Application\chrome.exe D:\Program Files\Google\Chrome\Application\chrome.exe D:\Program Files\Google\Chrome\Application\chrome.exe D:\Program Files\Google\Chrome\Application\chrome.exe D:\Program Files\Google\Chrome\Application\chrome.exe D:\Program Files\Google\Chrome\Application\chrome.exe D:\Windows\system32\NOTEPAD.EXE D:\Windows\system32\NOTEPAD.EXE D:\Program Files\WinRAR\WinRAR.exe D:\Users\stefaan\Desktop\zoek.exe D:\Windows\system32\conhost.exe D:\Windows\system32\conhost.exe D:\Windows\system32\wbem\wmiprvse.exe D:\Windows\system32\vssvc.exe D:\Windows\system32\SearchProtocolHost.exe D:\Windows\system32\SearchFilterHost.exe D:\Windows\system32\svchost.exe -k DcomLaunch D:\Windows\system32\svchost.exe -k RPCSS D:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted D:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted D:\Windows\system32\svchost.exe -k LocalService D:\Windows\system32\svchost.exe -k netsvcs D:\Windows\system32\svchost.exe -k NetworkService D:\Windows\system32\svchost.exe -k LocalServiceNoNetwork D:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation D:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted D:\Windows\System32\svchost.exe -k swprv ==== System Specs ====================== Windows: Windows 7 Home Premium Edition Service Pack 1 (Build 7601) Memory (RAM): 3002 MB CPU Info: Pentium(R) Dual-Core CPU T4400 @ 2.20GHz CPU Speed: 878,7 MHz Sound Card: Luidsprekers (High Definition A | Display Adapters: Mobile Intel(R) 4 Series Express Chipset Family | Mobile Intel(R) 4 Series Express Chipset Family | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Algemeen PnP-beeldscherm | Screen Resolution: 1600 X 900 - 32 bit Network: Network Present Network Adapters: Microsoft Virtual WiFi Miniport Adapter | Broadcom 802.11n-netwerkadapter | Atheros AR8132 PCI-E Fast Ethernet Controller (NDIS 6.20) CD / DVD Drives: 1x (E: | ) E: MATSHITADVD-RAM UJ890AS Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 102,0MB | D: 220,8GB Hard Disks - Free: C: 57,8MB | D: 24,0GB Manufacturer *: eMachines BIOS Info: AT/AT COMPATIBLE | 02/10/10 | ACRSYS - 1 Time Zone: West-Europa (standaardtijd) Motherboard *: eMachines Internet Explorer Version: 10.0.9200.16660 Sun Java version: No Java Installed? Country: Nederland Language: NLD ==== Files Recently Created / Modified ====================== ====== D:\Windows ==== ====== D:\Users\stefaan\AppData\Local\Temp ==== ====== D:\Windows\system32 ===== ====== D:\Windows\system32\drivers ===== 2013-08-14 20:53:30 4E8B9BE71B807B3BAEDB7F4243F85E3C 1293760 ----a-w- D:\Windows\System32\drivers\tcpip.sys 2013-08-14 20:51:09 B37B08F2E5EEB1A37E448E09BACE1101 31232 ----a-w- D:\Windows\System32\drivers\tssecsrv.sys ====== D:\Windows\Tasks ====== 2013-09-03 05:55:00 F13F0AD1305085B76A7D1FFBDCE77F62 3436 ----a-w- D:\Windows\system32\Tasks\BrowserDefendert 2013-08-29 08:01:06 E0F51049DDC86B339C72EB66B4989745 3400 ----a-w- D:\Windows\system32\Tasks\EPUpdater 2013-08-29 08:01:01 B64D7C62A440D9FC3823B68BB19D6BD6 3106 ----a-w- D:\Windows\system32\Tasks\PC Performer 2013-08-28 18:42:11 AFFF9ECADB987EBBFC1070400E4B1E4E 3634 ----a-w- D:\Windows\system32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series 2013-08-28 18:19:18 B208C3DC5FD3571F1DB8EFA3FF1BC26A 270 ----a-w- D:\Windows\Tasks\DriverDoc_UPDATES.job 2013-08-28 18:19:18 5C96EC85FD492F078888716BA7CF73E1 3020 ----a-w- D:\Windows\system32\Tasks\DriverDoc_UPDATES 2013-08-28 18:19:11 62566E034ED29EF04C60C5BD856A1AB9 3110 ----a-w- D:\Windows\system32\Tasks\DriverDocRunAtStartup ====== D:\Windows\Temp ====== ======= D:\Program Files ===== 2013-09-05 09:56:12 -------- d-----w- D:\Program Files\trend micro 2013-09-01 22:09:48 -------- d-----w- D:\Program Files\iPod 2013-09-01 22:09:47 -------- d-----w- D:\Program Files\iTunes 2013-08-29 08:00:45 -------- d-----w- D:\Program Files\7Go Games 2013-08-29 08:00:35 -------- d-----w- D:\Program Files\Video Performer 2013-08-28 18:42:31 -------- d-----w- D:\Program Files\Microsoft 2013-08-28 18:42:27 -------- d-----w- D:\Program Files\HP Photo Creations 2013-08-28 18:41:39 -------- d-----w- D:\Program Files\HP 2013-08-28 18:19:06 -------- d-----w- D:\Program Files\DriverDoc ======= D: ===== ====== D:\Users\stefaan\AppData\Roaming ====== 2013-08-31 20:52:59 -------- d-----w- D:\users\stefaan\AppData\Local\avgchrome 2013-08-29 08:01:48 -------- d-----w- D:\users\stefaan\AppData\Locallow\Delta 2013-08-29 08:01:35 -------- d-----w- D:\users\stefaan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender 2013-08-29 08:01:13 -------- d-----w- D:\users\stefaan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Video Performer 2013-08-29 08:00:57 -------- d-----w- D:\users\stefaan\AppData\Roaming\PerformerSoft 2013-08-29 08:00:41 -------- d-----w- D:\users\stefaan\AppData\Roaming\7go 2013-08-28 18:42:14 -------- d-----w- D:\users\stefaan\AppData\Roaming\HpUpdate 2013-08-28 18:41:16 -------- d-----w- D:\users\stefaan\AppData\Local\HP 2013-08-28 18:30:03 -------- d-----w- D:\users\stefaan\AppData\Local\ElevatedDiagnostics 2013-08-28 18:19:08 -------- d-----w- D:\users\stefaan\AppData\Roaming\Solvusoft ====== D:\Users\stefaan ====== 2013-09-05 09:55:13 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- D:\Users\stefaan\Downloads\RSIT.exe 2013-09-01 22:10:30 -------- d-----w- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2013-09-01 22:09:47 -------- d-----w- D:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2013-08-29 08:01:07 -------- d-----w- D:\ProgramData\BrowserDefender 2013-08-29 08:00:51 -------- d-----w- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Performer 2013-08-28 18:42:27 -------- d-----w- D:\ProgramData\Visan 2013-08-28 18:42:27 -------- d-----w- D:\ProgramData\HP Photo Creations 2013-08-28 18:42:02 -------- d-----w- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2013-08-28 18:41:42 -------- d-----w- D:\ProgramData\HP 2013-08-28 18:41:34 26B5C6D00ED485E883A08A0D82C0CB69 57 ----a-w- D:\ProgramData\Ament.ini 2013-08-28 18:35:14 AD25AD09344ABBF4E296589440C1FE35 51012704 ----a-w- D:\Users\stefaan\Downloads\DJ2050_J510_1313.exe 2013-08-28 18:27:05 90DB0DC7F88A778B4937A776DA737BA3 3441528 ----a-w- D:\Users\stefaan\Downloads\DriverDoc_2013_a (2).exe 2013-08-28 18:25:57 90DB0DC7F88A778B4937A776DA737BA3 3441528 ----a-w- D:\Users\stefaan\Downloads\DriverDoc_2013_a (1).exe 2013-08-28 18:25:15 90DB0DC7F88A778B4937A776DA737BA3 3441528 ----a-w- D:\Users\stefaan\Downloads\DriverDoc_2013_a.exe 2013-08-28 18:21:37 90DB0DC7F88A778B4937A776DA737BA3 3441528 ----a-w- D:\Users\stefaan\Downloads\HP_(Hewlett_Packard)_Deskjet_2050_-_J510a_Driver_Update_08-2013.exe 2013-08-28 18:19:06 -------- d-----w- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverDoc 2013-08-28 18:18:36 90DB0DC7F88A778B4937A776DA737BA3 3441528 ----a-w- D:\Users\stefaan\Downloads\HP_(Hewlett_Packard)_Deskjet_2050_Driver_Update_08-2013.exe ====== D: exe-files == 2013-09-05 09:56:13 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- D:\Program Files\trend micro\stefaan.exe 2013-09-05 09:55:13 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- D:\Users\stefaan\Downloads\RSIT.exe 2013-09-05 08:11:45 514FC42D49F76C16CC1839A6B9D3AC05 1611104 ----a-w- D:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\29.0.1547.66\29.0.1547.66_29.0.1547.62_chrome_updater.exe 2013-09-03 15:43:41 B73A868ED7B0CFA05E50C184E13519A7 8710688 ----a-w- D:\Users\stefaan\AppData\Roaming\Azureus\tmp\AZU8264269924581762823.tmp\Vuze_5.1.0.0_win32.exe 2013-09-01 22:10:04 292498C29B4D7FAA420C7FF1111E1467 11136160 ----a-w- D:\Program Files\Microsoft\BingBar\7.2.241.0oemBingBarSetup-Partner.EXE 2013-09-01 22:06:37 277DF1C06782563C95661C30AA02CD49 77136 ----a-w- D:\Users\stefaan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3CSIELVY\SetupAdmin[1].exe 2013-09-01 22:06:37 277DF1C06782563C95661C30AA02CD49 77136 ----a-w- D:\ProgramData\Apple Computer\Installer Cache\iTunes 11.0.5.5\SetupAdmin.exe === D: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3303594453-3049945180-739671812-1001\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_14BE2B2BF00BE93C9375112813C2BC70"="D:\Program Files\Google\Chrome\Application\chrome.exe --no-startup-window" "Smart Driver Updater"="D:\Program Files\Smart Driver Updater\SDULauncher.exe" "Sidebar"="D:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "Azureus"="D:\Program Files\Vuze\Azureus.exe" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="D:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="D:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG_UI"="D:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY" "IgfxTray"="D:\Windows\system32\igfxtray.exe" "HotKeysCmds"="D:\Windows\system32\hkcmd.exe" "Persistence"="D:\Windows\system32\igfxpers.exe" "DivXMediaServer"="D:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe" "DivXUpdate"="D:\Program Files\DivX\DivX Update\DivXUpdate.exe /CHECKNOW" "HP Software Update"="D:\Program Files\Hp\HP Software Update\HPWuSchd2.exe" "iTunesHelper"="D:\Program Files\iTunes\iTunesHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_14BE2B2BF00BE93C9375112813C2BC70"="D:\Program Files\Google\Chrome\Application\chrome.exe --no-startup-window" "Smart Driver Updater"="D:\Program Files\Smart Driver Updater\SDULauncher.exe" "Sidebar"="D:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "Azureus"="D:\Program Files\Vuze\Azureus.exe" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="APSDaemon" "hkey"="HKLM" "command"="\"D:\\Program Files\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="iTunesHelper" "hkey"="HKLM" "command"="\"D:\\Program Files\\iTunes\\iTunesHelper.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="QuickTime Task" "hkey"="HKLM" "command"="\"D:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-] "Facebook Update"="\"D:\\Users\\stefaan\\AppData\\Local\\Facebook\\Update\\FacebookUpdate.exe\" /c /nocrashserver" "GoogleChromeAutoLaunch_14BE2B2BF00BE93C9375112813C2BC70"="\"D:\\Program Files\\Google\\Chrome\\Application\\chrome.exe\" --no-startup-window" "BitTorrent"="\"D:\\Program Files\\BitTorrent\\BitTorrent.exe\" /MINIMIZED" "DriverScanner"="\"D:\\Program Files\\Uniblue\\DriverScanner\\launcher.exe\" delay 20000 " "Sidebar"="D:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun" "msnmsgr"="~\"D:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "Adobe ARM"="\"D:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "HotKeysCmds"="D:\\Windows\\system32\\hkcmd.exe" "Persistence"="D:\\Windows\\system32\\igfxpers.exe" "IgfxTray"="D:\\Windows\\system32\\igfxtray.exe" "Sweetpacks Communicator"="D:\\Program Files\\SweetIM\\Communicator\\SweetPacksUpdateManager.exe" ==== Startup Folders ====================== 2013-08-28 19:11:05 1958 ----a-w- D:\users\stefaan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 2050 J510 series.lnk 2013-03-03 15:32:59 2042 ----a-w- D:\users\stefaan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk 2013-03-06 23:19:12 852 ----a-w- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Password .lnk ==== Task Scheduler Jobs ====================== D:\Windows\tasks\Adobe Flash Player Updater.job --a------ D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [04-08-2013 04:00] D:\Windows\tasks\DriverDoc_UPDATES.job --a------ D:\Program Files\DriverDoc\Solvusoftdd.exe [05-10-2012 19:06] D:\Windows\tasks\DSite.job --a------ D:\Users\stefaan\AppData\Roaming\DSite\UPDATE1\UPDATE1.exe [] D:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3303594453-3049945180-739671812-1001Core.job --a------ D:\Users\stefaan\AppData\Local\Facebook\Update\FacebookUpdate.exe [16-01-2013 16:54] D:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3303594453-3049945180-739671812-1001UA.job --a------ [Undetermined Task] D:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ D:\Program Files\Google\Update\GoogleUpdate.exe [28-10-2012 16:25] D:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ D:\Program Files\Google\Update\GoogleUpdate.exe [28-10-2012 16:25] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gaiilaahiahdejapggenmdmafpmbipje - D:\Program Files\DealPly\DealPly.crx[] gjajpkikblccgefaibcafkfbanllpefi - D:\Users\stefaan\AppData\Roaming\7go\7go.crx[30-07-2013 14:22] jcdgjdiieiljkfkdcloehkohchhpekkn - D:\Users\stefaan\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx[27-12-2012 15:59] licjnkifamhpbaefhdpacpmihicfbomb - D:\Program Files\PricePeep\pricepeep.crx[] niapdbllcanepiiimjjndipklodoedlc - D:\Program Files\Yontoo\YontooLayers.crx[24-10-2012 02:36] nneajnkjbffgblleaoojgaacokifdkhm - D:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[06-05-2013 10:12] ogccgbmabaphcakpiclgcnmcnimhokcj - D:\Users\stefaan\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetNT.crx[27-12-2012 15:59] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions gaiilaahiahdejapggenmdmafpmbipje - D:\Program Files\DealPly\DealPly.crx[] nikpibnbobmbdbheedjfogjlikpgpnhp - D:\Program Files\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[12-12-2012 19:51] YouTube - stefaan - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Last updated at time on date - stefaan - Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Google Search - stefaan - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf 7Go Games - stefaan - Default\Extensions\gjajpkikblccgefaibcafkfbanllpefi Card number - stefaan - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Better Pop Up Blocker - stefaan - Default\Extensions\nmpeeekfhbmikbdhlpjbfmnpgcbeggic DivX Plus Web Player HTML5 \u003Cvideo\u003E - stefaan - Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm Gmail - stefaan - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== IE Start and Search Settings ====================== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://search.babylon.com/?babsrc=HP_def_bay2g" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR" {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} Delta Search Url="http://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=8812C417FE24568A&affID=119649&tsp=4989" {469162C6-CA9D-46F6-A268-5472CDCC08E4} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}" {483830EE-A4CD-4b71-B0A3-3D82E62A6909} Unknown Url="Not_Found" {EEE6C360-6118-11DC-9C72-001320C79847} SweetIM Search Url="http://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10009&barid={7CEB78BD-502D-11E2-A737-705AB6196769}" ==== HijackThis Entries ====================== O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Increase performance and video formats for your HTML5