jpp

# AdwCleaner v3.014 - Report created 04/12/2013 at 05:40:49 # Updated 01/12/2013 by Xplode # Operating System : Windows 7 Home Premium (32 bits) # Username : jean - JEAN-PC # Running from : C:\Users\jean\Downloads\adwcleaner (1).exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\Users\jean\AppData\Local\torch Folder Deleted : C:\Users\jean\AppData\Local\UtilityChest_49 Folder Deleted : C:\Users\jean\AppData\Local\webplayer Folder Deleted : C:\Users\jean\AppData\LocalLow\UtilityChest_49 Folder Deleted : C:\Users\tinne\AppData\Local\UtilityChest_49 Folder Deleted : C:\Users\tinne\AppData\LocalLow\UtilityChest_49 Folder Deleted : C:\Users\laura\AppData\LocalLow\UtilityChest_49 ***** [ Shortcuts ] ***** ***** [ Registry ] ***** [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{45460C59-2A4E-403C-A11D-1F29F85D6C31} [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45460C59-2A4E-403C-A11D-1F29F85D6C31} Key Deleted : HKCU\Software\Classes\Applications\lollipop.exe Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.DynamicBarButton Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.DynamicBarButton.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.FeedManager Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.FeedManager.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.HTMLMenu Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.HTMLMenu.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.HTMLPanel Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.HTMLPanel.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.MultipleButton Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.MultipleButton.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.PseudoTransparentPlugin Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.PseudoTransparentPlugin.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.Radio Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.Radio.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.RadioSettings Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.RadioSettings.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ScriptButton Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ScriptButton.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ThirdPartyInstaller Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ThirdPartyInstaller.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ToolbarProtector Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.ToolbarProtector.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.UrlAlertButton Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.UrlAlertButton.1 Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.XMLSessionPlugin Key Deleted : HKLM\SOFTWARE\Classes\UtilityChest_49.XMLSessionPlugin.1 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64] Value Deleted : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64] Key Deleted : HKCU\Software\d2db8cb56abd41 Key Deleted : HKLM\SOFTWARE\d2db8cb56abd41 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_google-sketchup_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_google-sketchup_RASMANCS Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{23699B0B-C14D-4054-A545-FC0927BB0879} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25151605-D156-49DD-A659-20E69C1EE15F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2BB3E614-F616-42DD-A99A-69C1FC268741} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35274ADF-B8DE-4909-80D1-A26269216903} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3F2F1B3C-EDA7-46EC-A1CA-12A67CD00A82} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5BBF357E-EA8C-48BF-83CA-DE279FB83BBA} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{698E7AA1-A28E-4064-A9AB-822171AF4EF4} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6AAFD84D-5F7F-42E5-9FB4-157925C3ED2F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83CE5D73-E3DE-4DC5-82C2-3B65DFD0A849} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{878A5A0A-DC0A-4C37-BBE2-18C30E50F449} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8C428C4B-C9E2-4B74-B791-88C3FEE48F36} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{929825DF-A1B4-40C9-8F3C-6DA06BADC150} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F19923D-2A4C-45EF-A026-AE7DEE5D022C} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A72B8EA8-5B63-4C90-9FE8-D9C76C99DE32} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C86BFADB-406F-47C7-A8D8-FAA37B39089F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D92EDE9A-70A4-469F-AF8F-38C3F278B0A1} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F67A3AA8-88EE-4A3A-863A-B13A19F8696C} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F8E1BDAB-F48F-46F9-8693-4EECB83D1AD7} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0E1FE4D8-70CE-417E-8FF4-C2B17FF3DD07} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{103E3C9A-E8AE-4B19-A339-01FE9439763E} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{24486CE9-7BC2-4516-B743-39FFDD4F861B} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{326C4F48-FE3B-4E54-9118-9B6C3B6C9B1E} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{39D884BB-2881-4F3A-B9B9-2D3AF4C2C191} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{59E5BDB9-126F-4575-901E-D32132A19B94} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5CF866F0-10A3-4ED4-9BE3-668F2F148E2F} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{618B2F0C-A1AF-4D1D-9354-CF0C42AF5BCB} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8EFEE482-37BC-4F3D-83E6-CB5BBE077E43} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEFDBFA7-0F18-4216-8F90-6B6F71D6AB83} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F12BA68C-976E-4567-BA3B-629DFCEBC5FE} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F66F6A81-E727-4774-B461-8A5CB7F7DE07} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{268CA04C-106C-4636-B707-95E8CD5859E0} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25151605-D156-49DD-A659-20E69C1EE15F} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{698E7AA1-A28E-4064-A9AB-822171AF4EF4} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8C428C4B-C9E2-4B74-B791-88C3FEE48F36} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9F19923D-2A4C-45EF-A026-AE7DEE5D022C} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F67A3AA8-88EE-4A3A-863A-B13A19F8696C} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0E1FE4D8-70CE-417E-8FF4-C2B17FF3DD07} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{13B8FF9D-DEB0-4070-B846-D049218307B3} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E877590-30B7-400E-A835-B942489EB7BC} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{878A5A0A-DC0A-4C37-BBE2-18C30E50F449} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{992177A5-DF3C-4EC2-B779-6A5F94704CCC} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DFBAF9B2-2093-4D16-9D1F-348AE68408E4} Key Deleted : HKCU\Software\APN DTX Key Deleted : HKCU\Software\BabSolution Key Deleted : HKCU\Software\ilivid Key Deleted : HKCU\Software\lollipop Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\Somoto Key Deleted : HKCU\Software\torch Key Deleted : HKCU\Software\UtilityChest_49 Key Deleted : HKCU\Software\Webplayer Key Deleted : HKCU\Software\AppDataLow\Software\UtilityChest_49 Key Deleted : HKLM\Software\DataMngr Key Deleted : HKLM\Software\iLividSRTB Key Deleted : HKLM\Software\systweak Key Deleted : HKLM\Software\torch Key Deleted : HKLM\Software\UtilityChest_49 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Results Toolbar Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4 ***** [ Browsers ] ***** -\\ Internet Explorer v8.0.7600.16385 -\\ Mozilla Firefox v [ File : C:\Users\jean\AppData\Roaming\Mozilla\Firefox\Profiles\pj6ot8gl.default\prefs.js ] -\\ Google Chrome v31.0.1650.57 [ File : C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\preferences ] [ File : C:\Users\tinne\AppData\Local\Google\Chrome\User Data\Default\preferences ] [ File : C:\Users\laura\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [9565 octets] - [04/12/2013 05:21:15] AdwCleaner[R1].txt - [9625 octets] - [04/12/2013 05:28:04] AdwCleaner[s0].txt - [9740 octets] - [04/12/2013 05:40:49] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [9800 octets] ##########

Aub ! Zoek.exe Version 4.0.0.5 Updated 24-November-2013 Tool run by jean on vr 29/11/2013 at 7:30:43,57. Microsoft Windows 7 Home Premium 6.1.7600 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\jean\Downloads\zoek\zoek.exe [script inserted] ==== Older Logs ====================== C:\zoek-results2013-11-25-043955.log 30003 bytes C:\zoek-results2013-11-25-173320.log 17913 bytes ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "AppsHat"=- "Apps Hat"=- ==== Chrome Look ====================== Google Docs - jean - Default\Extensions\aohghmighlieiainnegkcijnfilokake MapsGalaxy - jean - Default\Extensions\aookeammngkehohpfmmhjadndplimiim Google Drive - jean - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - jean - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - jean - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - jean - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Docs PDFPowerPoint Viewer by Google - jean - Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn Gmail - jean - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - laura - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - laura - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - laura - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - laura - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - laura - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - laura - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - tinne - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - tinne - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - tinne - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - tinne - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - tinne - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - tinne - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\aookeammngkehohpfmmhjadndplimiim deleted successfully C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_aookeammngkehohpfmmhjadndplimiim_0.localstorage deleted successfully ==== EOF on vr 29/11/2013 at 7:32:37,83 ======================

dit moet het zijn dan Zoek.exe Version 4.0.0.5 Updated 24-November-2013 Tool run by jean on ma 25/11/2013 at 18:18:02,22. Microsoft Windows 7 Home Premium 6.1.7600 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\jean\Downloads\zoek\zoek.exe [Quick Scan] [Auto Clean] ==== Older Logs ====================== C:\zoek-results2013-11-25-043955.log 30003 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\jean\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\system32 ===== ====== C:\Windows\system32\drivers ===== 2013-11-24 16:06:07 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\Windows\System32\drivers\mbam.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-11-24 12:48:23 -------- d-----w- C:\Program Files\trend micro 2013-11-23 09:26:03 -------- d-----w- C:\Program Files\Common Files\Common Toolkit Suite 2013-11-23 09:26:00 -------- d-----w- C:\Program Files\Fighters 2013-11-19 04:19:13 -------- d-----w- C:\Program Files\WinZip System Utilities Suite ======= C: ===== 2013-11-25 04:35:52 20C35E9E32BBFC786FBBC4ABEE33EF88 72 ----a-w- C:\files.txt ====== C:\Users\jean\AppData\Roaming ====== 2013-11-25 04:36:49 -------- d-----w- C:\Users\jean\AppData\Local\Temp 2013-11-24 07:30:16 -------- d-----w- C:\Users\jean\AppData\Roaming\LiveKit 2013-11-23 09:26:53 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\Fighters 2013-11-23 09:25:52 -------- d-----w- C:\Users\jean\AppData\Roaming\Fighters 2013-11-19 04:21:49 -------- d-----w- C:\Users\jean\AppData\Roaming\WinZip 2013-10-28 08:21:17 -------- d-----w- C:\Users\jean\AppData\Locallow\Google ====== C:\Users\jean ====== 2013-11-24 17:52:17 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT (2).exe 2013-11-24 16:04:52 A66B365579D8CEBD7F1D4D6B6F7F9373 10284816 ----a-w- C:\Users\jean\Downloads\mbam-setup.exe 2013-11-24 14:00:32 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT (1).exe 2013-11-24 12:48:08 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT.exe 2013-11-24 12:40:56 AFAFA655CC59872129A32CDE4F60F2DE 1091882 ----a-w- C:\Users\jean\Downloads\adwcleaner.exe 2013-11-23 09:26:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters 2013-11-23 09:24:44 -------- d-----w- C:\ProgramData\Fighters 2013-11-23 09:24:07 5DC3BBE0739307CE33AB692857425973 2589368 ----a-w- C:\Users\jean\Downloads\spamfighter_web.exe 2013-11-21 16:35:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast 2013-11-19 04:19:13 -------- d-----w- C:\ProgramData\WinZip 2013-11-06 16:18:59 C6BAC56AB11845466A690DED2BCFCA62 1516908 ----a-w- C:\Users\laura\sport type.pptx 2013-10-28 08:21:07 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth ====== C: exe-files == 2013-11-25 17:06:27 3EABBCC26228958E68635EC4955DAF6A 470560 ----a-w- C:\Users\jean\AppData\Roaming\Fighters\Tray\AutoInstall\DM.exe 2013-11-24 17:52:17 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT (2).exe 2013-11-24 16:04:52 A66B365579D8CEBD7F1D4D6B6F7F9373 10284816 ----a-w- C:\Users\jean\Downloads\mbam-setup.exe 2013-11-24 14:00:32 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT (1).exe 2013-11-24 12:48:24 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\jean.exe 2013-11-24 12:48:08 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jean\Downloads\RSIT.exe 2013-11-24 12:40:56 AFAFA655CC59872129A32CDE4F60F2DE 1091882 ----a-w- C:\Users\jean\Downloads\adwcleaner.exe 2013-11-23 09:27:12 3EABBCC26228958E68635EC4955DAF6A 470560 ----a-w- C:\Users\jean\AppData\Roaming\Fighters\Tray\Updates\TKTRAY-DM\DM.exe 2013-11-23 09:24:07 5DC3BBE0739307CE33AB692857425973 2589368 ----a-w- C:\Users\jean\Downloads\spamfighter_web.exe 2013-11-21 04:42:48 E714A26715478EAC94DEB4514BF68EA2 35300192 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\31.0.1650.57\31.0.1650.57_chrome_installer.exe 2013-11-21 04:38:08 1A7C91AC6F14EBB22688704A13DC8D17 12598112 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.57\31.0.1650.57_30.0.1599.101_chrome_updater.exe === C: other files == 2013-11-25 04:38:20 4A48A5714078375D9E6BE2CE00A71856 120 ---ha-w- C:\Program Files\Common Files\X10\Common\x10prod.sys 2013-11-24 16:06:07 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\Windows\System32\drivers\mbam.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" "AdobeBridge"="C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe -stealth" "HP Deskjet 3050A J611 series (NET)"="C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe -deviceID CN3541FKXJ05WK:NW -scfn HP Deskjet 3050A J611 series (NET) -AutoStart 1" "Web Calendar Pad"="C:\Program Files\CalendarPad\calendarpad.exe" "AppsHat"="C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe" "Apps Hat"="C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s" "RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3 " "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup" "HotkeyApp"="C:\Program Files\Launch Manager\HotkeyApp.exe" "LMgrVolOSD"="C:\Program Files\Launch Manager\OSD.exe" "LMgrOSD"="C:\Program Files\Launch Manager\OSDCtrl.exe" "Wbutton"="C:\Program Files\Launch Manager\Wbutton.exe" "CLMLServer"="C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe" "AdobeCS4ServiceManager"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe -launchedbylogin" "Adobe Acrobat Speed Launcher"="C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" "Acrobat Assistant 8.0"="C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" "Adobe_ID0ENQBO"="C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE" "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" "HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" "APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime" "HP Software Update"="C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "CommonToolkitTray"="C:\Program Files\Fighters\Tray\FightersTray.exe" "sfagent"="C:\Program Files\Fighters\SPAMfighter\sfagent.exe" "20131121"="C:\Program Files\AVAST Software\Avast\setup\emupdate\4a4f1d3c-a092-451f-b306-34df377ee904.exe /check" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" "AdobeBridge"="C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe -stealth" "HP Deskjet 3050A J611 series (NET)"="C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe -deviceID CN3541FKXJ05WK:NW -scfn HP Deskjet 3050A J611 series (NET) -AutoStart 1" "Web Calendar Pad"="C:\Program Files\CalendarPad\calendarpad.exe" "AppsHat"="C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe" "Apps Hat"="C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe" ==== Startup Folders ====================== 2013-09-06 08:13:08 1960 ----a-w- C:\Users\jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 3050A J611 series (netwerk).lnk 2013-03-26 03:42:44 2897 ----a-w- C:\Users\jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LaunchU3.exe.lnk 2013-05-24 14:36:30 1270 ----a-w- C:\Users\jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [25/03/2013 20:58] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\HPCustParticipation HP Deskjet 3050A J611 series" ["C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe"] "C:\Windows\system32\tasks\{70FA4422-87C6-49E0-A655-CA389B45EDCC}" [F:\setup.exe] "C:\Windows\system32\tasks\{E5C227F7-DDAE-4A7B-AA1B-439EAE01B205}" [F:\setup.exe] "C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{27182e60-b5f3-411c-b545-b44205977502}"="C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension" [25/03/2013 20:11] ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== Profilepath: C:\Users\jean\AppData\Roaming\Mozilla\Firefox\Profiles\pj6ot8gl.default 86FD0445C7A92516FC0BA201C79B8E9E - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.4 9FDABAD05A9623988750CCC10223BDB0 - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.4 5E1D0432C765884434A7CCD4DBDC80AA - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.4 3B293C235A80E7A5369E6AA28FEA50B1 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.4 A80BCBED52F7DD5FDBF346A985A4E4D5 - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7.4 270EE43CC00609B9937AAF94E1E970D4 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector A5C14075B571AF1C9592595BE724D9D2 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll - Silverlight Plug-In 1C8124B6A03A620EB0CBCA615666D2AE - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live® Photo Gallery 842529B293535A02D1AEBEABD7B3EA79 - C:\Program Files\Adobe\Reader 9.0\Reader\browser\nppdf32.dll - Adobe Acrobat 77B645B655759F574B2555276FA111D9 - C:\Windows\system32\Macromed\Flash\NPSWF32.dll - Shockwave Flash 2AA3703D87E1327A2290C9D416D89A28 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrlui.dll - Microsoft® Silverlight ==== Chrome Look ====================== Google Docs - jean - Default\Extensions\aohghmighlieiainnegkcijnfilokake MapsGalaxy - jean - Default\Extensions\aookeammngkehohpfmmhjadndplimiim Google Drive - jean - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - jean - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - jean - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - jean - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Docs PDFPowerPoint Viewer by Google - jean - Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn Gmail - jean - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - laura - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - laura - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - laura - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - laura - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - laura - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - laura - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - tinne - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - tinne - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - tinne - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - tinne - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - tinne - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - tinne - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.hln.be/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.hln.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {1929F5CF-F367-44B3-9C7B-ED343D18427E} Bing Url="http://www.bing.com/search?q={searchTerms}&form=MEDTDF&pc=MAMD&src=IE-SearchBox" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\jean\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\laura\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\laura\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\tinne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\tinne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\jean\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\laura\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\tinne\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\jean\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\jean\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted ==== EOF on ma 25/11/2013 at 18:33:20,35 ======================

Dit heb ik nog gevonden ! oek.exe Version 4.0.0.4 Updated 19-September-2013 Tool run by Van Ham on vr 20/09/2013 at 15:58:45,85. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Van Ham\Desktop\zoek.exe [script inserted] ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\VANHAM~1\AppData\Local\Temp ==== 2013-09-19 16:00:46 067D8DDFBF8B8F0EAE9FBC719FD45E8D 224840 ------w- C:\Users\Van Ham\AppData\Local\Temp\jna-Van Ham\jna2274423161501129336.dll 2013-09-18 19:24:52 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\erunt\ERUNT.EXE ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2013-09-18 11:54:26 6BEE003DB3FEF04151F614303EBB1E7B 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-09-11 19:52:48 06EEAD5864F357ADC618F65A2F2C5156 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2013-09-11 19:52:47 BCA4913CDE903B4BDEEDAD1D6DBF5E2A 391168 ----a-w- C:\Windows\SysWOW64\ieui.dll 2013-09-11 19:52:46 7E540E07B97DCBCF8F76FA743B486BF2 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2013-09-11 19:52:46 43852485D0B78C021A47E9548A4CFFE0 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-09-11 19:52:46 3B74EADF1B70251D3CDB87BC338DC34D 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2013-09-11 19:52:46 281A720B0A984E325599EE1F0342E8FB 2048000 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2013-09-11 19:52:46 000B55B43992179E69C2E83CCB8F1126 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2013-09-11 19:52:44 2EC47CF6A36F6A83BB8B98C1425B4D41 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2013-09-11 19:52:44 00531B52C9468929F2C651B3BCADCBC9 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll 2013-09-11 19:52:43 E5D91D6B81A293AB6854CAD112240A4B 1141248 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2013-09-11 19:52:43 79DC575FE905D5DD5C5A4C5993A7C7F9 2876928 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2013-09-11 19:52:41 7C63629508BB87227C3C861355A155B4 39424 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2013-09-11 19:52:41 535F6263035F2530A62D5D64EF6E73D3 1767936 ----a-w- C:\Windows\SysWOW64\wininet.dll 2013-09-11 19:52:40 4FCC53B82D91607FB9AE24E617108BB2 13761024 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2013-09-11 19:52:37 5D2D7E7850CE963C2F401D4DEE7BB32A 14332928 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2013-09-11 13:12:46 5D0325AEF9DE48330908EC2E2DB0359F 3913664 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2013-09-11 13:12:46 1A9E4EE88B31750E5CA207424143F99C 3968960 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2013-09-11 13:12:45 73EF27E157855E3CB18B021BC9622E4C 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll 2013-09-11 13:12:45 57EC6102661E0E1D156C1EC251E7CAF8 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll 2013-09-11 13:12:45 365A5034093AD9E04F433046C4CDF6AB 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll 2013-09-11 13:12:45 1B7343C3765638D4D17CB925F84F8ABE 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2013-09-11 13:12:45 0184CC60AB10C8124D69AFB332C6AF1C 1292192 ----a-w- C:\Windows\SysWOW64\ntdll.dll 2013-09-11 13:12:43 B83592F532FB320F0001F8099ECC192B 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2013-09-11 13:12:43 8489D083E46BFD2096A6CECFF6C7C227 2048 ----a-w- C:\Windows\SysWOW64\user.exe 2013-09-11 13:12:43 812A161FC470FA832C3F0CC3D7ACA2F9 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll 2013-09-11 13:12:43 3808FD7522646BEB1CCEA94C45D4228C 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2013-09-11 13:12:41 E02781D4871844DCD30DF1D69A650F78 12872704 ----a-w- C:\Windows\SysWOW64\shell32.dll 2013-09-11 13:12:41 2C4A87CA8C00E98EFDCFA2E8EC9A3503 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-09-11 19:52:48 B98DDA3209E252884F6F9431A43424B3 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2013-09-11 19:52:47 C016B4170A836CBA9DF98F02CD055C1B 526336 ----a-w- C:\Windows\Sysnative\ieui.dll 2013-09-11 19:52:46 91573C042B3D9163F29CB1E1E51FF51A 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll 2013-09-11 19:52:46 73BA149C61D2B164E25E1455D9D7F648 89600 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe 2013-09-11 19:52:46 7248896237039BBC477DBB9C62C37FCB 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll 2013-09-11 19:52:46 390231BA1644AFE0ADD5A7F186EF6FA4 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2013-09-11 19:52:46 3581F49B7B32B4514FFD9481ED8BAE61 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2013-09-11 19:52:45 8E9898BF21FF4232EE07BD5D1D1C6281 2647040 ----a-w- C:\Windows\Sysnative\iertutil.dll 2013-09-11 19:52:44 DCAE7117A97F5922B853981D6D491D71 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2013-09-11 19:52:44 CF57F63E6878BEA029B1098D03143AED 855552 ----a-w- C:\Windows\Sysnative\jscript.dll 2013-09-11 19:52:43 C6DBD79D39061F189A3F1055D44E1590 3959296 ----a-w- C:\Windows\Sysnative\jscript9.dll 2013-09-11 19:52:42 35552F806607A86E65B6047BF695D34B 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll 2013-09-11 19:52:41 AAFA952E774DDDB0956D3BDFAE5B5B99 2241024 ----a-w- C:\Windows\Sysnative\wininet.dll 2013-09-11 19:52:41 537394CF1A70BFFB0B3C7510404CF91C 53248 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2013-09-11 19:52:40 08F6335D55310C334B13B9616E61D13D 15404544 ----a-w- C:\Windows\Sysnative\ieframe.dll 2013-09-11 19:52:39 CC4AE7E2ECAEE7612B3C0D3AB302375C 19246592 ----a-w- C:\Windows\Sysnative\mshtml.dll 2013-09-11 13:12:46 63B563F1FC047AB3E21530DBBE773260 5550528 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2013-09-11 13:12:45 F0970A4BC8395659C22BF53D0FADF16F 112640 ----a-w- C:\Windows\Sysnative\smss.exe 2013-09-11 13:12:45 D8973E71F1B35CD3F3DEA7C12D49D0F0 1161216 ----a-w- C:\Windows\Sysnative\kernel32.dll 2013-09-11 13:12:45 BF95EA5809E3BBF55370F7CB309FEBD0 338432 ----a-w- C:\Windows\Sysnative\conhost.exe 2013-09-11 13:12:45 B22C00ED0491FD7B8803D7DDE2849F4C 424448 ----a-w- C:\Windows\Sysnative\KernelBase.dll 2013-09-11 13:12:45 AA913C4E63B6F3F52E20BC9932205BCC 243712 ----a-w- C:\Windows\Sysnative\wow64.dll 2013-09-11 13:12:45 9209EA3F29DFC339A87EFD604E035FE4 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll 2013-09-11 13:12:45 88EDD0B34EED542745931E581AD21A32 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll 2013-09-11 13:12:45 659D71E315FB40FFE9AD46CB0588BEB1 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll 2013-09-11 13:12:45 5B79D52A0388D8DEC5BF68411EA05A02 1732032 ----a-w- C:\Windows\Sysnative\ntdll.dll 2013-09-11 13:12:45 49CEA3942A2B99A906EAFC94B853EDBD 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll 2013-09-11 13:12:45 216BABD555BC550952320EEA89C25DDF 43520 ----a-w- C:\Windows\Sysnative\csrsrv.dll 2013-09-11 13:12:43 70A1D465390C393AA118D9764E065B06 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll 2013-09-11 13:12:43 42A88ECF903BFE11411D188DCE830E84 3155456 ----a-w- C:\Windows\Sysnative\win32k.sys 2013-09-11 13:12:42 AD662B34B161198B9D66A564EDDA7D43 14172672 ----a-w- C:\Windows\Sysnative\shell32.dll 2013-09-11 13:12:41 23B001185B7C3CB1F4BDEB143E6B45B7 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll ====== C:\Windows\Sysnative\drivers ===== 2013-09-14 15:04:08 A15860E920B02C9A7CE8F3A6C2FF1E3A 560184 ----a-w- C:\Windows\Sysnative\drivers\sptd.sys 2013-09-11 13:12:46 059F00DEF82BF41E433B7ED465847726 155584 ----a-w- C:\Windows\Sysnative\drivers\ataport.sys ====== C:\Windows\Tasks ====== 2013-09-15 08:29:49 F49E63941A2454BA2B03CB37B7BA3D86 3460 ----a-w- C:\Windows\Sysnative\Tasks\{B70685B3-9A70-428B-8DFF-50C75FF00B54} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-09-18 10:27:18 -------- d-----w- C:\Program Files\trend micro ======= C:\Program Files (x86) ===== 2013-09-18 15:49:49 -------- d-----w- C:\Program Files (x86)\QuickPar 2013-09-18 11:54:39 -------- d-----w- C:\Program Files (x86)\Common Files\Java 2013-09-15 08:15:05 -------- d-----w- C:\Program Files (x86)\GrabIt 2013-09-13 12:52:00 -------- d-----w- C:\Program Files (x86)\MakeMKV 2013-09-01 09:11:29 -------- d-----w- C:\Program Files (x86)\theRenamer 2013-08-27 08:43:38 -------- d-----w- C:\Program Files (x86)\Spotnet ======= C: ===== ====== C:\Users\Van Ham\AppData\Roaming ====== 2013-09-18 18:59:15 -------- d-----w- C:\Users\Van Ham\AppData\Local\Temp 2013-09-18 15:50:35 -------- d-----w- C:\Users\Van Ham\AppData\Local\QuickPar 2013-09-18 15:49:49 -------- d-----w- C:\Users\Van Ham\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar 2013-09-15 08:19:50 -------- d-----w- C:\Users\Van Ham\AppData\Roaming\GrabIt 2013-09-14 17:46:01 -------- d-----w- C:\Users\Van Ham\AppData\Local\GHISLER 2013-09-13 12:52:01 -------- d-----w- C:\Users\Van Ham\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV 2013-09-03 16:09:24 -------- d-----w- C:\Users\Van Ham\AppData\Local\sabnzbd 2013-09-01 09:11:31 -------- d-----w- C:\Users\Van Ham\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\theRenamer 2013-08-27 08:43:18 -------- d-----w- C:\Users\Van Ham\AppData\Roaming\Spotnet 2013-08-26 10:04:59 -------- d-----w- C:\Users\Van Ham\AppData\Local\Spotnet ====== C:\Users\Van Ham ====== 2013-09-19 11:07:39 5C7F463E437F271F849D5A433021A512 3812352 ----a-w- C:\Users\Van Ham\pc-onderhoud\RogueKillerX64.exe 2013-09-19 10:58:43 BF0360049B43B7D11D48982E27FABDF5 1029675 ----a-w- C:\Users\Van Ham\pc-onderhoud\JRT.exe 2013-09-19 10:54:21 6A6CE9A0410A29061FCF6CAD8DE0387C 1039554 ----a-w- C:\Users\Van Ham\pc-onderhoud\adwcleaner.exe 2013-09-18 15:49:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickPar 2013-09-18 11:56:11 -------- d-----w- C:\ProgramData\Oracle 2013-09-18 11:54:26 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2013-09-15 08:15:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GrabIt 2013-09-13 12:53:50 -------- d-----w- C:\Users\Van Ham\.MakeMKV 2013-08-27 08:43:38 -------- d-----w- C:\ProgramData\Spotnet 2013-08-27 08:43:35 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotnet ====== C: exe-files == 2013-09-19 11:07:55 BABAB16E62CEB21725C36BE11DC3975E 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-806606645-1978654659-1127170122-1000\$I6VNXRI.exe 2013-09-19 11:07:39 5C7F463E437F271F849D5A433021A512 3812352 ----a-w- C:\Users\Van Ham\pc-onderhoud\RogueKillerX64.exe 2013-09-19 10:59:59 A74B0D5C2380422E96553606BB5ED56B 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-806606645-1978654659-1127170122-1000\$IC18XAD.exe 2013-09-19 10:59:27 71418611C5F351D12BA47C9FB33D06C7 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-806606645-1978654659-1127170122-1000\$IRVFBYI.exe 2013-09-19 10:58:43 BF0360049B43B7D11D48982E27FABDF5 1029675 ----a-w- C:\Users\Van Ham\pc-onderhoud\JRT.exe 2013-09-19 10:54:21 6A6CE9A0410A29061FCF6CAD8DE0387C 1039554 ----a-w- C:\Users\Van Ham\pc-onderhoud\adwcleaner.exe 2013-09-19 09:47:59 0B1CD71CE29E8123A664A5B40153D2FE 1915744 ----a-w- C:\Users\Van Ham\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\29.0.1547.76\29.0.1547.76_29.0.1547.66_chrome_updater.exe 2013-09-18 19:24:52 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\erunt\ERUNT.EXE 2013-09-18 15:49:49 BF31D1707F7E1D2F7903122ACD1C36AF 57273 ----a-w- C:\Program Files (x86)\QuickPar\uninst.exe 2013-09-18 11:54:23 F744671F237351A00580DEBDA7B13C58 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\servertool.exe 2013-09-18 11:54:23 DE16D31DDE767A35C4727D4F5C4F5165 49064 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe 2013-09-18 11:54:23 8B060210811F4C88280BB1FE097C8D18 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\policytool.exe 2013-09-18 11:54:23 85369335B06BA3EF80DBB2463BD75FC6 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmid.exe 2013-09-18 11:54:23 79E6E98DD340052FB62E85FC5C0F40B9 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe 2013-09-18 11:54:23 33329EE40961C9F75753135EEFEE5215 16296 ----a-w- C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe 2013-09-18 11:54:23 20121F1F03EA62AE7DBE20A5C065E62B 146344 ----a-w- C:\Program Files (x86)\Java\jre7\bin\unpack200.exe 2013-09-18 11:54:22 F07B981F68160C8932BD7E2A056E3542 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\kinit.exe 2013-09-18 11:54:22 ED2542D50B46FACB647E9ACE15376F71 52648 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe 2013-09-18 11:54:22 A5937B2A94424CF1B13A4AD503AF6B2E 182696 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jqs.exe 2013-09-18 11:54:22 8BAE06DA395B81D5BB9D335719B4C71F 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\keytool.exe 2013-09-18 11:54:22 879FBD4327A0411AD856CD256E05ACC8 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\pack200.exe 2013-09-18 11:54:22 46D4A740A9CD31274B372AB31FDAB767 16296 ----a-w- C:\Program Files (x86)\Java\jre7\bin\orbd.exe 2013-09-18 11:54:22 3F17C8C96551E1DFADAD909282D7A53B 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ktab.exe 2013-09-18 11:54:22 14478E73336D593E396FEE603118DF73 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\klist.exe 2013-09-18 11:54:21 FE62A080B6B3846FB18F04B488BF686F 66984 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javacpl.exe 2013-09-18 11:54:21 FB81754A3C79379C3882128875C8C948 48552 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe 2013-09-18 11:54:21 EC94122E6DCB6E731D8513A89AC9CF12 175016 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaw.exe 2013-09-18 11:54:21 EC2A0F271C0FD4AD57B137845577F539 175016 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java.exe 2013-09-18 11:54:21 ACA17F8E1F9E8891DE15E2527D8D74D0 264616 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaws.exe 2013-09-18 11:54:21 20238A6FE9CA82DB6AA17CB08F4906CF 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe 2013-09-18 10:27:19 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Van Ham.exe 2013-09-15 08:15:06 E6FDBB66A816B3D1D96A811069442AC8 229376 ----a-w- C:\Program Files (x86)\GrabIt\external\par2\par2.exe 2013-09-15 08:15:06 578DA05D920D3C450E3F8BA5ECC2AFB5 198144 ----a-w- C:\Program Files (x86)\GrabIt\external\unrar\unrar.exe 2013-09-15 08:15:05 5F7AE768CDD6E925A57E68D527101980 715038 ----a-w- C:\Program Files (x86)\GrabIt\unins000.exe 2013-09-15 08:15:05 197F98BFCD011BDF2E8846CEB5E007B0 4600320 ----a-w- C:\Program Files (x86)\GrabIt\GrabIt.exe === C: other files == 2013-09-19 22:25:59 15E8617112AA052E24BA48B6BFA8B417 146143 ----a-w- C:\Users\Van Ham\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LN13LZD3\npo[1].zip 2013-09-18 19:24:51 FECF1773CAD3947BCE0670D9B2CB5E1E 10261 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\JRT.bat 2013-09-18 19:24:51 FDB9CF820305FE44231763042642F7A6 12733 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\searchlnk.bat 2013-09-18 19:24:51 CC6C23C02BE66014AD87F2678BBB3A1D 8117 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\modules.bat 2013-09-18 19:24:51 B964B792D3692699CD7D4FDB63EE470E 1239 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\FWPolicy.bat 2013-09-18 19:24:51 B45931E5313CB14CAA0F2BC3DA30E6FC 29648 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\ask.bat 2013-09-18 19:24:51 90DEA8FB8E2BFEA1480C79570E2D8993 150811 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\firefox.bat 2013-09-18 19:24:51 80D02380F1AC33E459324B088392A1EC 732 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\ev_clear.bat 2013-09-18 19:24:51 654E9FE74B930A454EE5BDE165794B65 85 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\delorphans.bat 2013-09-18 19:24:51 609A8FF52B78F3BFA6F29C81C32B3A83 16063 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\get.bat 2013-09-18 19:24:51 603595734D290C73FA40EDA1ACADF265 14973 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\chrome.bat 2013-09-18 19:24:51 58605DA3492FB918D3D40B1FB88046AE 39471 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\prelim.bat 2013-09-18 19:24:51 1FBF882AA934A741530741FC134872A3 1243 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\TDL4.bat 2013-09-18 19:24:51 14D6EE8B672684E2232FB430D8C4A928 18668 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\medfos.bat 2013-09-18 19:24:51 1277E771E8BF193B4C64BA5BAE6A424E 8398 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\runvalues.bat 2013-09-18 19:24:51 125AAE9F53A85B1CCE7E8523053AF4E2 146404 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\misc.bat 2013-09-18 19:24:51 0768E560CCD86C18F35FAD29DCEA7B80 1820 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\delfolders.bat 2013-09-18 19:24:51 05B282816F9DB49C325A5D88ECF0D9A1 29932 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\jrt\iexplore.bat 2013-09-18 19:14:05 90A594537C3731C9A3AB3B540868B60B 346 ----a-w- C:\Users\Van Ham\AppData\Local\Temp\drives.vbs 2013-09-18 11:54:23 8C636C988365FC3E61F1B5C5ACECCB55 18675 ----a-w- C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip 2013-09-14 15:04:08 A15860E920B02C9A7CE8F3A6C2FF1E3A 560184 ----a-w- C:\Windows\System32\drivers\sptd.sys ==== Chrome Look ====================== Google Docs - Van Ham - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Van Ham - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Van Ham - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo TVGiDS.tv - Van Ham - Default\Extensions\bocdjdnpjmkaaaangagmlnkcpfjkjfcn Symbaloo Bookmarker 0.4 - Van Ham - Default\Extensions\cnjfgbikbkcmickdalamlmpmkhmbollm Google Search - Van Ham - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf AdBlock - Van Ham - Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Adblock for Pirate Bay - Van Ham - Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd Pocket (formerly Read It Later) - Van Ham - Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj Chrome In-App Payments service - Van Ham - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Google Quick Scroll - Van Ham - Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc Gmail - Van Ham - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page Before"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page Before"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {D944BB61-2E34-4DBF-A683-47E505C587DC} eBay Url="http://rover.ebay.com/rover/1/1553-111073-34115-7?mpre=http://www.benl.ebay.be/sch/i.html?_nkw={searchTerms}" {EF6C2097-4B6F-4DF5-87B6-DF3F293E3693} Google Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8" ==== Reset Google Chrome ====================== C:\Users\Van Ham\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Van Ham\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Van Ham\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Van Ham\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Van Ham\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Van Ham\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\VANHAM~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on vr 20/09/2013 at 16:20:34,30 ======================

Zoek.exe is running now. Do not start any browser windows, they will be closed automatically. Please wait! This window will close when finished. A logfile will open afterwards and can also be found on your systemdrive as zoek-results.log - - - Updated - - - Ik heb een 1/2 uur gewacht en krijg dit logbestand steeds te zien ? bedankt voor de snelle reactie JPP - - - Updated - - - Sorry , Dit heb ik toch gekregen op den duur ! grt JPP Zoek.exe Version 4.0.0.5 Updated 24-November-2013 Tool run by jean on ma 25/11/2013 at 5:17:59,62. Microsoft Windows 7 Home Premium 6.1.7600 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\jean\Downloads\zoek\zoek.exe [script inserted] [Checkboxes used] ==== System Restore Info ====================== 25/11/2013 5:21:19 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\Search Results Toolbar deleted successfully C:\ProgramData\ALM deleted successfully C:\ProgramData\Babylon deleted successfully C:\ProgramData\Browser Manager deleted successfully C:\ProgramData\BrowserProtect deleted successfully C:\Users\jean\AppData\Roaming\Systweak deleted successfully C:\Users\jean\AppData\Local\AppsHat Mobile Apps deleted successfully C:\Users\jean\AppData\Local\Bundled software uninstaller deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{377e5d4d-77e5-476a-8716-7e70a9272da0} deleted successfully HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58f7b5ca-1162-42e8-8bbc-d543b4edd780} deleted successfully HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Internet Explorer\SearchScopes\{84dc9f6c-c9a5-4c64-ab67-d6ef60f963c8} deleted successfully HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{377e5d4d-77e5-476a-8716-7e70a9272da0} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377e5d4d-77e5-476a-8716-7e70a9272da0} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58f7b5ca-1162-42e8-8bbc-d543b4edd780} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-25551073-2257259776-1906566035-1002\Software\Microsoft\Internet Explorer\URLSearchHooks\{7a55cbb2-2b2e-4a41-9de1-6ac5d2c2be0a} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{377e5d4d-77e5-476a-8716-7e70a9272da0} deleted successfully ==== Deleting Services ======================

Logfile of random's system information tool 1.09 (written by random/random) Run by jean at 2013-11-24 18:52:36 Microsoft Windows 7 Home Premium System drive C: has 354 GB (82%) free of 435 GB Total RAM: 3255 MB (48% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:52:40, on 24/11/2013 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\rundll32.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Launch Manager\HotkeyApp.exe C:\Program Files\Launch Manager\OSD.exe C:\Program Files\Launch Manager\WButton.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Hewlett-Packard\HP Software Update\hpwuschd2.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Fighters\Tray\FightersTray.exe C:\Program Files\Fighters\SPAMfighter\sfagent.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe C:\Windows\system32\RunDll32.exe C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicatorCom.exe C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\jean\Downloads\RSIT (2).exe C:\Program Files\trend micro\jean.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = HLN.be, Nieuws, sport en showbizz, 24/24, 7/7, meer dan 350 nieuwsupdates per dag R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {7a55cbb2-2b2e-4a41-9de1-6ac5d2c2be0a} - (no file) O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Search-Results Toolbar - {377e5d4d-77e5-476a-8716-7e70a9272da0} - (no file) O2 - BHO: (no name) - {58f7b5ca-1162-42e8-8bbc-d543b4edd780} - (no file) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O3 - Toolbar: (no name) - {377e5d4d-77e5-476a-8716-7e70a9272da0} - (no file) O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3 O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe" O4 - HKLM\..\Run: [LMgrVolOSD] "C:\Program Files\Launch Manager\OSD.exe" O4 - HKLM\..\Run: [LMgrOSD] "C:\Program Files\Launch Manager\OSDCtrl.exe" O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe" O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe" O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [Adobe_ID0ENQBO] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [CommonToolkitTray] C:\Program Files\Fighters\Tray\FightersTray.exe O4 - HKLM\..\Run: [sfagent] C:\Program Files\Fighters\SPAMfighter\sfagent.exe O4 - HKLM\..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\4a4f1d3c-a092-451f-b306-34df377ee904.exe /check O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [AdobeBridge] "C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe" -stealth O4 - HKCU\..\Run: [HP Deskjet 3050A J611 series (NET)] "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN3541FKXJ05WK:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1 O4 - HKCU\..\Run: [Web Calendar Pad] C:\Program Files\CalendarPad\calendarpad.exe O4 - HKCU\..\Run: [AppsHat] C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe O4 - HKCU\..\Run: [Apps Hat] C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-25551073-2257259776-1906566035-1000\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-25551073-2257259776-1906566035-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - Startup: Inktwaarschuwingen controleren - HP Deskjet 3050A J611 series (netwerk).lnk = ? O4 - Startup: LaunchU3.exe.lnk = ? O4 - Startup: lollipop.lnk = jean\AppData\Local\Lollipop\Lollipop.exe O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU) O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU) O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\Fighters\SPAMfighter\sfus.exe O23 - Service: Suite Service - SPAMfighter ApS - C:\Program Files\Fighters\FighterSuiteService.exe O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 14654 bytes ======Scheduled tasks folder====== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}] ContributeBHO Class - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-08-28 136560] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377e5d4d-77e5-476a-8716-7e70a9272da0}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58f7b5ca-1162-42e8-8bbc-d543b4edd780}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}] Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-05-14 191792] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-11 4220304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-21 606544] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Aanmelden - Help - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}] Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2009-02-27 349576] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-22 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}] Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}] SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2009-02-27 349576] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872] {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2009-02-27 349576] {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-08-28 136560] {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-21 606544] {377e5d4d-77e5-476a-8716-7e70a9272da0} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-05-10 9177632] "RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [2010-05-10 1423904] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-05-10 141848] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-05-10 175640] "Persistence"=C:\Windows\system32\igfxpers.exe [2010-05-10 167960] "NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2010-04-15 14830184] "HotkeyApp"=C:\Program Files\Launch Manager\HotkeyApp.exe [2009-12-14 200704] "LMgrVolOSD"=C:\Program Files\Launch Manager\OSD.exe [2009-12-11 348960] "LMgrOSD"=C:\Program Files\Launch Manager\OSDCtrl.exe [] "Wbutton"=C:\Program Files\Launch Manager\Wbutton.exe [2010-01-13 413696] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-10 1594664] "CLMLServer"=C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720] "AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712] "Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2009-10-03 38768] "Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2009-10-02 640376] "Adobe_ID0ENQBO"=C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE [2008-08-15 378224] "BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520] "HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2003-12-22 241664] ""= [] "APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2013-05-31 152392] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2013-05-01 421888] "HP Software Update"=C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe [2011-10-28 49208] "AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-21 3568312] "CommonToolkitTray"=C:\Program Files\Fighters\Tray\FightersTray.exe [2013-10-29 1681952] "sfagent"=C:\Program Files\Fighters\SPAMfighter\sfagent.exe [2013-10-30 1069600] "20131121"=C:\Program Files\AVAST Software\Avast\setup\emupdate\4a4f1d3c-a092-451f-b306-34df377ee904.exe [2013-11-23 180184] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-04-19 18678376] "AdobeBridge"=C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe [2008-08-28 13145448] "HP Deskjet 3050A J611 series (NET)"=C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2012-10-17 1837672] "Web Calendar Pad"=C:\Program Files\CalendarPad\calendarpad.exe [] "AppsHat"=C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [2012-10-26 202752] "Apps Hat"=C:\Users\jean\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [2012-10-26 202752] C:\Users\jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Inktwaarschuwingen controleren - HP Deskjet 3050A J611 series (netwerk).lnk - C:\Windows\system32\RunDll32.exe LaunchU3.exe.lnk - C:\Users\jean\AppData\Roaming\Microsoft\Installer\{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}\_2cd672ae.exe lollipop.lnk - C:\Users\jean\AppData\Local\Lollipop\Lollipop.exe OneNote 2010 Schermopname en Snel starten.lnk - C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2010-05-10 227328] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-11 4220304] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BsScanner] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=l3codecp.acm "vidc.cvid"=iccvid.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "MSVideo8"=VfWWDM32.dll "msacm.siren"=sirenacm.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS4\Dreamweaver.exe","%1" ======List of files/folders created in the last 1 month====== 2013-11-24 17:06:28 ----D---- C:\Users\jean\AppData\Roaming\Malwarebytes 2013-11-24 17:06:08 ----D---- C:\ProgramData\Malwarebytes 2013-11-24 17:06:07 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2013-11-24 17:06:07 ----A---- C:\Windows\system32\drivers\mbam.sys 2013-11-24 13:48:23 ----D---- C:\rsit 2013-11-24 13:48:23 ----D---- C:\Program Files\trend micro 2013-11-24 13:41:09 ----D---- C:\AdwCleaner 2013-11-24 08:30:16 ----D---- C:\Users\jean\AppData\Roaming\LiveKit 2013-11-23 10:26:03 ----D---- C:\Program Files\Common Files\Common Toolkit Suite 2013-11-23 10:26:00 ----D---- C:\Program Files\Fighters 2013-11-23 10:25:52 ----D---- C:\Users\jean\AppData\Roaming\Fighters 2013-11-23 10:24:44 ----D---- C:\ProgramData\Fighters 2013-11-20 17:33:38 ----D---- C:\Users\jean\AppData\Roaming\AVAST Software 2013-11-20 05:55:01 ----SHD---- C:\Config.Msi 2013-11-19 20:19:19 ----D---- C:\Windows\system32\MRT 2013-11-19 05:21:49 ----D---- C:\Users\jean\AppData\Roaming\WinZip 2013-11-19 05:19:13 ----D---- C:\ProgramData\WinZip 2013-11-19 05:19:13 ----D---- C:\Program Files\WinZip System Utilities Suite 2013-11-11 12:31:59 ----D---- C:\ProgramData\McAfee 2013-10-26 09:15:34 ----D---- C:\ProgramData\AVS4YOU 2013-10-26 09:15:30 ----D---- C:\Users\jean\AppData\Roaming\AVS4YOU 2013-10-26 09:12:38 ----D---- C:\Program Files\Common Files\AVSMedia 2013-10-26 09:11:33 ----A---- C:\Windows\system32\msxml3a.dll 2013-10-26 09:11:32 ----D---- C:\Program Files\AVS4YOU 2013-10-26 08:50:56 ----D---- C:\Program Files\MyPC Backup 2013-10-26 08:50:39 ----D---- C:\Users\jean\AppData\Roaming\Systweak ======List of files/folders modified in the last 1 month====== 2013-11-24 18:52:39 ----D---- C:\Windows\Temp 2013-11-24 18:52:30 ----D---- C:\Windows\Prefetch 2013-11-24 17:56:45 ----D---- C:\Windows\system32\drivers 2013-11-24 17:54:16 ----D---- C:\Windows\system32\config 2013-11-24 17:44:04 ----A---- C:\Windows\system32\log.txt 2013-11-24 17:43:34 ----D---- C:\ProgramData\BitGuard 2013-11-24 17:40:27 ----D---- C:\Windows\Performance 2013-11-24 17:40:19 ----D---- C:\Program Files\Search Results Toolbar 2013-11-24 17:40:18 ----RD---- C:\Program Files 2013-11-24 17:21:28 ----D---- C:\Windows\Offline Web Pages 2013-11-24 17:21:22 ----D---- C:\Windows\System32 2013-11-24 17:06:08 ----HD---- C:\ProgramData 2013-11-24 16:07:19 ----D---- C:\Windows\inf 2013-11-24 16:07:19 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-11-24 14:47:37 ----D---- C:\Users\jean\AppData\Roaming\Skype 2013-11-23 10:27:08 ----SHD---- C:\Windows\Installer 2013-11-23 10:26:03 ----D---- C:\Program Files\Common Files 2013-11-23 10:25:50 ----SHD---- C:\System Volume Information 2013-11-22 09:24:40 ----SD---- C:\Users\jean\AppData\Roaming\Microsoft 2013-11-22 06:52:07 ----D---- C:\Windows\system32\catroot 2013-11-21 17:38:43 ----D---- C:\Windows\system32\catroot2 2013-11-21 17:35:12 ----D---- C:\Windows\system32\Tasks 2013-11-21 17:35:05 ----D---- C:\Windows\winsxs 2013-11-21 17:35:02 ----D---- C:\Windows 2013-11-21 17:35:01 ----A---- C:\Windows\system32\aswBoot.exe 2013-11-21 05:29:23 ----D---- C:\Windows\Tasks 2013-11-21 05:29:23 ----D---- C:\Windows\system32\wfp 2013-11-21 05:29:22 ----D---- C:\Program Files\Windows Portable Devices 2013-11-21 05:29:18 ----D---- C:\Windows\system32\wbem 2013-11-21 05:28:13 ----D---- C:\Windows\system32\nl-NL 2013-11-21 05:28:13 ----D---- C:\Windows\system32\DriverStore 2013-11-21 05:28:13 ----D---- C:\Program Files\Internet Explorer 2013-11-21 05:28:11 ----D---- C:\Windows\Minidump 2013-11-21 05:28:07 ----D---- C:\Windows\AppCompat 2013-11-21 05:27:57 ----D---- C:\ProgramData\FLEXnet 2013-11-21 05:27:57 ----D---- C:\Program Files\WinRAR 2013-11-21 05:27:56 ----D---- C:\Program Files\Bonjour 2013-11-21 05:27:52 ----D---- C:\Program Files\Adobe 2013-11-21 05:27:04 ----D---- C:\Windows\registration 2013-11-21 05:25:31 ----D---- C:\Users\jean\AppData\Roaming\Adobe 2013-11-21 05:24:18 ----D---- C:\ProgramData\NVIDIA 2013-11-21 05:24:16 ----D---- C:\ProgramData\AVAST Software 2013-11-21 05:24:16 ----D---- C:\ProgramData\Adobe 2013-11-21 05:23:51 ----D---- C:\Program Files\Common Files\Adobe 2013-11-21 05:23:17 ----RHD---- C:\MSOCache 2013-11-20 17:46:31 ----D---- C:\Windows\Panther 2013-11-19 20:19:18 ----D---- C:\Windows\debug 2013-11-05 14:42:49 ----D---- C:\Users\jean\AppData\Roaming\HpUpdate 2013-10-28 09:20:57 ----D---- C:\Program Files\Google 2013-10-26 09:12:42 ----RSD---- C:\Windows\Fonts ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-11-21 49944] R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-11-21 178304] R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-03 435736] R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2008-02-06 44608] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648] R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-11-21 79720] R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-11-21 774392] R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-11-21 403440] R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-11-21 57672] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128] R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720] R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-11-21 35656] R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-11-21 70384] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840] R3 HECI;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2010-05-10 41088] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2010-05-10 8726528] R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-05-10 132352] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-05-10 3083232] R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-05-10 232960] R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x86.sys [2010-05-10 67624] R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\Windows\system32\DRIVERS\rtl8192se.sys [2010-05-10 1006624] R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 9216] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-05-10 231600] R3 X10Hid;X10 Hid Device; C:\Windows\System32\Drivers\x10hid.sys [2009-05-13 13720] S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704] S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888] S3 mod7700;TV Tuner device; C:\Windows\system32\DRIVERS\mod7700.sys [2010-05-10 786400] S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl.sys [2012-09-10 18432] S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-05-10 191008] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304] S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2012-12-13 45056] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944] S3 XUIF;X10 USB Wireless Transceiver; C:\Windows\System32\Drivers\x10ufx2.sys [2009-05-13 27160] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-21 50344] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504] R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2013-09-10 101888] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe [2010-05-10 268824] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-04-15 219752] R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-04-15 1800808] R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-05-14 249136] R2 SPAMfighter Update Service;SPAMfighter Update Service; C:\Program Files\Fighters\SPAMfighter\sfus.exe [2013-10-30 216608] R2 Suite Service;Suite Service; C:\Program Files\Fighters\FighterSuiteService.exe [2013-10-29 1281568] R2 UNS;Intel® Management & Security Application User Notification Service; C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-05-10 2320920] R2 x10nets;X10 Device Network Service; C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe [2009-11-07 20480] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-05-31 553288] R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000] R3 WisLMSvc;WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [2009-10-22 118560] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-25 116648] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-04-19 161384] S3 Adobe Version Cue CS4;Adobe Version Cue CS4; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016] S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-03-26 655624] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-25 116648] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-12-27 31124344] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] -----------------EOF-----------------

Beste , Al een paar dagen krijg ik 100 tal mails van dit soort , ik heb al een paar van jullie forums gelezen met waarschijnlijk hetzelfde probleem .Maar het komt niet in orde ! Kunnen jullie mij helpen ? grt JPP

hello, Bij het openen van mijn website krijg ik telkens een bericht van webpagina nl: " you have removed or modified the link to our website.In accordance with our thems of use you must keep intact and visible any notice accompanying this product" Ik moet wel zeggen dat ik met flash werk kan iemand mij daarin verder helpen , wat het zou kunnen zijn ! dank u JP