Ga naar inhoud

Christano

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    71

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door Christano

  1. Christano
    oke nou hij is in ieder geval al een stuk sneller dan in het begin hij vertoond ook geen uitvalverschijnselen Dus de programmatjes kan ik allemaal verwijderen??? En naast de AVG virusscanner kan het geen kwaad om af en toe de Ccleaner erover heen te halen en de Malewarebytes er over heen te halen dat is goed tog??? en HitmanPro of ben je daar niet so fan van??
  2. Christano
    Beste Jion, ik heb zo juist ccleaner erover heen gehaald daar vond die niet al te veel dus das goed en het programma defragger daarmee heb ik de schijf gedefragmateerd en hij gaf aan dat de gezondheid van de schijf goed was dus dit lijkt me ook goed tog??? kunnen we verder nog wat ondernemen??? de temperaturen worden al wat minder zie ik zojuist http://speccy.piriform.com/results/J5ZctxcfZE8XmNqUAjre2HB hoor het wel weer groetjessss
  3. Christano
    wat is trouwens de normale temperatuur gemiddeld ongeveer dus van je Processor, je moederbord, grafisch en je hard schijf?????
  4. Christano
    Beste Jion, Ik heb zoiets de laptop voor het grootste gedeelte uit elkaar gehaald er was aardig wat stof aanwezig wat ik voorzichtig heb verwijderd daarna heb ik het speccy eroverheen gehaald zie hieronder http://speccy.piriform.com/results/T12EskI77aoWKOYUuYphM0v de resultaten zijn enigszins iets minder maar niet heel veel de computer is ook al iets van 7 jaar oud dus misschien is dat ook een oorzaak. ik hoor het wel weer groetjess
  5. Christano
    dat ontstoffen ga ik zeker doen en dan haal ik dat programma speccy er over die resultaten krijg je nog. volgen hierna nog meer programma´s of houden we het hier bij??? en hoe kan ik dit in de toekomst voorkomen dat je pc so traag word??? ik heb alleen AVG virusscanner erop staan maar is het niet verstandig om nog iets van een anti mailware te gebruiken???
  6. Christano
    Beste Jion, heb zoiets programma Deflix over de computer heen gehaald dat ging verder goed vond verder weinig en was een heel klein log bestandje. ccleaner ook erover heen gehaald bij scan naar problemen vond die 32 fouten die heb ik verwijderd en de tweede keer vond die niks meer. is dit allemaal een goed teken??? en kunnen we nog meer dingen ondernemen of is dit niet nodig??? groetjessssss
  7. Christano
    Beste Jion, Ik heb het programma over de computer heen gehaald en hij vond niks dus dat is een goed tegen hieronder volgende de 2 bestanden Malwarebytes Anti-Rootkit BETA 1.07.0.1005 www.malwarebytes.org Database version: v2013.09.23.09 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 jaimie :: PC_VAN_JAIMIE [administrator] 23-9-2013 18:58:55 mbar-log-2013-09-23 (18-58-55).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken Scan options disabled: Objects scanned: 189718 Time elapsed: 13 minute(s), 48 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.07.0.1005 © Malwarebytes Corporation 2011-2012 OS version: 6.0.6002 Windows Vista Service Pack 2 x86 Account is Administrative Internet Explorer version: 9.0.8112.16421 File system is: NTFS Disk drives: C:\ DRIVE_FIXED, Q:\ DRIVE_FIXED CPU speed: 2.000000 GHz Memory total: 1877151744, free: 960856064 ======================================= --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.07.0.1005 © Malwarebytes Corporation 2011-2012 OS version: 6.0.6002 Windows Vista Service Pack 2 x86 Account is Administrative Internet Explorer version: 9.0.8112.16421 File system is: NTFS Disk drives: C:\ DRIVE_FIXED, Q:\ DRIVE_FIXED CPU speed: 2.000000 GHz Memory total: 1877151744, free: 952074240 Downloaded database version: v2013.09.23.09 Downloaded database version: v2013.09.20.01 ======================================= Initializing... ------------ Kernel report ------------ 09/23/2013 18:58:48 ------------ Loaded modules ----------- \SystemRoot\system32\ntkrnlpa.exe \SystemRoot\system32\hal.dll \SystemRoot\system32\kdcom.dll \SystemRoot\system32\PSHED.dll \SystemRoot\system32\BOOTVID.dll \SystemRoot\system32\CLFS.SYS \SystemRoot\system32\CI.dll \SystemRoot\system32\drivers\Wdf01000.sys \SystemRoot\system32\drivers\WDFLDR.SYS \SystemRoot\system32\drivers\acpi.sys \SystemRoot\system32\drivers\WMILIB.SYS \SystemRoot\system32\drivers\msisadrv.sys \SystemRoot\system32\drivers\pci.sys \SystemRoot\System32\drivers\partmgr.sys \SystemRoot\system32\DRIVERS\compbatt.sys \SystemRoot\system32\DRIVERS\BATTC.SYS \SystemRoot\system32\drivers\volmgr.sys \SystemRoot\System32\drivers\volmgrx.sys \SystemRoot\system32\drivers\pciide.sys \SystemRoot\system32\drivers\PCIIDEX.SYS \SystemRoot\System32\drivers\mountmgr.sys \SystemRoot\system32\drivers\atapi.sys \SystemRoot\system32\drivers\ataport.SYS \SystemRoot\system32\drivers\fltmgr.sys \SystemRoot\system32\drivers\fileinfo.sys \SystemRoot\System32\Drivers\ksecdd.sys \SystemRoot\system32\drivers\ndis.sys \SystemRoot\system32\drivers\msrpc.sys \SystemRoot\system32\drivers\NETIO.SYS \SystemRoot\System32\drivers\tcpip.sys \SystemRoot\System32\drivers\fwpkclnt.sys \SystemRoot\System32\Drivers\Ntfs.sys \SystemRoot\system32\drivers\wd.sys \SystemRoot\system32\drivers\volsnap.sys \SystemRoot\System32\Drivers\spldr.sys \SystemRoot\System32\Drivers\mup.sys \SystemRoot\System32\drivers\ecache.sys \SystemRoot\system32\drivers\disk.sys \SystemRoot\system32\drivers\CLASSPNP.SYS \SystemRoot\system32\drivers\crcdisk.sys \SystemRoot\system32\DRIVERS\avgrkx86.sys \SystemRoot\system32\DRIVERS\avglogx.sys \SystemRoot\system32\DRIVERS\avgmfx86.sys \SystemRoot\system32\DRIVERS\avgidshx.sys \SystemRoot\system32\DRIVERS\tunnel.sys \SystemRoot\system32\DRIVERS\tunmp.sys \SystemRoot\system32\DRIVERS\amdk8.sys \SystemRoot\system32\DRIVERS\CmBatt.sys \SystemRoot\system32\DRIVERS\nvsmu.sys \SystemRoot\system32\DRIVERS\usbohci.sys \SystemRoot\system32\DRIVERS\USBPORT.SYS \SystemRoot\system32\DRIVERS\usbehci.sys \SystemRoot\system32\DRIVERS\HDAudBus.sys \SystemRoot\system32\DRIVERS\nvmfdx32.sys \SystemRoot\system32\DRIVERS\nvlddmkm.sys \SystemRoot\System32\drivers\dxgkrnl.sys \SystemRoot\System32\drivers\watchdog.sys \SystemRoot\system32\DRIVERS\i8042prt.sys \SystemRoot\system32\DRIVERS\kbdclass.sys \SystemRoot\system32\DRIVERS\SynTP.sys \SystemRoot\system32\DRIVERS\USBD.SYS \SystemRoot\system32\DRIVERS\mouclass.sys \SystemRoot\system32\DRIVERS\msiscsi.sys \SystemRoot\system32\DRIVERS\storport.sys \SystemRoot\system32\DRIVERS\TDI.SYS \SystemRoot\system32\DRIVERS\rasl2tp.sys \SystemRoot\system32\DRIVERS\ndistapi.sys \SystemRoot\system32\DRIVERS\ndiswan.sys \SystemRoot\system32\DRIVERS\raspppoe.sys \SystemRoot\system32\DRIVERS\raspptp.sys \SystemRoot\system32\DRIVERS\rassstp.sys \SystemRoot\system32\DRIVERS\termdd.sys \SystemRoot\system32\DRIVERS\swenum.sys \SystemRoot\system32\DRIVERS\ks.sys \SystemRoot\system32\DRIVERS\mssmbios.sys \SystemRoot\system32\DRIVERS\umbus.sys \SystemRoot\system32\DRIVERS\usbhub.sys \SystemRoot\System32\Drivers\NDProxy.SYS \SystemRoot\system32\drivers\CHDART.sys \SystemRoot\system32\drivers\portcls.sys \SystemRoot\system32\drivers\drmk.sys \SystemRoot\system32\DRIVERS\hidusb.sys \SystemRoot\system32\DRIVERS\HIDCLASS.SYS \SystemRoot\system32\DRIVERS\HIDPARSE.SYS \SystemRoot\system32\drivers\RTSTOR.SYS \SystemRoot\system32\DRIVERS\RTL8187B.sys \SystemRoot\system32\DRIVERS\mouhid.sys \SystemRoot\System32\Drivers\Fs_Rec.SYS \SystemRoot\System32\Drivers\Null.SYS \SystemRoot\System32\Drivers\Beep.SYS \??\C:\Windows\system32\drivers\avgtpx86.sys \SystemRoot\System32\drivers\vga.sys \SystemRoot\System32\drivers\VIDEOPRT.SYS \SystemRoot\System32\DRIVERS\RDPCDD.sys \SystemRoot\system32\drivers\rdpencdd.sys \SystemRoot\System32\Drivers\Msfs.SYS \SystemRoot\System32\Drivers\Npfs.SYS \SystemRoot\System32\DRIVERS\rasacd.sys \SystemRoot\system32\DRIVERS\tdx.sys \SystemRoot\system32\DRIVERS\smb.sys \SystemRoot\system32\DRIVERS\avgtdix.sys \SystemRoot\System32\DRIVERS\netbt.sys \SystemRoot\system32\drivers\afd.sys \SystemRoot\system32\DRIVERS\pacer.sys \SystemRoot\system32\DRIVERS\netbios.sys \SystemRoot\system32\DRIVERS\wanarp.sys \SystemRoot\system32\DRIVERS\rdbss.sys \SystemRoot\system32\drivers\nsiproxy.sys \SystemRoot\System32\Drivers\dfsc.sys \SystemRoot\system32\DRIVERS\avgldx86.sys \SystemRoot\system32\DRIVERS\avgidsshimx.sys \SystemRoot\system32\DRIVERS\avgidsdriverx.sys \SystemRoot\System32\Drivers\crashdmp.sys \SystemRoot\System32\Drivers\dump_dumpata.sys \SystemRoot\System32\Drivers\dump_atapi.sys \SystemRoot\System32\win32k.sys \SystemRoot\System32\drivers\Dxapi.sys \SystemRoot\system32\DRIVERS\monitor.sys \SystemRoot\System32\TSDDD.dll \SystemRoot\System32\cdd.dll \SystemRoot\system32\drivers\luafv.sys \SystemRoot\system32\DRIVERS\Sftvollh.sys \SystemRoot\system32\drivers\WudfPf.sys \SystemRoot\system32\DRIVERS\lltdio.sys \SystemRoot\system32\DRIVERS\nwifi.sys \SystemRoot\system32\DRIVERS\ndisuio.sys \SystemRoot\system32\DRIVERS\rspndr.sys \SystemRoot\system32\drivers\spsys.sys \SystemRoot\system32\drivers\HTTP.sys \SystemRoot\System32\DRIVERS\srvnet.sys \SystemRoot\system32\DRIVERS\bowser.sys \SystemRoot\System32\drivers\mpsdrv.sys \SystemRoot\system32\drivers\mrxdav.sys \SystemRoot\system32\DRIVERS\mrxsmb.sys \SystemRoot\system32\DRIVERS\mrxsmb10.sys \SystemRoot\system32\DRIVERS\mrxsmb20.sys \SystemRoot\System32\DRIVERS\srv2.sys \SystemRoot\System32\DRIVERS\srv.sys \SystemRoot\system32\drivers\peauth.sys \SystemRoot\System32\Drivers\secdrv.SYS \SystemRoot\system32\DRIVERS\Sftfslh.sys \SystemRoot\system32\DRIVERS\Sftplaylh.sys \SystemRoot\System32\drivers\tcpipreg.sys \SystemRoot\system32\DRIVERS\Sftredirlh.sys \SystemRoot\System32\ATMFD.DLL \??\C:\Windows\system32\drivers\mbamchameleon.sys \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys \Windows\System32\ntdll.dll ----------- End ----------- Done! <<<1>>> Upper Device Name: \Device\Harddisk0\DR0 Upper Device Object: 0xffffffff84a96ac8 Upper Device Driver Name: \Driver\disk\ Lower Device Name: \Device\Ide\IdeDeviceP2T0L0-3\ Lower Device Object: 0xffffffff838ae840 Lower Device Driver Name: \Driver\atapi\ <<<2>>> Physical Sector Size: 512 Drive: 0, DevicePointer: 0xffffffff84a96ac8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\ --------- Disk Stack ------ DevicePointer: 0xffffffff84993088, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffffff84a96ac8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\ DevicePointer: 0xffffffff838bd918, DeviceName: Unknown, DriverName: \Driver\ACPI\ DevicePointer: 0xffffffff838ae840, DeviceName: \Device\Ide\IdeDeviceP2T0L0-3\, DriverName: \Driver\atapi\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\ Upper DeviceData: 0x0, 0x0, 0x0 Lower DeviceData: 0x0, 0x0, 0x0 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers... <<<2>>> <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Done! Drive 0 Scanning MBR on drive 0... Inspecting partition table: MBR Signature: 55AA Disk Signature: F529F9A3 Partition information: Partition 0 type is Other (0x27) Partition is NOT ACTIVE. Partition starts at LBA: 63 Numsec = 16787862 Partition 1 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 16787925 Numsec = 217651675 Partition is not bootable Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Disk Size: 120034123776 bytes Sector size: 512 bytes Scanning physical sectors of unpartitioned space on drive 0 (1-62-234421648-234441648)... Done! Read File: File "c:\programdata\avg2013\chjw\8048f3e148f3d43e.dat:d0863305-903e-485e-83ab-6178c8b5e744" is sparse (flags = 32768) Scan finished ======================================= Removal queue found; removal started Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR_0_i.mbam... Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\Bootstrap_0_1_16787925_i.mbam... Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR_0_r.mbam... Removal finished --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.07.0.1005 © Malwarebytes Corporation 2011-2012 OS version: 6.0.6002 Windows Vista Service Pack 2 x86 Account is Administrative Internet Explorer version: 9.0.8112.16421 File system is: NTFS Disk drives: C:\ DRIVE_FIXED, Q:\ DRIVE_FIXED CPU speed: 2.000000 GHz Memory total: 1877151744, free: 812605440 ======================================= --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.07.0.1005 © Malwarebytes Corporation 2011-2012 OS version: 6.0.6002 Windows Vista Service Pack 2 x86 Account is Administrative Internet Explorer version: 9.0.8112.16421 File system is: NTFS Disk drives: C:\ DRIVE_FIXED, Q:\ DRIVE_FIXED CPU speed: 2.000000 GHz Memory total: 1877151744, free: 956674048 =======================================
  8. Christano
    ja de computer is wel iets sneller maar nog niet echt heel veel kunnen jullie nog meer doen??? en wat hebben al deze programma's nou precies gedaan???
  9. Christano
    Beste Jion, Ik heb zonet het programma malwarebytes over de computer heen gehaald met het volgende resultaat Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Databaseversie: v2013.09.22.02 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 jaimie :: PC_VAN_JAIMIE [administrator] 22-9-2013 14:18:41 mbam-log-2013-09-22 (14-18-41).txt Scan type: Snelle scan Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scan opties: P2P Objecten gescand: 185890 Verstreken tijd: 9 minuut/minuten, 57 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 3 HKCR\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} (PUP.Optional.BrowseFox.A) -> Succesvol in quarantaine geplaatst en verwijderd. HKCR\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} (PUP.Optional.BrowseFox.A) -> Succesvol in quarantaine geplaatst en verwijderd. HKCU\SOFTWARE\WEBCONNECT (PUP.Optional.WebConnect.A) -> Succesvol in quarantaine geplaatst en verwijderd. Registerwaarden gedetecteerd: 1 HKCU\Software\WebConnect|iid (PUP.Optional.WebConnect.A) -> Data: def_WebConnect -> Succesvol in quarantaine geplaatst en verwijderd. Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 1 C:\Users\jaimie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Progressive Protection (Rogue.SystemProgressiveProtection) -> Succesvol in quarantaine geplaatst en verwijderd. Bestanden gedetecteerd: 1 C:\Users\jaimie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Progressive Protection\System Progressive Protection.lnk (Rogue.SystemProgressiveProtection) -> Succesvol in quarantaine geplaatst en verwijderd. (einde)
  10. Christano
    Beste Jion, ik heb zoiets de virusscanner microsofft security essentials verwijderd was me nog niet opgemerkt dat er twee op stonden wel was ik op de hoogte dat twee virusscanners elkaar tegen werken maar bedankt voor het adviseren en hieronder volgt het logje van het programma adwcleaner die ik over de computer heb gehaald # AdwCleaner v3.004 - Report created 22/09/2013 at 12:46:39 # Updated 15/09/2013 by Xplode # Operating System : Windows Vista Home Basic Service Pack 2 (32 bits) # Username : jaimie - PC_VAN_JAIMIE # Running from : C:\Users\jaimie\Desktop\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\AVG Secure Search Folder Deleted : C:\ProgramData\PC Optimizer Pro Folder Deleted : C:\Program Files\registry mechanic Folder Deleted : C:\Users\jaimie\AppData\Local\AVG Secure Search Folder Deleted : C:\Users\jaimie\AppData\LocalLow\AVG Secure Search Folder Deleted : C:\Users\jaimie\AppData\LocalLow\AVG Security Toolbar File Deleted : C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default\user.js ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BrowserDefendert [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C85C6F3-160C-4F21-B29A-6649406F276B} [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4C85C6F3-160C-4F21-B29A-6649406F276B} [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EE858558-D9E5-441B-92D1-9DFBDC1F5B39} [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EE858558-D9E5-441B-92D1-9DFBDC1F5B39} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1 Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1 Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaappCore Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaappCore.1 Key Deleted : HKLM\SOFTWARE\Classes\delta.deltadskBnd Key Deleted : HKLM\SOFTWARE\Classes\delta.deltadskBnd.1 Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaHlpr Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaHlpr.1 Key Deleted : HKLM\SOFTWARE\Classes\driverscanner Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1 Key Deleted : HKLM\SOFTWARE\Classes\escort.escrtBtn.1 Key Deleted : HKLM\SOFTWARE\Classes\esrv.deltaESrvc Key Deleted : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1 Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1 Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin Key Deleted : HKCU\Software\5e28bdeb53ab915 Key Deleted : HKLM\SOFTWARE\5e28bdeb53ab915 Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKCU\Software\AVG Secure Search Key Deleted : HKCU\Software\BabSolution Key Deleted : HKCU\Software\DataMngr Key Deleted : HKCU\Software\Delta Key Deleted : HKCU\Software\filescout Key Deleted : HKCU\Software\InstallCore Key Deleted : HKCU\Software\pc optimizer pro Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong Key Deleted : HKLM\Software\AVG Secure Search Key Deleted : HKLM\Software\AVG Security Toolbar Key Deleted : HKLM\Software\Babylon Key Deleted : HKLM\Software\DataMngr Key Deleted : HKLM\Software\Delta Key Deleted : HKLM\Software\InstallIQ Key Deleted : HKLM\Software\systweak Key Deleted : HKLM\Software\Tarma Installer Key Deleted : HKLM\Software\Uniblue\DriverScanner Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Chrome Toolbar Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta ***** [ Browsers ] ***** -\\ Internet Explorer v9.0.8112.16506 -\\ Mozilla Firefox v12.0 (nl) [ File : C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default\prefs.js ] Line Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search"); -\\ Google Chrome v29.0.1547.76 [ File : C:\Users\jaimie\AppData\Local\Google\Chrome\User Data\Default\preferences ] Deleted : homepage Deleted : urls_to_restore_on_startup Deleted : icon_url Deleted : search_url Deleted : keyword ************************* AdwCleaner[R0].txt - [10176 octets] - [22/09/2013 12:45:03] AdwCleaner[s0].txt - [10360 octets] - [22/09/2013 12:46:39] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [10421 octets] ########## hoor hopelijk snel weer van je groetjesss
  11. Christano
    Beste Jion en Jean Pierre ik heb het bestand zoek.zip over de computer heen gehaald zoals Jion beschreef het duur ff maar hier is het logje Zoek.exe Version 4.0.0.4 Updated 19-September-2013 Tool run by jaimie on za 21-09-2013 at 13:24:33,89. Microsoft® Windows Vista™ Home Basic 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\jaimie\Documents\zoek\zoek.exe [script inserted] ==== System Restore Info ====================== 21-9-2013 13:26:40 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-367893845-1825591885-46999492-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2316c625-b487-4410-a1a5-ff040b65245f} deleted successfully HKEY_USERS\S-1-5-21-367893845-1825591885-46999492-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2316c625-b487-4410-a1a5-ff040b65245f} deleted successfully HKEY_USERS\S-1-5-21-367893845-1825591885-46999492-1002\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-367893845-1825591885-46999492-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-367893845-1825591885-46999492-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully HKEY_USERS\S-1-5-21-367893845-1825591885-46999492-1002\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_CLASSES_ROOT\CLSID\{2316c625-b487-4410-a1a5-ff040b65245f} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2316c625-b487-4410-a1a5-ff040b65245f} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_CLASSES_ROOT\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully HKEY_CLASSES_ROOT\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater15.5.0 deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater15.5.0 deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update WebConnect deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update WebConnect deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\Update WebConnect deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Update WebConnect deleted successfully ==== FireFox Fix ====================== ProfilePath: C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default ---- Lines delta removed from prefs.js ---- ---- Lines delta modified from prefs.js ---- ---- Lines delta removed from user.js ---- user_pref("extensions.delta.tlbrSrchUrl", ""); user_pref("extensions.delta.id", "54e716ed00000000000000140b47dfc0"); user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}"); user_pref("extensions.delta.instlDay", "15961"); user_pref("extensions.delta.vrsn", "1.8.24.6"); user_pref("extensions.delta.vrsni", "1.8.24.6"); user_pref("extensions.delta.vrsnTs", "1.8.24.612:01:30"); user_pref("extensions.delta.prtnrId", "delta"); user_pref("extensions.delta.prdct", "delta"); user_pref("extensions.delta.aflt", "babsst"); user_pref("extensions.delta.smplGrp", "none"); user_pref("extensions.delta.tlbrId", "base"); user_pref("extensions.delta.instlRef", "sst"); user_pref("extensions.delta.dfltLng", "nl"); user_pref("extensions.delta.excTlbr", false); user_pref("extensions.delta.ffxUnstlRst", true); user_pref("extensions.delta.admin", false); user_pref("extensions.delta_i.babTrack", "affID=119357&tsp=5004"); user_pref("extensions.delta_i.babExt", ""); user_pref("extensions.delta_i.srcExt", "ss"); user_pref("extensions.delta.autoRvrt", "false"); user_pref("extensions.delta.rvrt", "false"); user_pref("extensions.delta.newTab", false); ---- Lines yahoo removed from prefs.js ---- user_pref("google.toolbar.subscribe.aggregators.myyahoo.desc", "My Yahoo!"); user_pref("google.toolbar.subscribe.aggregators.myyahoo.id", "myyahoo"); user_pref("google.toolbar.subscribe.aggregators.myyahoo.order", "3"); user_pref("google.toolbar.subscribe.aggregators.myyahoo.title", "My Yahoo"); user_pref("google.toolbar.subscribe.aggregators.myyahoo.url", "http://add.my.yahoo.com/rss?url=%feed%"); ---- Lines yahoo modified from prefs.js ---- ---- Lines yahoo removed from user.js ---- ---- FireFox user.js and prefs.js backups ---- user_21-09-2013_1335_.backup prefs_21-09-2013_1335_.backup ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "vProt"=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "NTRedirect"=- [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "bProtector Start Page"=- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "bProtectorDefaultScope"=- ==== Deleting Files \ Folders ====================== "C:\Users\jaimie\AppData\Local\fvnqqpij" deleted "C:\Users\jaimie\AppData\Local\sambqikl" deleted "C:\Program Files\GUT91A0.tmp" deleted "C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml" deleted "C:\Users\jaimie\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data" deleted "C:\Users\jaimie\AppData\Local\Google\Chrome\User Data\Default\bProtectorPreferences" deleted "C:\Windows\WinInit.ini" deleted "C:\Windows\system32\Tasks\BrowserDefendert" deleted "C:\Windows\system32\Tasks\EPUpdater" deleted "C:\Windows\system32\tasks\RegClean Pro" deleted "C:\END" deleted "C:\Windows\system32\roboot.exe" deleted "C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default\searchplugins\live-search.xml" deleted "C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default\searchplugins\LiveSearch.xml" deleted "C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default\searchplugins\search-results.xml" deleted "C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default\bProtector_extensions.rdf" deleted "C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default\bProtector_extensions.sqlite" deleted "C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default\bProtector_prefs.js" deleted "C:\ProgramData\54EF90BB8A9116ED000054EF3BD41EBD\54EF90BB8A9116ED000054EF3BD41EBD" deleted "C:\ProgramData\54EF90BB8A9116ED000054EF3BD41EBD\54EF90BB8A9116ED000054EF3BD41EBD.ico" deleted "C:\Program Files\WebConnect\updateWebConnect.exe" deleted "C:\Program Files\WebConnect\WebConnect.Common.dll" deleted "C:\Program Files\AVG Secure Search\vprot.exe" deleted "C:\Program Files\WebConnect\updateWebConnect.exe" deleted "C:\Program Files\WebConnect\WebConnect.Common.dll" deleted "C:\Program Files\WebConnect\updateWebConnect.exe" deleted "C:\Program Files\WebConnect\WebConnect.Common.dll" deleted "C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.5.0\SiteSafety.dll" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\log4cplusU.dll" deleted "C:\ProgramData\54EF90BB8A9116ED000054EF3BD41EBD" deleted "C:\Users\jaimie\AppData\Roaming\Delta" deleted "C:\Program Files\WebConnect" not deleted "C:\Users\jaimie\AppData\Roaming\BabSolution" deleted "C:\Program Files\AVG Secure Search" deleted "C:\Program Files\Common Files\AVG Secure Search" deleted "C:\Program Files\WebConnect" not deleted "C:\ProgramData\BitGuard" deleted "C:\Program Files\Delta" deleted "C:\Users\jaimie\AppData\Roaming\Delta" deleted "C:\ProgramData\BrowserDefender" deleted "C:\Program Files\GUM9190.tmp" deleted "C:\Program Files\Uniblue\SpeedUpMyPC" deleted "C:\Program Files\Delta" deleted "C:\Program Files\File Type Assistant" deleted "C:\Program Files\PC Performer" deleted "C:\Program Files\MyPC Backup" deleted "C:\Program Files\WebConnect" not deleted "C:\Program Files\File Scout" deleted "C:\Users\jaimie\AppData\Roaming\BabSolution" deleted "C:\Users\jaimie\AppData\Roaming\Babylon" deleted "C:\Users\jaimie\AppData\Roaming\File Scout" deleted "C:\Users\jaimie\AppData\Roaming\Delta" deleted "C:\Users\jaimie\AppData\Roaming\Registry Mechanic" deleted "C:\Users\jaimie\AppData\Roaming\Systweak" deleted "C:\Users\jaimie\AppData\Roaming\PerformerSoft" deleted "C:\ProgramData\Ask" deleted "C:\ProgramData\APN" deleted "C:\ProgramData\BitGuard" deleted "C:\ProgramData\BrowserDefender" deleted "C:\ProgramData\Uniblue\DriverScanner" deleted "C:\ProgramData\IBUpdaterService" deleted "C:\ProgramData\Tarma Installer" deleted "C:\ProgramData\Babylon" deleted "C:\Users\jaimie\AppData\Local\FileTypeAssistant" deleted "C:\Users\jaimie\AppData\Local\PackageAware" deleted "C:\Windows\system32\config\systemprofile\AppData\Local\FileTypeAssistant" deleted "C:\Users\jaimie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender" deleted "C:\Users\jaimie\AppData\LocalLow\BabylonToolbar" deleted "C:\Windows\System32\AI_RecycleBin" deleted "C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default\extensions\ffxtlbr@delta.com" deleted "C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater" deleted "C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.5.0" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\jaimie\AppData\Local\Temp ==== ====== Java Cache ===== 2013-08-26 16:22:33 18AD24FFE563CFDB1867899DEEF39F2D 14183 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\44668a41-1291f3d5 2013-08-26 16:23:04 3FBAE7C1454CCAF458C4A50625B90970 4639 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\2cf9b48a-27640873 2013-08-26 16:22:32 1E262CB95EDFA6CEC46F71711DAAC576 394641 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\15cd774c-3660e5c9 2013-08-26 16:23:05 D17C70A7D388C797E0B19BEDC50EDD8F 1556 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\6f303ce-3c6c5854 2013-09-10 07:40:41 E1B828911ADF8CEA4F18DC7B862FF6CE 4869 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\23b78ecf-2fd7ebfb 2013-09-10 07:38:55 1E262CB95EDFA6CEC46F71711DAAC576 394641 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\364a8382-2971bdbe 2013-09-10 07:40:41 1BED8044ADE1D9064A50488CF4B36904 4286 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\1df30415-51f5704a 2013-08-26 16:24:21 E1B828911ADF8CEA4F18DC7B862FF6CE 4869 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\5cae0b17-6ec903ee 2013-09-10 07:38:38 3B5C292D3851429200090EEE53F6F298 1914833 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\730bf31a-4fe55d0a 2013-08-26 16:23:05 6837576E8D1DC733FD048490892AF904 3902 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\70300c5c-5f5505ad 2013-08-26 16:22:05 C1E8A6CD531706858B73DEE7893956EA 1944859 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\fa425c3-1a78e422 2013-09-10 07:39:32 9DA21B02A1B7638D9D16BEA2D84E4F85 3998 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\1c166a1f-4bb8a386 2013-09-10 07:40:41 5D058A19E4C2DA627DBDA33538F434B6 6400 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\8f7d4a1-6c36f4c8 2013-09-10 07:45:21 1BED8044ADE1D9064A50488CF4B36904 4286 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\536e90e3-4271289d 2013-08-26 16:24:21 A1EEBE53A3EB7CB46BF66620BB2D812A 4896 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\1c5c5a65-19375043 2013-08-26 16:22:27 78896A5FC17B9E1C63F4106968CF8BBE 1811082 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\366065e6-411b13bd 2013-08-26 16:23:58 1BED8044ADE1D9064A50488CF4B36904 4286 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\6264e7-558c0342 2013-09-10 07:40:41 A1EEBE53A3EB7CB46BF66620BB2D812A 4896 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\6313e8a9-375616e1 2013-09-10 07:39:35 5556437ADB2FEFB9EF3C1DE829F2FDC5 3886 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\16ade86c-23ccda14 2013-09-10 07:40:41 B08223396AA642E413A54F9EDF2FFDDA 6240 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\3e4ed46c-14ad6575 2013-08-26 16:24:21 5D058A19E4C2DA627DBDA33538F434B6 6400 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\1b2e7fed-4f3e1705 2013-08-26 16:24:21 B08223396AA642E413A54F9EDF2FFDDA 6240 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\7703b9ed-295c2f02 2013-09-10 07:40:41 1BED8044ADE1D9064A50488CF4B36904 4286 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\1933a1f1-194018b7 2013-09-10 07:40:41 1BED8044ADE1D9064A50488CF4B36904 4286 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\c5a76b5-29228af3 2013-08-26 16:23:06 1AA72F28F83E39D6C7963EA340F29071 4000 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\cbdc5b8-1fc381b1 2013-09-10 07:38:53 78896A5FC17B9E1C63F4106968CF8BBE 1811082 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\a0dcb46-7907f3f1 2013-08-26 16:23:05 C3195CD1BEAE3518734E579226148FCD 3343 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\7308ea7c-7c00d815 2013-09-10 07:39:34 3FBAE7C1454CCAF458C4A50625B90970 4639 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\185e177f-6e1df754 2013-09-10 07:38:56 18AD24FFE563CFDB1867899DEEF39F2D 14183 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\308d3847-1e377303 2013-08-26 16:23:03 9DA21B02A1B7638D9D16BEA2D84E4F85 3998 ----a-w- C:\Users\jaimie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\e113d88-603abe25 ====== C:\Windows\system32 ===== 2013-09-12 05:17:45 24BEF006E8A79457172084FD24395509 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2013-09-12 05:17:45 0381DAD42485BBC0B2BEF9DC163086FE 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2013-09-12 05:17:44 1416E2CBA99B8B85F7007DF8D4FBE347 420864 ----a-w- C:\Windows\System32\vbscript.dll 2013-09-12 05:17:42 7610640A56A5D1599EA5841B65103CFA 176640 ----a-w- C:\Windows\System32\ieui.dll 2013-09-12 05:17:42 67E8C37D929EE30016C17ACE1379E047 65024 ----a-w- C:\Windows\System32\jsproxy.dll 2013-09-12 05:17:41 5062CDE3660C96ADC4A1702AA13D972A 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2013-09-12 05:17:41 314C2F90B4D337527AD0231F44BA88F9 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2013-09-12 05:17:40 21A5424935A32080A58DD40F2712212C 1129472 ----a-w- C:\Windows\System32\wininet.dll 2013-09-12 05:17:39 490107BF073A44A54E39BDB6C2077D5A 717824 ----a-w- C:\Windows\System32\jscript.dll 2013-09-12 05:17:38 C019B0A82FDF2AA2A8627704685D4D53 1800704 ----a-w- C:\Windows\System32\jscript9.dll 2013-09-12 05:17:38 90270F2060EB2F6F1C1C7A3DB6DC941F 231936 ----a-w- C:\Windows\System32\url.dll 2013-09-12 05:17:37 F21A5999C6354AC042D42D687EC027F1 1796096 ----a-w- C:\Windows\System32\iertutil.dll 2013-09-12 05:17:34 57EFDDDA9A057C3F868409D4FD9655EC 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl 2013-09-12 05:17:34 51059C99C8432519A8416BD8252940CA 1104896 ----a-w- C:\Windows\System32\urlmon.dll 2013-09-12 05:17:31 6DB41C70A74B420A0ADC55A9862DDAD9 12335104 ----a-w- C:\Windows\System32\mshtml.dll 2013-09-12 05:17:29 4EA7E90932BEBB21F1B5A5666A807C1F 9738752 ----a-w- C:\Windows\System32\ieframe.dll 2013-09-11 05:34:05 DBD9448D06E67FE6F29261FFAD205B68 615936 ----a-w- C:\Windows\System32\themeui.dll 2013-09-11 05:34:03 7971B5B112ECD33A771C432137A4E30D 2049536 ----a-w- C:\Windows\System32\win32k.sys ====== C:\Windows\system32\drivers ===== 2013-09-09 23:34:48 2717EBC35166B8793DBFFB4390B8F2E7 22328 ----a-w- C:\Windows\System32\drivers\avgidsshimx.sys 2013-09-04 23:43:42 CBCE8ED318DB8EA431F9D25AC9B7FF41 39224 ----a-w- C:\Windows\System32\drivers\avgrkx86.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-09-20 14:59:44 -------- d-----w- C:\Program Files\trend micro 2013-09-20 14:46:46 -------- d-----w- C:\Program Files\Speccy 2013-09-13 10:00:38 -------- d-----w- C:\Program Files\WebConnect 2013-09-01 19:44:03 -------- d-----w- C:\Program Files\Uniblue ======= C: ===== ====== C:\Users\jaimie\AppData\Roaming ====== 2013-09-20 18:17:34 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm 2013-09-20 15:15:44 -------- d-----w- C:\Users\jaimie\AppData\Local\Avg2014 2013-09-20 14:47:19 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking ====== C:\Users\jaimie ====== 2013-09-20 14:57:51 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jaimie\Desktop\RSIT.exe 2013-09-13 06:55:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG ====== C: exe-files == 2013-09-20 15:15:39 8EA98E4F807905E8264351D2522B5943 15920 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgrdtestx.exe 2013-09-20 15:15:39 18CDB35B336F476D79B8B3819248D6CF 63024 ----a-w- C:\ProgramData\MFAData\SelfUpd\avguirux.exe 2013-09-20 15:15:37 07B1FB0401CAFA446B7BFE04D075C49E 5903304 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgmfapx.exe 2013-09-20 15:15:34 6FF3974A6D6C7E85C75E7C45907C9499 287792 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgrunasx.exe 2013-09-20 15:15:34 394A799E0E8EF32DB349C8410F3337F9 16944 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgrdtesta.exe 2013-09-20 15:15:32 ADCD3E35657C3CA3CCE86FAA3EAF77EA 626736 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgntdumpx.exe 2013-09-20 14:59:44 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\jaimie.exe 2013-09-20 14:57:51 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\jaimie\Desktop\RSIT.exe 2013-09-19 19:53:35 0B1CD71CE29E8123A664A5B40153D2FE 1915744 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\29.0.1547.76\29.0.1547.76_29.0.1547.66_chrome_updater.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-367893845-1825591885-46999492-1002\Software\Microsoft\Windows\CurrentVersion\Run] "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" "TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CardReaderMonitor"="C:\Program Files\Realtek Semiconductor Corp.\Realtek Card Reader Monitor\CardReaderMonitor.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "Reader Application Helper"="C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY" "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" "TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ISUSPM] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ISUSPM" "hkey"="HKCU" "command"="\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\ISUSPM.exe\" -scheduler" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvCplDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvCplDaemon" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\Windows\\system32\\NvCpl.dll,NvStartup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvMediaCenter] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvMediaCenter" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\Windows\\system32\\NvMcTray.dll,NvTaskbarInit" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvSvc] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvSvc" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\Windows\\system32\\nvsvc.dll,nvsvcStart" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PCMService] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="PCMService" "hkey"="HKLM" "command"="\"c:\\Program Files\\Powercinema\\PCMService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sidebar] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Sidebar" "hkey"="HKCU" "command"="C:\\Program Files\\Windows Sidebar\\sidebar.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SmpcSys] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SmpcSys" "hkey"="HKCU" "command"="C:\\Program Files\\Packard Bell\\SetUpMyPC\\SmpSys.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\swg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="swg" "hkey"="HKCU" "command"="\"C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SynTPEnh] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SynTPEnh" "hkey"="HKLM" "command"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\toolbar_eula_launcher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="toolbar_eula_launcher" "hkey"="HKLM" "command"="C:\\Program Files\\Packard Bell\\GOOGLE_EULA\\EULALauncher.exe" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [undetermined Task] C:\Windows\tasks\FreeFileViewerUpdateChecker.job --a------ [undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [08-03-2011 13:23] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [08-03-2011 13:23] C:\Windows\tasks\Recovery DVD Creator.job --a------ C:\Program Files\Packard Bell\SetupMyPc\MCDCheck.exe [21-11-2006 18:34] C:\Windows\tasks\RegAce Scheduled Scan - jaimie.job --a------ C:\Program Files\RegAce System Suite\RegAce.exe [] C:\Windows\tasks\Uitgebreide garantie.job --a------ C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe [21-11-2006 18:38] ==== Firefox Extensions ====================== ProfilePath: C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default - WebConnect - %ProfilePath%\extensions\firefox@webconnect.co.xpi - Microsoft .NET Framework Assistant - %ProfilePath%\extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi AppDir: C:\Program Files\Mozilla Firefox - Google Toolbar for Firefox - %AppDir%\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} ==== Firefox Plugins ====================== Profilepath: C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default 1B197A0ED28DB310AB67591567C3787A - C:\Windows\system32\npdeployJava1.dll - Java Deployment Toolkit 7.0.150.3 2FAF656688BDBCC1076385E58567939D - C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll - Java Platform SE 7 U3 AC421A44DE902F2627F1E63793ED89CD - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery 24E990B1E6D55428001843CF7217DD81 - C:\Program Files\Microsoft\Office Live\npOLW.dll - Microsoft Office Live Plug-in for Firefox / Microsoft Office Live Plug-in for Firefox 8A66726393C4F0B8AA8F1ACAB4D37B13 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll - QuickTime Plug-in 7.5.5 F37AA8F70EA00C48A89D3E2372365A47 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll - QuickTime Plug-in 7.5.5 10E5C0BF55516021FFCEBAFA94825BEC - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll - QuickTime Plug-in 7.5.5 C3DC6753E3352311D541B613E1229998 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll - QuickTime Plug-in 7.5.5 CF8E0C20114BD5D1F58D1FDE4AFC5C37 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll - QuickTime Plug-in 7.5.5 B8D1073C9F9C131A1CE888BF9C6BE7BB - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll - QuickTime Plug-in 7.5.5 A8FC5E09541D3CE0838C9F7FE2B34926 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll - QuickTime Plug-in 7.5.5 E2318E8514ABF50E3ECEDAB9465A90A1 - C:\Program Files\Mozilla Firefox\plugins\np32dsw.dll - Shockwave for Director / Shockwave for Director AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation 636EC822402ADDA59C808CA892B2845F - C:\Windows\system32\NPSWF32.dll - Shockwave Flash 9A6101F29E2E9D41B99CBCC8F106E8FE - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL - 2007 Microsoft Office system A795A7F26131D0B10F6EE75C4DE3D320 - C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll - Adobe Acrobat A795A7F26131D0B10F6EE75C4DE3D320 - C:\Program Files\Adobe\Reader 8.0\Reader\browser\nppdf32.dll - Adobe Acrobat E2318E8514ABF50E3ECEDAB9465A90A1 - C:\Windows\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director DFCAB29E8FD38F95650CC1E203E8D318 - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System ==== Deleting Files \ Folders ====================== "C:\Users\jaimie\AppData\Roaming\Mozilla\Firefox\Profiles\36idldj2.default\extensions\firefox@webconnect.co.xpi" deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions eooncjejnppfjjklapaamhcdmjbilmde - C:\Users\jaimie\AppData\Roaming\BabSolution\CR\Delta.crx[] ieakfmpjhljbpbfpldjkddkjmmgjmgon - C:\Program Files\WebConnect\ieakfmpjhljbpbfpldjkddkjmmgjmgon.crx[] ndibdjnfmopecpmkdieinmbadjfpblof - C:\ProgramData\AVG Secure Search\ChromeExt\14.2.0.1\avg.crx[18-02-2013 16:22] AVG Security Toolbar - jaimie - Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof ==== Chrome Fix ====================== C:\ProgramData\AVG Secure Search\ChromeExt\14.2.0.1\avg.crx deleted successfully C:\Users\jaimie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage deleted successfully C:\Users\jaimie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ieakfmpjhljbpbfpldjkddkjmmgjmgon_0.localstorage deleted successfully C:\Users\jaimie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully C:\Users\jaimie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ndibdjnfmopecpmkdieinmbadjfpblof_0.localstorage deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/" "Default_Page_URL"="Hyves" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" "Start Page"="https://www.google.nl/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" {DB9E3D15-C1AE-4376-A645-3AD5289FB8D7} Google Url="{searchTerms} - Google Search" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ieakfmpjhljbpbfpldjkddkjmmgjmgon deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\jaimie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\jaimie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(3)\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\jaimie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\jaimie\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\jaimie\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\jaimie\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\jaimie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Program Files\WebConnect" not found "C:\Program Files\WebConnect" not found "C:\Program Files\WebConnect" not found ==== EOF on za 21-09-2013 at 13:48:03,77 ====================== hoop weer snel van jullie groetjessss
  12. Christano
    oke bedankt ik hoop snel van u te horen zodat ik hopelijk de pc kan redden:cool: Jean Pierre is het trouwens verstandig om het bericht van Jion ook te gaan uitvoeren met het bestand zoek.zip???
  13. Christano
    Beste Jean Pierre, Heel erg bedankt voor je snelle reactie en ik hoop dat je me kan helpen ik heb het programma Speccy over de computer gehaald de linkt zie je hieronden http://speccy.piriform.com/results/gUwBc1UmLzEMJ2khurfRsPD het programma RSIT heb ik ook erover heen gegooid en hier volgt het LOG Logfile of random's system information tool 1.09 (written by random/random) Run by jaimie at 2013-09-20 16:59:44 Microsoft® Windows Vista™ Home Basic Service Pack 2 System drive C: has 55 GB (52%) free of 106 GB Total RAM: 1790 MB (41% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:00:07, on 20-9-2013 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16506) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Program Files\Realtek Semiconductor Corp\Realtek Card Reader Monitor\CardReaderMonitor.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVG\AVG2013\avgui.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\Windows\System32\rundll32.exe C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVH.EXE C:\Program Files\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_11_8_800_175_ActiveX.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\conime.exe C:\Users\jaimie\Desktop\RSIT.exe C:\Program Files\trend micro\jaimie.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.hyves.nl R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer wordt aangeboden door Hyves R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: WebConnect - {2316c625-b487-4410-a1a5-ff040b65245f} - C:\Program Files\WebConnect\WebConnectbho.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file) O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - (no file) O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [CardReaderMonitor] C:\Program Files\Realtek Semiconductor Corp.\Realtek Card Reader Monitor\CardReaderMonitor.exe O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [Reader Application Helper] C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [NTRedirect] C:\Windows\system32\rundll32.exe "C:\Users\jaimie\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\15.5.0\ViProtocol.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\Program Files\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\Program Files\Powercinema\Kernel\TV\CLSched.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: Update WebConnect - WebConnect - C:\Program Files\WebConnect\updateWebConnect.exe O23 - Service: vToolbarUpdater15.5.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe -- End of file - 7860 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\FreeFileViewerUpdateChecker.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\Recovery DVD Creator.job C:\Windows\tasks\RegAce Scheduled Scan - jaimie.job C:\Windows\tasks\Uitgebreide garantie.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Help bij koppelingen - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2316c625-b487-4410-a1a5-ff040b65245f}] WebConnect - C:\Program Files\WebConnect\WebConnectbho.dll [2013-08-30 149288] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}] Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-02-26 461216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}] Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-11-10 393600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-08-17 192592] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}] CBrowserHelperObject Object - C:\Program Files\Google\Google_BAE\BAE.dll [2006-11-09 98304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-02-26 170912] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {95B7759C-8C7F-4BF1-B163-73684A933233} {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-08-17 192592] {82E1477C-B154-48D3-9891-33D83C26BCD3} - [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184] "CardReaderMonitor"=C:\Program Files\Realtek Semiconductor Corp.\Realtek Card Reader Monitor\CardReaderMonitor.exe [2007-07-25 643072] "MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-06-20 995176] ""= [] "Reader Application Helper"=C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [2012-07-12 892928] "vProt"=C:\Program Files\AVG Secure Search\vprot.exe [2013-08-14 2314416] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848] "AVG_UI"=C:\Program Files\AVG\AVG2013\avgui.exe [2013-08-15 4411440] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ISUSPM"=C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2006-09-11 218032] "TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2012-12-05 247768] "NTRedirect"=C:\Users\jaimie\AppData\Roaming\BabSolution\Shared\enhancedNT.dll [2013-08-22 187888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2006-09-11 218032] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] C:\Windows\system32\NvCpl.dll [2007-09-19 8497696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter] C:\Windows\system32\NvMcTray.dll [2007-09-19 81920] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvSvc] C:\Windows\system32\nvsvc.dll [2007-09-19 86016] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService] c:\Program Files\Powercinema\PCMService.exe [2007-02-14 159744] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe [2007-07-19 1120568] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2011-06-25 39408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-02-09 845360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe [2007-02-20 28672] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=255 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "VIDC.I420"=lvcodec2.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "msacm.l3codecp"= "msacm.siren"=sirenacm.dll "MSVideo"=vfwwdm32.dll "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-09-20 16:59:44 ----D---- C:\rsit 2013-09-20 16:59:44 ----D---- C:\Program Files\trend micro 2013-09-20 16:46:46 ----D---- C:\Program Files\Speccy 2013-09-19 12:45:54 ----D---- C:\Program Files\MyPC Backup 2013-09-13 12:00:58 ----D---- C:\ProgramData\BitGuard 2013-09-13 12:00:38 ----D---- C:\Program Files\WebConnect 2013-09-12 07:17:45 ----A---- C:\Windows\system32\mshtmled.dll 2013-09-12 07:17:44 ----A---- C:\Windows\system32\vbscript.dll 2013-09-12 07:17:42 ----A---- C:\Windows\system32\jsproxy.dll 2013-09-12 07:17:42 ----A---- C:\Windows\system32\ieui.dll 2013-09-12 07:17:41 ----A---- C:\Windows\system32\msfeeds.dll 2013-09-12 07:17:41 ----A---- C:\Windows\system32\ieUnatt.exe 2013-09-12 07:17:40 ----A---- C:\Windows\system32\wininet.dll 2013-09-12 07:17:39 ----A---- C:\Windows\system32\jscript.dll 2013-09-12 07:17:38 ----A---- C:\Windows\system32\url.dll 2013-09-12 07:17:38 ----A---- C:\Windows\system32\jscript9.dll 2013-09-12 07:17:37 ----A---- C:\Windows\system32\iertutil.dll 2013-09-12 07:17:34 ----A---- C:\Windows\system32\urlmon.dll 2013-09-12 07:17:31 ----A---- C:\Windows\system32\mshtml.dll 2013-09-12 07:17:29 ----A---- C:\Windows\system32\ieframe.dll 2013-09-11 07:34:05 ----A---- C:\Windows\system32\themeui.dll 2013-09-11 07:34:03 ----A---- C:\Windows\system32\win32k.sys 2013-09-10 01:34:48 ----A---- C:\Windows\system32\drivers\avgidsshimx.sys 2013-09-05 01:43:42 ----A---- C:\Windows\system32\drivers\avgrkx86.sys 2013-09-01 21:46:56 ----D---- C:\Program Files\Delta 2013-09-01 21:44:03 ----D---- C:\Program Files\Uniblue 2013-09-01 21:43:41 ----D---- C:\Users\jaimie\AppData\Roaming\Delta 2013-09-01 21:43:37 ----D---- C:\ProgramData\BrowserDefender 2013-09-01 21:43:26 ----D---- C:\Users\jaimie\AppData\Roaming\BabSolution 2013-08-28 07:51:45 ----A---- C:\Windows\system32\WMVDECOD.DLL ======List of files/folders modified in the last 1 month====== 2013-09-20 16:59:44 ----RD---- C:\Program Files 2013-09-20 16:59:17 ----D---- C:\Windows\TEMP 2013-09-20 15:17:06 ----D---- C:\Program Files\File Type Assistant 2013-09-20 15:14:52 ----SHD---- C:\System Volume Information 2013-09-20 12:01:56 ----AD---- C:\Windows\System32 2013-09-20 12:01:52 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2013-09-20 08:48:08 ----D---- C:\Users\jaimie\AppData\Roaming\SoftGrid Client 2013-09-20 08:16:05 ----D---- C:\ProgramData\MFAData 2013-09-19 13:10:09 ----D---- C:\Windows 2013-09-19 13:06:57 ----D---- C:\Windows\system32\catroot2 2013-09-19 13:05:16 ----D---- C:\Windows\system32\drivers 2013-09-19 13:02:34 ----HD---- C:\ProgramData 2013-09-19 13:01:42 ----D---- C:\Windows\system32\Tasks 2013-09-19 12:56:10 ----D---- C:\Windows\system32\config 2013-09-19 12:51:24 ----D---- C:\Windows\Tasks 2013-09-19 12:51:17 ----D---- C:\Users\jaimie\AppData\Roaming\Systweak 2013-09-19 12:45:47 ----SHD---- C:\Windows\Installer 2013-09-19 12:45:45 ----D---- C:\Windows\winsxs 2013-09-18 06:26:42 ----D---- C:\Windows\prefetch 2013-09-14 12:14:40 ----D---- C:\Windows\inf 2013-09-14 12:14:40 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-09-14 07:20:33 ----D---- C:\ProgramData\Microsoft Help 2013-09-13 12:03:15 ----D---- C:\Windows\Minidump 2013-09-13 12:02:05 ----D---- C:\Program Files\CCleaner 2013-09-12 08:34:51 ----D---- C:\Windows\system32\migration 2013-09-12 08:34:45 ----D---- C:\Program Files\Internet Explorer 2013-09-12 07:38:30 ----D---- C:\Program Files\Microsoft Application Virtualization Client 2013-09-12 07:20:31 ----D---- C:\Windows\system32\catroot 2013-09-12 07:07:11 ----D---- C:\Windows\system32\MRT 2013-09-12 07:00:27 ----A---- C:\Windows\system32\mrt.exe 2013-09-09 06:37:09 ----D---- C:\ProgramData\AVG2013 2013-09-01 21:52:20 ----D---- C:\Users\jaimie\AppData\Roaming\Uniblue 2013-08-22 18:36:26 ----A---- C:\Windows\system32\roboot.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2013-07-20 60216] R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2013-07-20 246072] R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2013-07-01 96568] R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2013-09-05 39224] R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-06-18 211560] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2013-07-20 208184] R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2013-09-10 22328] R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2013-07-20 171320] R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2013-03-21 182072] R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2013-08-14 37664] R1 MpKsl1819e1b4;MpKsl1819e1b4; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{721AD41E-3F67-4A70-A4C2-B01B876C2B82}\MpKsl1819e1b4.sys [2013-09-20 40392] R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDART.sys [2007-11-05 182272] R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-11-18 1040544] R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-09-19 7626400] R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2007-02-16 12032] R3 RTL8187B;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8187B.sys [2010-03-31 350720] R3 RTSTOR;USB Mass Storage Device; C:\Windows\system32\drivers\RTSTOR.SYS [2007-06-15 47616] R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 583848] R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 197800] R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 24232] R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 20136] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-02-09 182456] R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560] S1 logodkac;logodkac; \??\C:\Windows\system32\drivers\logodkac.sys [] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272] S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016] S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-06-18 107392] S3 QCDonner;Logitech QuickCam Express(PID_0840); C:\Windows\system32\DRIVERS\LVCD.sys [2004-04-26 474304] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328] S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448] S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312] R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [2013-07-23 283136] R2 CLCapSvc;CyberLink Background Capture Service (CBCS); c:\Program Files\Powercinema\Kernel\TV\CLCapSvc.exe [2007-02-14 278608] R2 cvhsvc;Client Virtualization Handler; C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504] R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504] R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-06-20 22208] R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136] R2 sftlist;Application Virtualization Client; C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944] R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2012-12-05 92632] R2 Update WebConnect;Update WebConnect; C:\Program Files\WebConnect\updateWebConnect.exe [2013-08-30 206632] R2 vToolbarUpdater15.5.0;vToolbarUpdater15.5.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [2013-08-14 1643184] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464] R3 sftvsa;Application Virtualization Service Agent; C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 CLSched;CyberLink Task Scheduler (CTS); c:\Program Files\Powercinema\Kernel\TV\CLSched.exe [2007-02-14 110677] S2 gupdate;Google Updateservice (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-03-08 136176] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-20 257416] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-03-08 136176] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-12 194032] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728] S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2013-06-20 295376] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2011-04-05 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2011-04-05 4640000] S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-02-08 212480] S3 Sony SCSI Helper Service;Sony SCSI Helper Service; C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [2012-05-23 73728] S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-04-18 754856] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040] -----------------EOF----------------- ik hoop snel van je te horen alvast bedankt groetjessssss
  14. Christano
    Beste Pc Helpforum, De computer van mijn schoonmoeder vertoond uitvalverschijnselen. De pc is al aan de ouder kant en er vallen steeds meer functie uit ook ziet ze steeds minder dingen in der taakbalken staan. Af en toe verschijnt er een rood scherm en doet die niks meer, de virusscanner kan verder niks vinden ik hoop dat jullie me nog kunnen helpen??? ik hoop snel van u te horen. met vriendelijke groet, Christano
  15. Christano
    ohw super man heel erg bedankt voor de hulp echt opgelucht dat het probleem verholpen is super gedaan mocht ik in de toekomst weer problemen hebben kom ik zeker hier terug bedankttttttttttt
  16. Christano
    is dit een goed resultaat heren??? als ik internet explorer opstaart komt in ieder geval geen 22find.com meer tevoorschijn is die nu verwijderd???
  17. Christano
    okeoke ik heb shortcut cleaner gedownload en precies gedaan zoals je zei en dit kwam eruit Shortcut Cleaner 1.2.2 by Lawrence Abrams (Grinler) Bleeping Computer - Technical Support and Computer Help Copyright 2008-2013 BleepingComputer.com More Information about Shortcut Cleaner can be found at this link: Shortcut Cleaner Download Windows Version: Windows 7 Home Premium Service Pack 1 Program started at: 03/30/2013 10:33:31 AM. Scanning for registry hijacks: * HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs "Tabs" hijacked to 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! Backup Registry file created at: C:\Users\Hugo van Doorne\Desktop\sc-cleaner\sc-cleaner-03-30-2013-10-33-31.reg Searching for Hijacked Shortcuts: Searching C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\ * Shortcut Cleaned: C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk => C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! * Shortcut Cleaned: C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk => C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! * Shortcut Cleaned: C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk => C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! Searching C:\ProgramData\Microsoft\Windows\Start Menu\ Searching C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ * Shortcut Cleaned: C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk => C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! Searching C:\Users\Public\Desktop\ Searching C:\Users\Hugo van Doorne\Desktop * Shortcut Cleaned: Internet Explorer.lnk => C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! 5 bad shortcuts found. Program finished at: 03/30/2013 10:33:40 AM Execution time: 0 hours(s), 0 minute(s), and 9 seconds(s)
  18. Christano
    even een vraagje na het programma HiJackthis en zoek.exe is 22 find nog steeds actief op mijn computer kan dit kloppen??? - - - Updated - - - en kan je die link van het Shortcut Cleaner even goed sturen want bij de link die je gaf kan die de pagina niet vinden
  19. Christano
    Beste kape hieronder volgt het logje wat gemaakt is door zoek.exe heb alles gevolgt zoals hier boven eerst HiJackThis en daarna zoek.exe Zoek.exe Version 4.0.0.2 Updated 23-03-2013 Tool run by Hugo van Doorne on wo 27-03-2013 at 19:02:19,44. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected ==== Running Processes ====================== C:\PROGRA~2\AVG\AVG2013\avgrsa.exe C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\atieclxx.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe C:\Windows\SysWOW64\svchost.exe -k netsvcs C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe C:\Windows\system32\svchost.exe -k HPService C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\System32\WUDFHost.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\AVG\AVG PC Tuneup 2011\BoostSpeed.exe C:\Windows\System32\rundll32.exe C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe C:\Program Files (x86)\Linksys\Linksys Wireless Manager\LinksysWirelessManager64.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files (x86)\BitComet\BitComet.exe C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManager.exe C:\Program Files (x86)\BrowserCompanion\BCHelper.exe C:\Program Files (x86)\AVG Secure Search\vprot.exe C:\Program Files (x86)\AVG\AVG2013\avgui.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\svchost.exe -k SDRSVC C:\Program Files (x86)\Internet Explorer\IELowutil.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\system32\taskhost.exe C:\Users\Hugo van Doorne\Desktop\zoek.exe C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe ==== Creating Sample_27-03-2013_1906.zip ====================== Process iexplore.exe killed Copied file C:\Users\Hugo van Doorne\AppData\Roaming\CheckRun22find.exe to sample sample\CheckRun22find.exe renamed to 0048A144C614BABFE9DF0496264D3D46 C:\Users\Public\Desktop\sample_27-03-2013_1906.zip created successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Update for Microsoft Office 2007 (KB2508958) æTorrent 64 Bit HP CIO Components Installer Activation Assistant for the 2007 Microsoft Office suites Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader 9.3 - Nederlands Advertising Center AVG 2013 AVG PC Tuneup 2011 AVG Security Toolbar BearShare Bejeweled 2 Deluxe BitComet 1.25 Blasterball 2 Revolution Blasterball 3 Bob the Builder Can-Do-Zoo BrowserCompanion BufferChm Build-a-lot 2 Build-a-lot 3 Call of Duty: Black Ops II - Multiplayer Call of Duty: Black Ops II - Zombies Call of Duty: Black Ops II Call of Duty: Modern Warfare 3 - Dedicated Server Call of Duty: Modern Warfare 3 - Multiplayer Call of Duty: Modern Warfare 3 Catalyst Control Center InstallProxy CCleaner Chocolatier - Decadence by Design Chuzzle Deluxe Command & Conquer Generals Command & ConquerT Red AlertT 3 and Uprising Command & ConquerT: Generals and Zero Hour Compatibiliteitspakket voor het 2007 Microsoft Office system Copy D3DX10 Destinations DeviceDiscovery Diagnostisch hulpprogramma voor hardware DirectX for Managed Code Update (Summer 2004) DJ_AIO_06_F4500_SW_MIN Dora's Carnival Adventure Eighteen Wheels of Steel Haulin' Evaluatieversie van Microsoft Office Home and Student 2007 F4500 Farm Frenzy - Pizza Party FATE Undiscovered Realms Google Chrome Google Earth Google Toolbar for Internet Explorer Google Update Helper GPBaseService2 Hewlett-Packard ACLM.NET v1.2.1.1 HiJackThis HP Advisor HP Customer Experience Enhancements HP Customer Participation Program 13.0 HP Deskjet F4500 Printer Driver Software 13.0 Rel .6 HP Game Console HP Games HP Imaging Device Functions 13.0 HP Odometer HP Print Projects 1.0 HP Product Detection HP Remote Solution HP Setup HP Smart Web Printing 4.5 HP Solution Center 13.0 HP Support Assistant HP Support Information HP Update HPDiagnosticAlert HPPhotoGadget hpPrintProjects HPProductAssistant HPSSupply hpWLPGInstaller Intel AppUp(SM) center Internet Explorer Toolbar 4.6 by SweetPacks Java 2 Runtime Environment, SE v1.4.2_04 Java Auto Updater Java 6 Update 26 Jewel Quest Solitaire 2 John Deere Drive Green Junk Mail filter update LabelPrint LightScribe System Software Linksys Wireless Manager Liong - The Lost Amulets Logitech Vid Logitech Webcam Software Magic Desktop Mah Jong Medley MarketResearch MediaBar Mesh Runtime Messenger Companion Microsoft .NET Framework 4 Client Profile Microsoft Application Error Reporting Microsoft Games for Windows - LIVE Redistributable Microsoft Games for Windows Marketplace Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Live Add-in 1.3 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office Outlook Connector Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office PowerPoint Viewer 2007 (Dutch) Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Works More Games from HP Games Mortimer Beckett and the Time Paradox MSN Toolbar MSVCRT MSVCRT_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Mystery P.I. - The New York Fortune Mystery P.I. - The Vegas Heist Nero 9 Lite Nero ControlCenter Nero Installer Nero Online Upgrade Nero StartSmart neroxml Network64 NVIDIA Drivers Origin Peggle Penguins Polar Bowler Polar Golfer Power2Go PowerDirector PowerRecover Pure Networks Platform Realtek High Definition Audio Driver Roll Samsung Kies SAMSUNG USB Driver for Mobile Phones Scan Security Update for CAPICOM (KB931906) Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition Shop for HP Supplies SkypeT 6.2 Slingo Deluxe SmartWebPrinting SolutionCenter Spelling Dictionaries Support For Adobe Reader 9 Status Steam Super Collapse 3 Supermarket Management The Hidden Object Game Show TomTom HOME 2.8.2.2264 TomTom HOME Visual Studio Merge Modules Toolbox Totem Tribe TrayApp Uniblue RegistryBooster Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2768024) 32-Bit Edition Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) uTorrentBar_NL Toolbar Virtual Villagers - The Secret City Visual Studio 2008 x64 Redistributables Visual Studio 2010 x64 Redistributables WebReg Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Mail Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen Windows Live Mesh Windows Live Messenger Windows Live Messenger Companion Core Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources World of Goo Yontoo 1.10.02 Zuma Deluxe ==== Reset Hosts File ====================== # Copyright © 1993-2006 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host # localhost name resolution is handle within DNS itself. 127.0.0.1 localhost ::1 localhost ==== FireFox Fix ====================== ProfilePath: C:\Users\Hugo van Doorne\AppData\Roaming\Mozilla\Firefox\Profiles\extensions prefs.js not found user.js not found ---- Lines OneClickDownload removed from prefs.js ---- ---- Lines OneClickDownload modified from prefs.js ---- ---- FireFox user.js and prefs.js backups ---- ==== Deleting Files \ Folders ====================== "C:\user.js" deleted "C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\22find.lnk" deleted "C:\extensions.sqlite" deleted "C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx" deleted "C:\user.js" deleted "C:\Users\Hugo van Doorne\AppData\Roaming\CheckRun22find.exe" deleted "C:\Program Files (x86)\BrowserCompanion\BCHelper.exe" deleted "C:\Program Files (x86)\BrowserCompanion\sqlite3.dll" deleted "C:\Program Files (x86)\uTorrentBar_NL" deleted "C:\Program Files (x86)\Common Files\337" deleted "C:\Program Files (x86)\BrowserCompanion" deleted "C:\Program Files (x86)\BearShare Applications\MediaBar" deleted "C:\Program Files (x86)\1ClickDownload" deleted "C:\Program Files (x86)\Yontoo" deleted "C:\Program Files (x86)\Ask.com" deleted "C:\Program Files (x86)\SweetIM" deleted "C:\Program Files (x86)\Conduit" deleted "C:\Users\Hugo van Doorne\AppData\Roaming\Adobe\plugs" deleted "C:\Users\Hugo van Doorne\AppData\Roaming\Adobe\shed" deleted "C:\Users\Hugo van Doorne\AppData\Roaming\Desk 365" deleted "C:\Users\Hugo van Doorne\AppData\Roaming\Babylon" deleted "C:\ProgramData\InstallMate" deleted "C:\ProgramData\Tarma Installer" deleted "C:\ProgramData\Premium" deleted "C:\ProgramData\Babylon" deleted "C:\Users\Hugo van Doorne\AppData\Local\CRE" deleted "C:\Users\Hugo van Doorne\AppData\Local\PackageAware" deleted "C:\Users\Hugo van Doorne\AppData\Local\Babylon" deleted "C:\Users\Hugo van Doorne\AppData\Local\Conduit" deleted "C:\Users\Hugo van Doorne\AppData\LocalLow\uTorrentBar_NL" deleted "C:\Users\Hugo van Doorne\AppData\LocalLow\PriceGong" deleted "C:\Users\Hugo van Doorne\AppData\LocalLow\bbrs_002.tb" deleted "C:\Users\Hugo van Doorne\AppData\LocalLow\Conduit" deleted "C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}" deleted "C:\Users\Hugo van Doorne\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\OneClickDownload@OneClickDownload.com" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\HUGOVA~1\AppData\Local\Temp ==== ====== C:\Windows\SysWOW64 ===== 2013-03-23 11:40:17 1FBCCC1C540ACC4EB3F718B659ED63CA 693976 ----a-w- C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-03-21 13:02:36 DDEE99DC54EFA20BD5A442CD733C4462 37344 ----a-w- C:\Windows\SysWOW64\FsUsbExDisk.Sys 2013-03-21 13:02:36 DDEE99DC54EFA20BD5A442CD733C4462 37344 ----a-w- C:\Windows\SysWOW64\FsUsbExDisk.Sy_ 2013-03-21 13:02:36 C83C84DAE3B901BF404D36F304B00FA0 110592 ----a-w- C:\Windows\SysWOW64\FsUsbExDevice.Dll 2013-03-21 13:02:36 0796C1E47ADB9825269E64B9DAB4E741 233472 ----a-w- C:\Windows\SysWOW64\FsUsbExService.Exe 2013-03-13 19:05:08 60D6B33E77A297AA1B14BF0452C20471 2382848 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2013-03-13 19:05:07 E7E671A2A0159ED8D86CA98DF134BB70 73216 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2013-03-13 19:05:07 C9A2D460FD5E409C9320B4CE68A81549 420864 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2013-03-13 19:05:07 15CF0E37F2B406BDE06CBA4F507B25DE 176640 ----a-w- C:\Windows\SysWOW64\ieui.dll 2013-03-13 19:05:06 D0F2CB059B2A89AD5B24FD9EB8D784BE 231936 ----a-w- C:\Windows\SysWOW64\url.dll 2013-03-13 19:05:06 C43AFA13B552BCC4352106193F008229 142848 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2013-03-13 19:05:06 2A324C44A1B2352EF5F2E1C8984935C0 1427968 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2013-03-13 19:05:06 180D098704551DE37C6299AA888D6821 1103872 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2013-03-13 19:05:05 C798EB903A4FA90D2961E164518090C5 607744 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2013-03-13 19:05:05 03728C624D05C2F157BBD46F6B7F6EA0 1129472 ----a-w- C:\Windows\SysWOW64\wininet.dll 2013-03-13 19:05:04 69F42E40A0C4344939437D86A8893DA6 1800704 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2013-03-13 19:05:04 1895402C57C32BF8281E8F6C65522253 717824 ----a-w- C:\Windows\SysWOW64\jscript.dll 2013-03-13 19:05:03 73BDB1C0801D44BEA5F6749FD340CC0F 1796096 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2013-03-13 19:05:03 6428A1B56B4F426F35A029231FF0BB1E 65024 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2013-03-13 19:05:02 263963D93A3CA8F685EFA5966F1E6581 12321792 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2013-03-13 19:05:00 D3EAB9BCB2B92EFCA615781C215644C0 9738240 ----a-w- C:\Windows\SysWOW64\ieframe.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-03-13 19:05:08 315BD7958BD33C71442A7383BBAD2237 2382848 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2013-03-13 19:05:07 E532E71207987BE22BEEE1F1F7E5B371 96768 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2013-03-13 19:05:06 FF1AAEDD4A1A0FC3C5ED66B4EE0B254A 1346048 ----a-w- C:\Windows\Sysnative\urlmon.dll 2013-03-13 19:05:06 F5F7A06D538619CB3B8081DF766F1D39 237056 ----a-w- C:\Windows\Sysnative\url.dll 2013-03-13 19:05:06 ACFA7C9F9DBAE8143598F23C3DE8934A 248320 ----a-w- C:\Windows\Sysnative\ieui.dll 2013-03-13 19:05:06 6BE16F52FAFFCD4BC628C6AE95C0B887 173056 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2013-03-13 19:05:06 406533EADD808A7A9B5A022F298C6841 1494528 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2013-03-13 19:05:05 D845B455663AE3B4AEB153D9B2E6A4C3 729088 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2013-03-13 19:05:05 0A1BB8FF664EA24C2679B70F731A6F7A 2312704 ----a-w- C:\Windows\Sysnative\jscript9.dll 2013-03-13 19:05:04 FA274190682AA41A46B285208ED46A74 1392128 ----a-w- C:\Windows\Sysnative\wininet.dll 2013-03-13 19:05:04 B9996038ABB1664E49DE171AD14DE275 816640 ----a-w- C:\Windows\Sysnative\jscript.dll 2013-03-13 19:05:04 7784649104ED574EC129C3282F54E846 85504 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2013-03-13 19:05:04 0E92BD6EBE215FA80288AFA7996A622B 599040 ----a-w- C:\Windows\Sysnative\vbscript.dll 2013-03-13 19:05:03 A54A16DAE7497CDCB8C5A021C0F6FEB8 2147840 ----a-w- C:\Windows\Sysnative\iertutil.dll 2013-03-13 19:05:01 460723A080D6F22E56D45BC8C1F15B2A 17815040 ----a-w- C:\Windows\Sysnative\mshtml.dll 2013-03-13 19:05:00 E829C45F0D77852C43BE99C4B1BD215D 10925568 ----a-w- C:\Windows\Sysnative\ieframe.dll ====== C:\Windows\Sysnative\drivers ===== 2013-03-18 19:57:36 92B3172E8C14C1444682F510843A9988 19968 ----a-w- C:\Windows\Sysnative\drivers\usb8023.sys ====== C:\Windows\Tasks ====== 2013-03-23 11:40:19 640FEF3E907C50D97F86DF2ABF4A4FD2 940 ----a-w- C:\Windows\Tasks\Adobe Flash Player Updater.job ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\Program Files (x86) ===== 2013-03-24 07:30:55 -------- d-----w- C:\Program Files (x86)\Trend Micro 2013-03-21 13:28:11 -------- d-----w- C:\Program Files (x86)\MyFree Codec 2013-03-09 08:35:05 -------- d-----w- C:\Program Files (x86)\Common Files\Skype 2013-03-09 08:35:04 -------- d-----r- C:\Program Files (x86)\Skype 2013-02-27 16:54:35 -------- d-----w- C:\Program Files (x86)\Origin Games 2013-02-27 16:52:46 -------- d-----w- C:\Program Files (x86)\Origin ======= C: ===== ====== C:\Users\Hugo van Doorne\AppData\Roaming ====== 2013-02-27 16:54:37 -------- d-----w- C:\users\Hugo van Doorne\AppData\Roaming\Origin 2013-02-27 16:54:30 -------- d-----w- C:\users\Hugo van Doorne\AppData\Local\Origin ====== C:\Users\Hugo van Doorne ====== ====== C: exe-files == 2013-03-24 07:48:27 EFAB459FDD56AE93839FA817BA953A7F 51712 ----a-w- C:\Windows\Temp\._msige61\program files\Google\Google Earth\client\earthflashsol.exe 2013-03-24 07:48:27 DE34DC1427F7D3FA4D13D17B51B55673 1207296 ----a-w- C:\Windows\Temp\._msige61\GoogleEarth.exe 2013-03-24 07:48:27 45F88C09E922FD22CE45CCD19B53AE7B 301056 ----a-w- C:\Windows\Temp\._msige61\program files\Google\Google Earth\client\gpsbabel.exe 2013-03-24 07:48:27 2B27F157274CB548E16862560D6EBD97 208384 ----a-w- C:\Windows\Temp\._msige61\program files\Google\Google Earth\plugin\geplugin.exe 2013-03-24 07:48:27 2B27F157274CB548E16862560D6EBD97 208384 ----a-w- C:\Windows\Temp\._msige61\program files\Google\Google Earth\client\googleearth.exe 2013-03-24 07:48:25 D13879F9A51F6F8C6AC33A5B86694E9F 24449680 ----a-w- C:\Program Files (x86)\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-7.0.3.8542.exe 2013-03-23 13:46:29 924173893B3735741B373CA366C37823 398992 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_64.exe 2013-03-23 13:46:26 5CA39C1D83B285427FC20044A14F0F4A 1718808 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\SearchWithGoogleUpdate_0BB4946B2EEAC900.exe 2013-03-23 13:46:20 924173893B3735741B373CA366C37823 398992 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_64_F5CB933C28B61353.exe 2013-03-23 13:46:15 BAD663957F682F95B22C4E83AB49CB52 308368 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_32_38F27E698DCE3952.exe 2013-03-23 13:46:10 4A001CFD8565634EC6891B6BFAB04183 1053840 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_94DDE1EDD1CDF6A3.exe 2013-03-23 13:34:38 5C0AAB47B7EFBA4B6E339EF565D0E161 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1369064068-4275707944-1822993109-1000\$I9OHOZX.exe 2013-03-23 13:32:32 FF9CC7AE617188005EB3C91E52B10E4B 16285400 ----a-w- C:\Users\Hugo van Doorne\Desktop\flashplayer_11_ax_debug.exe 2013-03-23 13:32:10 E3C7C9B81C6C44914C5064F8231E96E5 8965848 ----a-w- C:\$Recycle.Bin\S-1-5-21-1369064068-4275707944-1822993109-1000\$R9OHOZX.exe 2013-03-23 11:40:37 5D61BE7DB55B026A5D61A3EED09D0EAD 39408 ----a-w- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 2013-03-23 11:40:35 5D4BC124FAAE6730AC002CDB67BF1A1C 194032 ----a-w- C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 2013-03-23 11:40:32 BAD663957F682F95B22C4E83AB49CB52 308368 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe 2013-03-23 11:40:31 4BEAF576CB43358C4DB9F45AC7C09CDB 194032 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdaterService_B33FC4DD36A473C6.exe 2013-03-23 11:40:26 496B1F34EC5AF59462A4AD49696E12BD 2242080 ----atw- C:\Program Files (x86)\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\0.0.0.0\googletoolbarinstaller_full_signed.exe 2013-03-23 11:40:17 1FBCCC1C540ACC4EB3F718B659ED63CA 693976 ----a-w- C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-03-23 08:32:14 773F287C664866AB432F55A30C29057C 20184 ----a-w- C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\LowDiskSpaceDetection.exe 2013-03-21 13:44:43 A31A0B6899EF70FE4B8EEAD335F6ED67 1402960 ----a-w- C:\Users\Hugo van Doorne\AppData\Local\Temp\Desk365\eInstall\eInstall.exe 2013-03-21 13:41:36 CDB2759FA696E4DF50D6D287E2E5FE6C 145931 ----a-w- C:\Users\Hugo van Doorne\Documents\Hugo Muziek\windows-media-player-10-windows-downloader.exe 2013-03-21 13:02:36 0796C1E47ADB9825269E64B9DAB4E741 233472 ----a-w- C:\Windows\SysWOW64\FsUsbExService.Exe 2013-03-21 13:02:01 EEC874AB4D5F0900DE167FCDC0E57941 24100248 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\USB Driver\SAMSUNG_USB_Driver_for_Mobile_Phones.exe 2013-03-21 13:01:19 CCB39D50366C19799D750BFBBABBEAA9 61440 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\TransModules\SelfMV2.exe 2013-03-21 13:01:18 944CE05BDDDB90429F76AF7CA77F5DB1 221184 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\TransModules\SelfMV.exe 2013-03-21 13:01:08 9AB40BC2FB1684E2D4DF62F1E1A9264F 20880 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\KiesPDLR.exe 2013-03-21 13:01:07 2584F44A9FAC3C371B89ADE81CA2A509 61328 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\AdminDelegator.exe 2013-03-21 13:01:05 AB003BBACB4FA3412500DE5C220DA4FF 106408 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentInstaller.exe 2013-03-21 13:01:02 E509DD17CA89C02FCF96DB018DEF17D5 101288 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentUpdate.exe 2013-03-21 13:00:50 EADFE8E33E83D1C0DD43FC0377F05010 3507088 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesTrayAgent.exe 2013-03-21 13:00:47 DDB779408BDD1DDCD4D42D080A90DC72 278928 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesDriverInstaller.exe 2013-03-21 13:00:45 1C115AF1FFCB3766C0177485EE3FB522 540528 ----a-w- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe 2013-03-21 13:00:32 B6366B9283B8B0CAAD5A9FCE4ABEB741 4661464 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\MediaModules\MyFreeCodecPack.exe 2013-03-21 13:00:05 924F15FB1793DF9957AFBBB1E1283B30 140800 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\ConnectionManager.exe 2013-03-21 13:00:01 E1FB54E25EB2678892F97BBFD70EB062 666112 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceManager.exe 2013-03-21 13:00:00 0C825059F88ECBB6651FBAB6D99AC576 67472 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\Kies_Tutorial.exe 2013-03-21 12:59:59 897096E8A81F736167C9D490DBC603E9 20480 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\FsExService64.exe 2013-03-21 12:59:59 29A2CA2D73415378F5132D64F94F7E47 341960 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\FsAdmin64.exe 2013-03-21 12:59:58 7752B3B02A3EE9634C5F2B293C624F18 110592 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\ErrorReport.exe 2013-03-21 12:59:57 6FF15D97B6459C1F7F36D89B8981A212 284160 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceDataService.exe 2013-03-21 12:59:56 F96C429788350DB4BA6771C3034DFD88 217088 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\FsUsbExService.exe 2013-03-21 12:59:56 8C406A7F2257C2C3197019F98A3E33A5 65904 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\RegisterCOM.exe 2013-03-21 12:59:53 96EFBFCAFF270622886423644926E300 214544 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\FsUsbExAdmin.exe 2013-03-21 12:58:39 578CF5E171050FC23215AD871D58A831 362384 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\temp\Kies.Update.exe === C: other files == 2013-03-27 18:06:03 3438540F2BA9D3CE3F1439A8AD9ED89A 44765 ----a-w- C:\Users\Public\Desktop\sample_27-03-2013_1906.zip 2013-03-22 12:41:25 53168ED6E36DE416074190860150A86F 19013001 ----a-w- C:\Users\Hugo van Doorne\Downloads\Outlook.zip 2013-03-21 13:09:07 0FD0057021B678C73D1080FE429A009F 81248 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudrmnetmp.sys 2013-03-21 13:09:06 F161567B90721F4C42BD5F95A4C9B2D0 203104 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudobex.sys 2013-03-21 13:09:06 D74ED4825E554148E8DD684E16D8D239 181344 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudserd.sys 2013-03-21 13:09:06 CE812629EC80DA650D798BF9CCF04B84 93024 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudrmnetmp.sys 2013-03-21 13:09:06 CD4056EA86D9D4C3FF29D0CB8E9C0A67 44896 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudnd5.sys 2013-03-21 13:09:06 C895BFDCF7B989E183ACC7AF211CBF64 58720 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudrmnet.sys 2013-03-21 13:09:06 C692C94FE55CAD0633440236022C27B3 203104 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudmdm.sys 2013-03-21 13:09:06 BFCB9ACFDE3562AF1B294E74F11875E5 67424 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudrmnet.sys 2013-03-21 13:09:06 B9430166FEB246F6070A62B3554932C9 102368 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudbus.sys 2013-03-21 13:09:06 A53256906894061A892AA3978A371BC3 181344 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssuddmgr.sys 2013-03-21 13:09:06 A28E6B8F15C5D107AF575D0FD6DC8777 32736 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudeadb.sys 2013-03-21 13:09:06 A1F03A7FB08DAA05642C657862298D85 50528 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudnd5.sys 2013-03-21 13:09:06 84F8C797F357D1A53794A12B7CD36AC4 181344 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudobex.sys 2013-03-21 13:09:06 7A91590CE014D732D55BB127E5FDEF1B 203104 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssuddmgr.sys 2013-03-21 13:09:06 6CC6C4B9D7B906A151AA094CA087B9F0 83168 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudbus.sys 2013-03-21 13:09:06 58C89A89D4AF0288DCF432EC0B358438 203104 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudserd.sys 2013-03-21 13:09:06 359FEE084F1173FFFFD7F9CCBD43D47F 181344 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudmdm.sys 2013-03-21 13:09:06 2D16515ECAD447C8BEA4C795F3EF542E 38752 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudeadb.sys 2013-03-21 13:08:48 CCAAC4BBD81EAEF50535913E149959B2 16384 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\24_flashusbdriver\WIN32\FlashUsb.sys 2013-03-21 13:08:48 322761FBC5D9439EE46FA997B4F88064 19968 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\24_flashusbdriver\X64\flashusb.sys 2013-03-21 13:02:36 DDEE99DC54EFA20BD5A442CD733C4462 37344 ----a-w- C:\Windows\SysWOW64\FsUsbExDisk.Sys 2013-03-21 13:01:05 C4F1B4E5E953A2AE82C0A23C75C1E83B 98550 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\res.zip 2013-03-21 13:00:05 B07663A810E861EEBFD0EAC7E82CA62D 36640 ----a-w- C:\Users\Hugo van Doorne\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\FsUsbExDisk.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1369064068-4275707944-1822993109-1000\Software\Microsoft\Windows\CurrentVersion\Run] "HPADVISOR"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW" "Logitech Vid"="C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe -bootmode" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "BitComet"="C:\Program Files (x86)\BitComet\BitComet.exe /tray" "KiesTrayAgent"="C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" "KiesPDLR"="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" "TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" "LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "KiesPreload"="C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload" @="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" "HP Software Update"="c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe" "UpdatePRCShortCut"="C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\Hewlett-Packard\Recovery UpdateWithCreateOnce Software\CyberLink\PowerRecover" "nmctxth"="C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe" "NeroFilterCheck"="C:\Windows\system32\NeroCheck.exe" "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "vProt"="C:\Program Files (x86)\AVG Secure Search\vprot.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2013\avgui.exe /TRAYONLY" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "HPADVISOR"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW" "Logitech Vid"="C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe -bootmode" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "BitComet"="C:\Program Files (x86)\BitComet\BitComet.exe /tray" "KiesTrayAgent"="C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" "KiesPDLR"="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" "TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" "LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "KiesPreload"="C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload" @="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Linksys Wireless Manager"="C:\Program Files (x86)\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe /cm /min /lcid 1033" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe Reader Speed Launcher" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BitComet] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BitComet" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\BitComet\\BitComet.exe\" /tray" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LogitechQuickCamRibbon] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="LogitechQuickCamRibbon" "hkey"="HKLM" "command"="\"C:\\Program Files\\Logitech\\Logitech WebCam Software\\LWS.exe\" /hide" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2010-03-26 16:21:47 2105 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [23-03-2013 14:26] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [25-03-2011 14:45] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [25-03-2011 14:45] C:\Windows\tasks\PCDRScheduledMaintenance.job --a------ C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe [02-07-2009 12:04] ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\Hugo van Doorne\AppData\Local\CRE\cjofdnhdkbflacojpfpkchgafjahijbb.crx[] clbfjfbnelcflpgpklppgplejolacbej - C:\Program Files (x86)\BrowserCompanion\blabbers-ch.crx[] dhkplhfnhceodhffomolpfigojocbpcb - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonChrome.crx[] icmlaeflemplmjndnaapfdbbnpncnbda - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[] ijblflkdjdopkpdgllkmlbgcffjbnfda - C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx[] jcdgjdiieiljkfkdcloehkohchhpekkn - C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx[] ndibdjnfmopecpmkdieinmbadjfpblof - C:\ProgramData\AVG Secure Search\ChromeExt\14.2.0.1\avg.crx[19-02-2013 16:26] niapdbllcanepiiimjjndipklodoedlc - C:\Users\HUGOVA~1\AppData\Local\Temp\YontooLayers.crx[] ogccgbmabaphcakpiclgcnmcnimhokcj - C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetNT.crx[] pmlghpafmmnmmkjdhacccolfgnkiboco - C:\Program Files (x86)\1ClickDownload\oneclickdownloader10.crx[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\Hugo van Doorne\AppData\Local\CRE\cjofdnhdkbflacojpfpkchgafjahijbb.crx[] Browser Companion Helper - Hugo van Doorne - Default\Extensions\clbfjfbnelcflpgpklppgplejolacbej AVG Safe Search - Hugo van Doorne - Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla ==== Chrome Fix ====================== C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Extensions\clbfjfbnelcflpgpklppgplejolacbej deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" "Default_Page_URL"="Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL" "First Home Page"="Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL" "First Home Page"="Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL" "Start Page"="Google" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Reset Google Chrome ====================== C:\users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1369064068-4275707944-1822993109-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully HKEY_USERS\S-1-5-21-1369064068-4275707944-1822993109-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully HKEY_USERS\S-1-5-21-1369064068-4275707944-1822993109-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} deleted successfully HKEY_USERS\S-1-5-21-1369064068-4275707944-1822993109-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E54729E8-BB3D-4270-9D49-7389EA579090} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-1369064068-4275707944-1822993109-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{E54729E8-BB3D-4270-9D49-7389EA579090} deleted successfully ==== shortcuts on Users Desktops ====================== C:\Users\Hugo van Doorne\Desktop\HiJackThis.lnk - C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\AVG 2013.lnk - C:\Program Files (x86)\AVG\AVG2013\avgui.exe C:\Users\Public\Desktop\Command and Conquer Generals and Zero Hour.lnk - C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe C:\Users\Public\Desktop\Command and Conquer Red Alert 3 and Uprising.lnk - C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert 3\RA3Launcher.exe C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\Public\Desktop\Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe C:\Users\Public\Desktop\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\Public\Desktop\Origin.lnk - C:\Program Files (x86)\Origin\Origin.exe C:\Users\Public\Desktop\Samsung Kies (Lite).lnk - C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe /lite C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis\HiJackThis.lnk - C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2013.lnk - C:\Program Files (x86)\AVG\AVG2013\avgui.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer Generals and Zero Hour\Command and Conquer Generals and Zero Hour End User License Agreement.lnk - C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Support\eula\en_US_eula.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer Generals and Zero Hour\Command and Conquer Generals and Zero Hour.lnk - C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer Generals and Zero Hour\Read Me.lnk - C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Support\readme\readme.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer Generals and Zero Hour\Technical Support.lnk - C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Support\EA Help\Technical Support.en_US.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer Red Alert 3 and Uprising\Command and Conquer Red Alert 3 and Uprising End User License Agreement.lnk - C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert 3\Support\eula\en_US_eula.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer Red Alert 3 and Uprising\Command and Conquer Red Alert 3 and Uprising.lnk - C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert 3\RA3Launcher.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer Red Alert 3 and Uprising\Read Me.lnk - C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert 3\Support\readme\readme.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer Red Alert 3 and Uprising\Technical Support.lnk - C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert 3\Support\EA Help\Technical Support.en_US.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Command & Conquer™ Generals and Zero Hour.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Command & Conquer™ Red Alert™ 3 and Uprising.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth starten in DirectX-modus.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe -setDX C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth starten in OpenGL-modus.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe -setOGL C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth verwijderen.lnk - C:\Windows\SysWOW64\msiexec.exe /x {468D22C0-8080-11E2-B86E-B8AC6F98CCE3} C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin verwijderen.lnk - C:\Program Files (x86)\Origin\OriginUninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin.lnk - C:\Program Files (x86)\Origin\Origin.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk - C:\Program Files (x86)\Skype\Phone\Skype.exe ==== shortcuts in Quick Launch ====================== C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! ==== shortcuts After Repair ====================== C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Public\Desktop\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Hugo van Doorne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyEnable"=dword:00000000 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\clbfjfbnelcflpgpklppgplejolacbej deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ijblflkdjdopkpdgllkmlbgcffjbnfda deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hugo van Doorne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hugo van Doorne\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hugo van Doorne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4QMQ70X8 will be deleted at reboot C:\Users\Hugo van Doorne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BMHM6977 will be deleted at reboot C:\Users\Hugo van Doorne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Deleting Files / Folders ====================== "C:\Users\Hugo van Doorne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Users\Hugo van Doorne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4QMQ70X8" not deleted "C:\Users\Hugo van Doorne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BMHM6977" not deleted
  20. Christano
    ik heb nog even een vraagje als ik het goed begrijp moet ik twee derde van het logje verwijderen??? kan dit dan verder geen kwaad dat ik zoveel verwijder???
  21. Christano
    ik heb sinds een tijdje last van de virus 22find.com als ik internet opstart komt deze pagina automatisch in beeld inplaats van me werkelijke startpagina heb al het 1 en ander geprobeerd maar het lukt maar niet. Ik las op dit forum over het programma HiJackThis heb dit gedownload en geinstalleerd hieronder volgt het logje wat dit programma heeft gemaakt. maar wat moet ik nu doen kan ik het verwijderen...... Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 8:34:54, on 24-3-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16470) Boot mode: Normal Running processes: C:\Program Files (x86)\AVG\AVG PC Tuneup 2011\BoostSpeed.exe C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe C:\Program Files (x86)\BitComet\BitComet.exe C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManager.exe C:\Program Files (x86)\BrowserCompanion\BCHelper.exe C:\Program Files (x86)\AVG Secure Search\vprot.exe C:\Program Files (x86)\AVG\AVG2013\avgui.exe C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: script helper for ie - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Program Files (x86)\BrowserCompanion\jsloader.dll O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\PROGRA~2\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.4.12.6.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (file missing) O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\coIEPlg.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\IPSBHO.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: uTorrentBar_NL - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files (x86)\uTorrentBar_NL\prxtbuTor.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll O2 - BHO: Update Timer - {963B125B-8B21-49A2-A3A8-E37092276531} - C:\Program Files (x86)\BrowserCompanion\updatebhoWin32.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\coIEPlg.dll O3 - Toolbar: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\PROGRA~2\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll O3 - Toolbar: MSN Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files (x86)\MSN Toolbar\01.01.2607.0\nl\msntb.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll O3 - Toolbar: uTorrentBar_NL Toolbar - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files (x86)\uTorrentBar_NL\prxtbuTor.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Run: [updatePRCShortCut] "C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Hewlett-Packard\Recovery" UpdateWithCreateOnce "Software\CyberLink\PowerRecover" O4 - HKLM\..\Run: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManager.lnk" O4 - HKLM\..\Run: [browser companion helper] C:\Program Files (x86)\BrowserCompanion\BCHelper.exe /T=3 /CHI=clbfjfbnelcflpgpklppgplejolacbej O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [CheckRun22find_uninstaller] "C:\Users\Hugo van Doorne\AppData\Roaming\CheckRun22find.exe" -c=http://www.22find.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=395049983_1052498_2C82AD7D&ts=1363873457 O4 - HKCU\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe" -bootmode O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [bitComet] "C:\Program Files (x86)\BitComet\BitComet.exe" /tray O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: &D&ownload &met BitComet - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: &D&ownload alles met BitComet - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.4.12.6.dll/206 (file missing) O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O18 - Protocol: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll O18 - Protocol: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (file missing) O18 - Protocol: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\coIEPlg.dll O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\14.2.0\ViProtocol.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\ccSvcHst.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: vToolbarUpdater14.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 19898 bytes
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.