GianniVI

5 maart 2015

Heel erg bedankt dit is het resultaat van de laatste scan

zoek-results2.txt

5 maart 2015

Dit is het resultaat

zoek-results.txt

5 maart 2015

ok dat is gelukt, het programma is nu aan het draaien

bedankt

5 maart 2015

ik heb het programma gedownload, en ook alle virusscanners uitgezet, maar het programma wil niet openen?

Is er iets dat ik misgedaan heb? ik het het als administrator uitgevoerd.

3 maart 2015

Bedankt voor het antwoord, hier is het gevraagde logbestand

log.txt

3 maart 2015

Beste,

Sinds een tijdje doet de pc van men vader vreemd. De Pc draait op windows 7 en de problemen vormen zich vooral in het feit dat hij erg traag is, en constant pop up schermen opent. Daarnaast geeft hij aan bij het opstarten dat er 1 of meerdere schijven moeten gecontroleerd worden op conformiteit hij controleerd dan een hele hoop dingen, dit duurt een tiental minuten waarna hij aangeeft wat er allemaal verwijderd of aangepast is.

Heeft er iemand enig idee wat het probleem zou kunnen zijn? Of mij eventueel doorverwijzen naar waar mijn vraag beter zou staan?

Met vriendelijke groet,

Gianni

8 april 2014

kheb net alles geprobeerd, het lijkt allemaal terug prima te lukken

zelfs een vervelend Ask- toolbar probleem is ook opgelost heel erg bedankt

7 april 2014

ziezo[ATTACH]31124[/ATTACH]

AdwCleaner[S0].txt

7 april 2014

voila:)[ATTACH]31120[/ATTACH]

zoek-results2.txt

6 april 2014

de gevraagde bijlage [ATTACH]31103[/ATTACH]

zoek-results.txt

5 april 2014

heey bedankt voor het antwoord

hier is het gevraagde bestandje [ATTACH]31091[/ATTACH]

log.txt

29 maart 2014

Na het volgen van de stappen speelt hij opnieuw youtube af.

Maar de andere problemen zijn nog steeds niet opgelost, streaming speelt niet af en ook gewone downloads kunnen niet voltooid worden.

Het probleem stelt zich zowel bij firefox als bij google chrome en IE, ik probeerde safari ook te downloaden maar dit lukte niet.

mvg,

Gianni

24 maart 2014

hey

sinds een paar dagen speelt men pc geen online filmpjes meer af.

probeerde al adobe te updaten maar dit lukte niet door een registerfout ofzo.

iemand enig idee wat er mis kan zijn?

Mvg

24 maart 2014

hey

mijn pc wil sinds een paar dagen geen filmpjes meer afspelen.

op youtube stoppen ze altijd na een aantal seconden en dan word het schermpje groen of stopt het gewoon.

ik heb al geprobeerd om adobe opnieuw te installeren maar dit lukt niet door een "script fout"

iemand enig idee hoe dit kan opgelost worden?

Mvg,

3 juli 2013

ok alles werkt terug:)

vriendelijk bedankt:)

3 juli 2013

ik kan nergens iets vinden zoals URL blokkering, enkel iets van URL scannen uitsluiten. waarin je dan een webadres moet ingeven dat dan niet gecontroleerd wordt.

is dit de bedoeling? want vroeger moest ik hier niets in veranderen maar werkte alles wel?

3 juli 2013

en hoe los ik dat op?

wat moet ik juist aanpassen? zodat het toch nog veilig is maar wel werkt?

3 juli 2013

beste,

is het mogelijk dat mijn versie van avast antivirus mijn internetconnectie blokkeert?

ik kan namelijk geen enkele pagina laden als mijn avast schilden zijn ingeschakeld.

van zodra ik deze manueel uitschakel kan de pc moeiteloos elke pagina laden.

met vriendelijke groet,

21 juni 2013

het blijkt terug te werken:)

heel hartelijk bedankt voor het oplossen van mijn probleem:)

21 juni 2013

dit is het resultaat

Zoek.exe Version 4.0.0.2 Updated 21-June-2013

Tool run by Dell on vr 21/06/2013 at 14:25:47,92.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

==== Running Processes ======================

C:\Windows\system32\csrss.exe

C:\Windows\system32\wininit.exe

C:\Windows\system32\csrss.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\system32\winlogon.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Program Files\IDT\WDM\STacSV64.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\atieclxx.exe

C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE

C:\Windows\system32\WLANExt.exe

C:\Windows\system32\conhost.exe

C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files\IDT\WDM\AESTSr64.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe

C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Intel\WiFi\bin\EvtEng.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe

C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe

C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k bthsvcs

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe

C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE

C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files\Dell\QuickSet\quickset.exe

C:\Program Files\IDT\WDM\sttray64.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe

C:\WINDOWS\System32\igfxtray.exe

C:\WINDOWS\System32\igfxpers.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe

C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\mcafee.com\agent\mcagent.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Users\Dell\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe

C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Windows\system32\taskhost.exe

C:\Windows\System32\WUDFHost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\taskeng.exe

F:\zoek(1).exe

C:\Windows\system32\conhost.exe

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1075957376-2883139255-1268569787-1000\Software\Microsoft\Internet Explorer\SearchScopes\{80F1A478-A55D-4358-BD13-C8D8C1C20C29} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Installed Programs ======================

ABBYY FineReader 6.0 Sprint

Adobe Flash Player 11 ActiveX

Adobe Flash Player 11 Plugin

Adobe Reader XI (11.0.03) - Nederlands

Advanced Audio FX Engine

Age of Empires III Trial

Apple Application Support

Apple Mobile Device Support

Apple Software Update

avast Free Antivirus

Bonjour

Camera RAW Plug-In for EPSON Creativity Suite

CCleaner

Cisco EAP-FAST Module

Cisco LEAP Module

Cisco PEAP Module

D3DX10

Dell DataSafe Local Backup

Dell Resource CD

Dell Webcam Central

Dropbox

DW WLAN Card Utility

EPSON Attach To Email

EPSON Easy Photo Print

EPSON File Manager

EPSON Scan

EPSON Scan Assistant

EPSON Stylus SX200_SX400_TX200_TX400 Handboek

EPSON Stylus SX400 Series Printer Uninstall

Facebook Video Calling 1.2.0.287

HiJackThis

Intel PROSet Wireless

Intel® Control Center

Intel® Graphics Media Accelerator Driver

Intel® Management Engine Components

Intel® PROSet/Wireless WiFi-software

Intel® Rapid Storage Technology

Intel® Turbo Boost Technology Monitor

iTunes

Java 7 Update 9

Java Auto Updater

Java 6 Update 18 (64-bit)

Java 6 Update 20 (64-bit)

Junk Mail filter update

Live Cam Avatar Creator

McAfee SecurityCenter

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Client Profile NLD Language Pack

Microsoft .NET Framework 4 Extended

Microsoft .NET Framework 4 Extended NLD Language Pack

Microsoft Application Error Reporting

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Access MUI (Dutch) 2007

Microsoft Office Excel MUI (Dutch) 2007

Microsoft Office File Validation Add-In

Microsoft Office InfoPath MUI (Dutch) 2007

Microsoft Office Office 64-bit Components 2007

Microsoft Office Outlook MUI (Dutch) 2007

Microsoft Office PowerPoint MUI (Dutch) 2007

Microsoft Office Professional Plus 2007

Microsoft Office Proof (Dutch) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (German) 2007

Microsoft Office Proofing (Dutch) 2007

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher MUI (Dutch) 2007

Microsoft Office Shared 64-bit MUI (Dutch) 2007

Microsoft Office Shared MUI (Dutch) 2007

Microsoft Office Word MUI (Dutch) 2007

Microsoft Search Enhancement Pack

Microsoft Silverlight

Microsoft SkyDrive

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2005 Redistributable (x64)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft_VC100_CRT_SP1_x64

Microsoft_VC100_CRT_SP1_x86

Movie Maker

Mozilla Firefox 21.0 (x86 nl)

Mozilla Maintenance Service

MSVC80_x64_v2

MSVC80_x86_v2

MSVC90_x64

MSVC90_x86

MSVCRT

MSVCRT_amd64

MSVCRT110

MSVCRT110_amd64

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Nokia Connectivity Cable Driver

Nokia Suite

PC Connectivity Solution

Photo Common

Photo Gallery

Quickset64

RealNetworks - Microsoft Visual C++ 2008 Runtime

RealPlayer

RealUpgrade 1.1

Roxio Burn

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft .NET Framework 4 Extended (KB2656351)

Security Update for Microsoft .NET Framework 4 Extended (KB2736428)

Security Update for Microsoft .NET Framework 4 Extended (KB2742595)

Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition

Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition

Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition

SkypeT 6.3

Stronghold 2

Synaptics Pointing Device Driver

Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD

Taalpakket voor Microsoft .NET Framework 4 Extended - NLD

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft .NET Framework 4 Client Profile (KB2836939)

Update for Microsoft .NET Framework 4 Extended (KB2468871)

Update for Microsoft .NET Framework 4 Extended (KB2533523)

Update for Microsoft .NET Framework 4 Extended (KB2600217)

Update for Microsoft .NET Framework 4 Extended (KB2836939)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition

Update voor Microsoft Office Excel 2007 Help (KB963678)

Update voor Microsoft Office Powerpoint 2007 Help (KB963669)

Update voor Microsoft Office Word 2007 Help (KB963665)

WIDCOMM Bluetooth Software

Windows-stuurprogrammapakket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0)

Windows Driver Package - Broadcom Corporation (BTHUSB) Bluetooth (03/24/2010 6.3.0.2501)

Windows Live Communications Platform

Windows Live Essentials

Windows Live Family Safety

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Mail

Windows Live Messenger

Windows Live MIME IFilter

Windows Live Photo Common

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live Sync

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

Windows Media Player Firefox Plugin

==== FireFox Fix ======================

Deleted from C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\h5z28zkj.default\prefs.js:

user_pref("browser.startup.homepage", "http://google.be/");

Added to C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\h5z28zkj.default\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.com");

user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "http://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);

Deleted from C:\Users\Gianni\AppData\Roaming\Mozilla\Firefox\Profiles\hdul4pxh.default\prefs.js:

Added to C:\Users\Gianni\AppData\Roaming\Mozilla\Firefox\Profiles\hdul4pxh.default\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.com");

user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "http://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Dell\AppData\Local\Temp ====

2013-06-20 17:42:15 BCB0728F4B117855765CE8FE883B5E9B 1536 ----a-w- C:\Users\Dell\AppData\Local\Temp\NOSEventMessages.dll

====== C:\Windows\SysWOW64 =====

2013-06-13 01:09:59 756D0A65C1FB5528DBD04A44F773E608 2382848 ----a-w- C:\Windows\SysWOW64\mshtml.tlb

2013-06-13 01:09:59 56DF028F2EE4A2C2972E06907815C822 73216 ----a-w- C:\Windows\SysWOW64\mshtmled.dll

2013-06-13 01:09:58 43697D7CDAEAE3EBBADE2C05107418FF 420864 ----a-w- C:\Windows\SysWOW64\vbscript.dll

2013-06-13 01:09:57 A1400CCB4D99E0B9E76EB45782D5C7FC 176640 ----a-w- C:\Windows\SysWOW64\ieui.dll

2013-06-13 01:09:56 977176C4A8F4039F17F9BA939AA857A0 142848 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe

2013-06-13 01:09:56 84C8AFD609A3DE18F40AA64CDEB40194 231936 ----a-w- C:\Windows\SysWOW64\url.dll

2013-06-13 01:09:55 71D8D1FD4989932674CD1F5743191286 1104384 ----a-w- C:\Windows\SysWOW64\urlmon.dll

2013-06-13 01:09:55 6A25377A76479A0C0BF3DB6FC42FE09A 1129472 ----a-w- C:\Windows\SysWOW64\wininet.dll

2013-06-13 01:09:54 DBA747919344CD1353F8107134A20D62 1427968 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl

2013-06-13 01:09:53 C2CDBB424CF2461199322D6825F7B426 607744 ----a-w- C:\Windows\SysWOW64\msfeeds.dll

2013-06-13 01:09:51 B49CEF589D47D9D3F602E118B1F5F3B5 717824 ----a-w- C:\Windows\SysWOW64\jscript.dll

2013-06-13 01:09:51 57E68AE0BCEB0F70C8AA1C4A6D5C2050 1800704 ----a-w- C:\Windows\SysWOW64\jscript9.dll

2013-06-13 01:09:49 6057AA7FDF03309A18FAE4E9FCFE7D8F 1796096 ----a-w- C:\Windows\SysWOW64\iertutil.dll

2013-06-13 01:09:49 45194B4B2280B7745AC6C483C32385A8 65024 ----a-w- C:\Windows\SysWOW64\jsproxy.dll

2013-06-13 01:09:48 A6F5B25905CD01AE714990E02C7205A5 12329984 ----a-w- C:\Windows\SysWOW64\mshtml.dll

2013-06-13 01:09:44 B81388E9FE895065FD5CEAF3C11FDC3F 9738752 ----a-w- C:\Windows\SysWOW64\ieframe.dll

2013-06-12 06:40:27 FC415B303B1ECF80B5F130A1F7203D02 492544 ----a-w- C:\Windows\SysWOW64\win32spl.dll

2013-06-12 06:40:18 45FBAFFA68CBC29AC2563985CEE72B9C 24576 ----a-w- C:\Windows\SysWOW64\cryptdlg.dll

2013-06-12 06:39:40 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\SysWOW64\certutil.exe

2013-06-12 06:39:39 92245C959E5BC378809D2CC5E9F6E9C7 1160192 ----a-w- C:\Windows\SysWOW64\crypt32.dll

2013-06-12 06:39:39 8A8B277067C22F4BF6AA9A31692FC4D3 103936 ----a-w- C:\Windows\SysWOW64\cryptnet.dll

2013-06-12 06:39:38 CC917AC4D3F8756FF13174980B474791 43008 ----a-w- C:\Windows\SysWOW64\certenc.dll

2013-06-12 06:39:38 3897DFF247D9ED0006190349DE264E14 140288 ----a-w- C:\Windows\SysWOW64\cryptsvc.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2013-06-13 01:10:00 5239CFF7EA2207665E387AA0BAAA50C4 2382848 ----a-w- C:\Windows\Sysnative\mshtml.tlb

2013-06-13 01:09:59 47DA92AB70D910D018B11FA86A7808E4 96768 ----a-w- C:\Windows\Sysnative\mshtmled.dll

2013-06-13 01:09:57 043A615B2E8C15AEA6BC5709ED140D80 248320 ----a-w- C:\Windows\Sysnative\ieui.dll

2013-06-13 01:09:56 B7AB4EDBAC1DD6680DE7E3E2A82B31F9 237056 ----a-w- C:\Windows\Sysnative\url.dll

2013-06-13 01:09:56 43BBAF4696BF995143EA57DC304CC05B 173056 ----a-w- C:\Windows\Sysnative\ieUnatt.exe

2013-06-13 01:09:55 4FBE96D97A1E070A06F76F67255C756D 1392128 ----a-w- C:\Windows\Sysnative\wininet.dll

2013-06-13 01:09:54 9F7E78EE2A213023AC5CF20FFFF66575 1494528 ----a-w- C:\Windows\Sysnative\inetcpl.cpl

2013-06-13 01:09:54 6542163C675E19A1F1A638734662F0AA 1346560 ----a-w- C:\Windows\Sysnative\urlmon.dll

2013-06-13 01:09:53 F7737C8F19ED1525B171ED4BA3F5EEC0 2312704 ----a-w- C:\Windows\Sysnative\jscript9.dll

2013-06-13 01:09:53 AB32F17AAC815660530F50E688234DAA 729088 ----a-w- C:\Windows\Sysnative\msfeeds.dll

2013-06-13 01:09:52 92C534EAD395871614F5A0A556139033 85504 ----a-w- C:\Windows\Sysnative\jsproxy.dll

2013-06-13 01:09:51 3360345F0084EE8405E6C60B4D9CD7F7 599040 ----a-w- C:\Windows\Sysnative\vbscript.dll

2013-06-13 01:09:51 0C4C70A05734A684B0183C1B68DAE881 816640 ----a-w- C:\Windows\Sysnative\jscript.dll

2013-06-13 01:09:50 DE3DC975F1A9F82BAB9812A272018810 2147840 ----a-w- C:\Windows\Sysnative\iertutil.dll

2013-06-13 01:09:45 A820869140978CCAF33CF7770EEE19F5 17824768 ----a-w- C:\Windows\Sysnative\mshtml.dll

2013-06-13 01:09:45 64A3B1E55FBB7E36AE856FD1A8A4E00C 10926080 ----a-w- C:\Windows\Sysnative\ieframe.dll

2013-06-12 06:40:27 67CF11E00D026A5C0C88EA5F84D501E5 751104 ----a-w- C:\Windows\Sysnative\win32spl.dll

2013-06-12 06:40:18 C06FAAF13E37CE482F612AFF2D2331F3 30720 ----a-w- C:\Windows\Sysnative\cryptdlg.dll

2013-06-12 06:39:40 4586B77B18FA9A8518AF76CA8FD247D9 1192448 ----a-w- C:\Windows\Sysnative\certutil.exe

2013-06-12 06:39:39 D8129C49798CBBFB2E4351D4B7B8EF9C 184320 ----a-w- C:\Windows\Sysnative\cryptsvc.dll

2013-06-12 06:39:39 A96D5ECA5742603E0E345C4F6B801F5E 1464320 ----a-w- C:\Windows\Sysnative\crypt32.dll

2013-06-12 06:39:39 2C4C22EA1735F21F355EB1A39832F7DF 139776 ----a-w- C:\Windows\Sysnative\cryptnet.dll

2013-06-12 06:39:38 189B0BAE1B0EDD51CEF1CD3F4CDEE02E 52224 ----a-w- C:\Windows\Sysnative\certenc.dll

====== C:\Windows\Sysnative\drivers =====

2013-06-12 06:40:29 9849EA3843A2ADBDD1497E97A85D8CAE 1910632 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys

====== C:\Windows\Tasks ======

2013-06-21 12:23:59 C6993297CE6AD387B933719C8FF2A4AA 3032 ----a-w- C:\Windows\Sysnative\Tasks\{1FECA4CE-1507-4BB3-A398-F2288C79B056}

2013-06-21 12:08:33 20F14590F6AE2B744835E012831E8B69 3026 ----a-w- C:\Windows\Sysnative\Tasks\{4AB04555-FAE7-44FF-B96A-54E612266B76}

====== C:\Windows\Temp ======

======= C:\Program Files =====

======= C:\Program Files (x86) =====

2013-06-20 18:12:34 -------- d-----w- C:\Program Files (x86)\Trend Micro

2013-06-20 17:15:44 -------- d-----w- C:\Program Files (x86)\Dell

======= C: =====

2013-06-21 10:22:11 E3273E568053476D28A2478EB329CC78 13712 ----a-w- C:\AdwCleaner[s1].txt

====== C:\Users\Dell\AppData\Roaming ======

2013-06-20 16:31:48 -------- d-----w- C:\users\Gianni\AppData\Roaming\Mozilla

2013-06-20 16:31:48 -------- d-----w- C:\users\Gianni\AppData\Roaming\Adobe

2013-06-20 16:31:48 -------- d-----w- C:\users\Gianni\AppData\Local\Mozilla

2013-06-20 16:31:43 -------- d-----w- C:\users\Gianni\AppData\Roaming\Intel

2013-06-20 16:31:42 -------- d-----w- C:\users\Gianni\AppData\Roaming\Roxio

2013-06-20 16:31:41 07ADF04AA39263E925D09DB3FD5EC7FA 109296 ----a-w- C:\users\Gianni\AppData\Local\GDIPFONTCACHEV1.DAT

2013-06-20 16:31:41 -------- d-----w- C:\users\Gianni\AppData\Roaming\Real

2013-06-20 16:31:41 -------- d-----w- C:\users\Gianni\AppData\Roaming\Intel Corporation

2013-06-20 16:31:41 -------- d-----w- C:\users\Gianni\AppData\Local\Broadcom

2013-06-20 16:31:40 -------- d-----w- C:\users\Gianni\AppData\Roaming\Apple Computer

2013-06-20 16:31:21 -------- d-----r- C:\users\Gianni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2013-06-20 16:31:21 -------- d-----r- C:\users\Gianni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-06-20 16:31:10 -------- d-----w- C:\users\Gianni\AppData\Roaming\Identities

2013-06-20 16:31:03 -------- d-----w- C:\users\Gianni\AppData\Local\VirtualStore

2013-06-20 16:31:01 -------- d-s---w- C:\users\Gianni\AppData\Locallow\Microsoft

2013-06-20 16:30:56 -------- d-----w- C:\users\Gianni\AppData\Roaming\PC Suite

2013-06-20 16:30:50 -------- d-sh--we C:\users\Gianni\AppData\Local\Temporary Internet Files

2013-06-20 16:30:50 -------- d-sh--we C:\users\Gianni\AppData\Local\Geschiedenis

2013-06-20 16:30:50 -------- d-sh--we C:\users\Gianni\AppData\Local\Application Data

2013-06-20 16:30:49 -------- d-s---w- C:\users\Gianni\AppData\Roaming\Microsoft

2013-06-20 16:30:49 -------- d-----w- C:\users\Gianni\AppData\Roaming\Media Center Programs

2013-06-20 16:30:49 -------- d-----w- C:\users\Gianni\AppData\Local\Temp

2013-06-20 16:30:49 -------- d-----w- C:\users\Gianni\AppData\Local\SoftThinks

2013-06-20 16:30:49 -------- d-----w- C:\users\Gianni\AppData\Local\Microsoft Help

2013-06-20 16:30:49 -------- d-----w- C:\users\Gianni\AppData\Local\Microsoft

2013-06-20 16:30:49 -------- d-----r- C:\users\Gianni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2013-06-20 16:30:49 -------- d-----r- C:\users\Gianni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2013-06-12 06:39:33 5EC8963CAEF7B119C6E616C138BDFBCE 3584 ----a-w- C:\users\Dell\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

====== C:\Users\Dell ======

2013-06-20 16:31:20 -------- d-----r- C:\Users\Gianni\Searches

2013-06-20 16:31:05 -------- d-----r- C:\Users\Gianni\Contacts

2013-06-20 16:30:50 6FC234AD3752E1267B34FB12BCD6718B 20 --sha-w- C:\Users\Gianni\ntuser.ini

2013-06-20 16:30:50 -------- d-sh--we C:\Users\Gianni\Sjablonen

2013-06-20 16:30:50 -------- d-sh--we C:\Users\Gianni\SendTo

2013-06-20 16:30:50 -------- d-sh--we C:\Users\Gianni\Recent

2013-06-20 16:30:50 -------- d-sh--we C:\Users\Gianni\Netwerkprinteromgeving

2013-06-20 16:30:50 -------- d-sh--we C:\Users\Gianni\NetHood

2013-06-20 16:30:50 -------- d-sh--we C:\Users\Gianni\Mijn documenten

2013-06-20 16:30:50 -------- d-sh--we C:\Users\Gianni\Menu Start

2013-06-20 16:30:50 -------- d-sh--we C:\Users\Gianni\Local Settings

2013-06-20 16:30:50 -------- d-sh--we C:\Users\Gianni\Cookies

2013-06-20 16:30:50 -------- d-sh--we C:\Users\Gianni\Application Data

2013-06-20 16:30:49 -------- d--h--w- C:\Users\Gianni\AppData

2013-06-20 16:30:49 -------- d-----r- C:\Users\Gianni\Videos

2013-06-20 16:30:49 -------- d-----r- C:\Users\Gianni\Saved Games

2013-06-20 16:30:49 -------- d-----r- C:\Users\Gianni\Pictures

2013-06-20 16:30:49 -------- d-----r- C:\Users\Gianni\Music

2013-06-20 16:30:49 -------- d-----r- C:\Users\Gianni\Links

2013-06-20 16:30:49 -------- d-----r- C:\Users\Gianni\Favorites

2013-06-20 16:30:49 -------- d-----r- C:\Users\Gianni\Downloads

2013-06-20 16:30:49 -------- d-----r- C:\Users\Gianni\Documents

2013-06-20 16:30:49 -------- d-----r- C:\Users\Gianni\Desktop

====== C: exe-files ==

2013-06-20 17:15:49 6E42CF0D47AF25DEA4CECDBE093D521C 10134 ----a-r- C:\Users\Dell\AppData\Roaming\Microsoft\Installer\{42929F0F-CE14-47AF-9FC7-FF297A603021}\ARPPRODUCTICON.exe

=== C: other files ==

2013-06-20 06:02:00 4155DB098E14F2A8CB7BAC0FD10D9FB0 210138 ----a-w- C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\h5z28zkj.default\extensions\{f13b157f-b174-47e7-a34d-4815ddfdfeb8}.xpi

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1075957376-2883139255-1268569787-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"

"EPSON Stylus SX400 Series"="C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.EXE /FU C:\Windows\TEMP\E_SBA38.tmp /EF HKCU"

"Facebook Update"="C:\Users\Dell\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"

"NokiaSuite.exe"="C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray"

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 /build:7601"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 /build:7601"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"

"Dell Webcam Central"="C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe /mode2"

"Desktop Disc Tool"="C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"

"mcui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"avast"="C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"TkBellExe"="C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe -osboot"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"="C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"

"Launcher"="C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"

"EPSON Stylus SX400 Series"="C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.EXE /FU C:\Windows\TEMP\E_SBA38.tmp /EF HKCU"

"Facebook Update"="C:\Users\Dell\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"

"NokiaSuite.exe"="C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"QuickSet"="C:\Program Files\Dell\QuickSet\QuickSet.exe"

"Broadcom Wireless Manager UI"="C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe"

"IntelWireless"="C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel Wireless Tray"

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2012-11-05 15:06:36 958 ----a-w- C:\users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

2010-09-30 07:02:12 834 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [12/06/2013 15:53]

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1075957376-2883139255-1268569787-1000Core.job --a------ C:\Users\Dell\AppData\Local\Facebook\Update\FacebookUpdate.exe [09/02/2013 17:30]

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1075957376-2883139255-1268569787-1000UA.job --a------ C:\Users\Dell\AppData\Local\Facebook\Update\FacebookUpdate.exe [09/02/2013 17:30]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\h5z28zkj.default

- avast WebRep - C:\Program Files\AVAST Software\Avast\WebRep\FF

- Youtube MP3 Podcaster - %ProfilePath%\extensions\youtubemp3podcaster@jeremy.d.gregorio.com

- YouTube to MP3 - %ProfilePath%\extensions\youtube2mp3@mondayx.de.xpi

- Easy YouTube Video Downloader - %ProfilePath%\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi

- JavaScript Debugger - %ProfilePath%\extensions\{f13b157f-b174-47e7-a34d-4815ddfdfeb8}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\h5z28zkj.default

3D76B5C0E02ECC19C1F5756E8FD97F72 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll - Shockwave Flash

2C82D753EF779945977C82A3908DA20A - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.90.5

555E65306A5D3A5978BE74E1DD62CDD9 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll - RealNetworks Chrome Background Extension Plug-In (32-bit)

E32771B0AE3F18CEFFC12D682025238A - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll - RealPlayer HTML5VideoShim Plug-In (32-bit)

0B31B0F8FA99CFD009C8FBEA9E20C9DE - C:\Users\Dell\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin

15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

icmlaeflemplmjndnaapfdbbnpncnbda - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[30/10/2012 23:48]

jfmjfhklogoienhpfnppmbcbjfjnkonk - No path found[]

YouTube - Dell - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - Dell - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Gmail - Dell - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.msn.com/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="http://www.google.com"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="http://www.google.com"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

No DefaultScope Set For HKCU

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.msn.com/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="res://ieframe.dll/tabswelcome.htm"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="res://ieframe.dll/tabswelcome.htm"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\users\Dell\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== shortcuts on Users Desktops ======================

C:\Users\Dell\Desktop\Dropbox.lnk - C:\Users\Dell\AppData\Roaming\Dropbox\bin\Dropbox.exe /home

C:\Users\Dell\Desktop\HiJackThis.lnk - C:\Users\Dell\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe

C:\Users\Public\Desktop\Age of Empires III Trial.lnk - C:\Program Files (x86)\Microsoft Games\Age of Empires III Trial\age3.exe

C:\Users\Public\Desktop\avast Free Antivirus.lnk -

C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe

C:\Users\Public\Desktop\EPSON File Manager.lnk - C:\Program Files (x86)\epson\Creativity Suite\File Manager\EFileManager.exe

C:\Users\Public\Desktop\EPSON Scan.lnk - C:\WINDOWS\twain_32\escndv\escndv.exe

C:\Users\Public\Desktop\EPSON Stylus SX200_SX400_TX200_TX400 Handboek.lnk - C:\Program Files (x86)\epson\TPMANUAL\ES_SX_TX\NLD\USE_G\INDEX.HTM

C:\Users\Public\Desktop\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe

C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Users\Public\Desktop\Nokia Suite.lnk - C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe

C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis\HiJackThis.lnk - C:\Users\Dell\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

C:\Users\Gianni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Gianni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Gianni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast Free Antivirus.lnk -

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\Uninstall CCleaner.lnk - C:\Program Files\CCleaner\uninst.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee\McAfee SecurityCenter.lnk - C:\Program Files (x86)\mcafee.com\agent\mcagent.exe /desktopicon

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Office Word 2007.lnk - C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe

C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe

C:\Users\Gianni\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Gianni\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Gianni\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Gianni\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe

C:\Users\Gianni\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1

==== Reset IE Proxy ======================

Value(s) before fix:

"ProxyOverride"="*.local"

"ProxyEnable"=dword:00000000

Value(s) after fix:

"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Gianni\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Dell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\users\Dell\AppData\Local\Mozilla\Firefox\Profiles\h5z28zkj.default\Cache emptied successfully

C:\users\Gianni\AppData\Local\Mozilla\Firefox\Profiles\hdul4pxh.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\users\Dell\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Dell\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Users\Dell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on vr 21/06/2013 at 14:43:18,32 ======================

21 juni 2013

kheb nog eens even herstart, maar het blijft nog steeds hetzelfde probleem vrees ik

21 juni 2013

hierbij de gevraagde logjes

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 20:23:11, on 20/06/2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16490)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe

C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE

C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe

C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe

C:\Users\Dell\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Roxio\Roxio Burn\Roxio Burn.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe

C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\hijackthis\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Web search

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20121101025329.dll

O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.6.7.4\bh\Softonic.dll

O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O3 - Toolbar: Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.6.7.4\SoftonicTlbr.dll

O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

O4 - HKLM\..\Run: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"

O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"

O4 - HKLM\..\RunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [EPSON Stylus SX400 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.EXE /FU "C:\Windows\TEMP\E_SBA38.tmp" /EF "HKCU"

O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Dell\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')

O4 - Startup: Dropbox.lnk = C:\Users\Dell\AppData\Roaming\Dropbox\bin\Dropbox.exe

O4 - Global Startup: Bluetooth.lnk = ?

O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL

O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O17 - HKLM\System\CCS\Services\Tcpip\..\{B2C1BB1F-FC22-4BF5-980E-A0BB9F73B4B2}: NameServer = 0.0.0.0

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe

O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

O23 - Service: TurboBoost - Intel® Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 15181 bytes

- - - Updated - - -

mijn excuses, het vorige bericht is de verkeerde log

dit zijn de gevraagde logjes

# AdwCleaner v2.303 - Verslag gemaakt op 21/06/2013 om 12:22:11

# Geactualiseerd op 08/06/2013 door Xplode

# Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits)

# Gebruiker : Dell - DELL-PC

# Opstarten Modus : Normale modus

# Gelanceerd vanaf : F:\adwcleaner.exe

# Optie [Verwijderen]

***** [Diensten] *****

***** [Files / Mappen] *****

File Verwijderd : C:\user.js

File Verwijderd : C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\h5z28zkj.default\searchplugins\softonic.xml

Map Verwijderd : C:\Program Files (x86)\Softonic

Map Verwijderd : C:\Users\Dell\AppData\LocalLow\Softonic

Map Verwijderd : C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\h5z28zkj.default\extensions\ffxtlbra@softonic.com

***** [Register] *****

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E87806B5-E908-45FD-AF5E-957D83E58E68}

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E87806B5-E908-45FD-AF5E-957D83E58E68}

Sleutel Verwijderd : HKCU\Software\Softonic

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escort.DLL

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\esrv.EXE

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\escort.escortIEPane

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\escort.escortIEPane.1

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\S

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Softonic.dskBnd

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Softonic.dskBnd.1

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr.1

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\SoftonicApp.appCore

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\SoftonicApp.appCore.1

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc.1

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\softonic_ggl_1_RASAPI32

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\softonic_ggl_1_RASMANCS

Sleutel Verwijderd : HKLM\Software\Softonic

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A3E2F089-DDBB-4CBF-B06C-5D44DA316ED3}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Softonic

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}

***** [browsers] *****

-\\ Internet Explorer v9.0.8112.16490

Vervangen : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.softonic.com/INF00047/tb_v1?SearchSource=15&cc= --> hxxp://www.google.com

-\\ Mozilla Firefox v21.0 (nl)

File : C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\h5z28zkj.default\prefs.js

C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\h5z28zkj.default\user.js ... Verwijderd !

Verwijderd : user_pref("extensions.Softonic.admin", false);

Verwijderd : user_pref("extensions.Softonic.aflt", "SD");

Verwijderd : user_pref("extensions.Softonic.autoRvrt", "false");

Verwijderd : user_pref("extensions.Softonic.cause_stats_url", "");

Verwijderd : user_pref("extensions.Softonic.cntry", "BE");

Verwijderd : user_pref("extensions.Softonic.cv", "cv5");

Verwijderd : user_pref("extensions.Softonic.dfltLng", "nl");

Verwijderd : user_pref("extensions.Softonic.dfltSrch", true);

Verwijderd : user_pref("extensions.Softonic.dfltlng", "nl");

Verwijderd : user_pref("extensions.Softonic.dfltsrch", true);

Verwijderd : user_pref("extensions.Softonic.dspNew", "Search the web (Softonic)");

Verwijderd : user_pref("extensions.Softonic.dspOld", "");

Verwijderd : user_pref("extensions.Softonic.envrmnt", "production");

Verwijderd : user_pref("extensions.Softonic.excTlbr", false);

Verwijderd : user_pref("extensions.Softonic.hdrMd5", "CCDFC715D6AFCD15092DBC56C6856F7A");

Verwijderd : user_pref("extensions.Softonic.hmpg", true);

Verwijderd : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/INF00047/tb_v1?SearchSource=13&[...]

Verwijderd : user_pref("extensions.Softonic.homepage_url", "hxxp://softonic.donation-tools.org/landing/SoftonicIn[...]

Verwijderd : user_pref("extensions.Softonic.hpNew", "hxxp://search.softonic.com/INF00047/tb_v1?SearchSource=13&cc[...]

Verwijderd : user_pref("extensions.Softonic.hpOld", "hxxp://google.be/");

Verwijderd : user_pref("extensions.Softonic.hrdid", "7c4e86d40000000000008ca982170d63");

Verwijderd : user_pref("extensions.Softonic.id", "7c4e86d40000000000008ca982170d63");

Verwijderd : user_pref("extensions.Softonic.instlDay", "15683");

Verwijderd : user_pref("extensions.Softonic.instlRef", "INF00047");

Verwijderd : user_pref("extensions.Softonic.instlday", "15683");

Verwijderd : user_pref("extensions.Softonic.instlref", "INF00047");

Verwijderd : user_pref("extensions.Softonic.irobalertedfirstmessage", "1");

Verwijderd : user_pref("extensions.Softonic.iroblastupdate", "1358159837156");

Verwijderd : user_pref("extensions.Softonic.irobmymoney", "0");

Verwijderd : user_pref("extensions.Softonic.irobtotalmoney", "5519.7");

Verwijderd : user_pref("extensions.Softonic.isdcmntcmplt", "false");

Verwijderd : user_pref("extensions.Softonic.keyWordUrl", "hxxp://search.softonic.com/INF00047/tb_v1?SearchSource=[...]

Verwijderd : user_pref("extensions.Softonic.keywordurl", "hxxp://search.softonic.com/INF00047/tb_v1?SearchSource=[...]

Verwijderd : user_pref("extensions.Softonic.landing_url", "hxxp://softonic.donation-tools.org/landing/SoftonicSho[...]

Verwijderd : user_pref("extensions.Softonic.lastVrsnTs", "1.6.7.412:21:08");

Verwijderd : user_pref("extensions.Softonic.mntrvrsn", "1.3.0");

Verwijderd : user_pref("extensions.Softonic.monitorreport", true);

Verwijderd : user_pref("extensions.Softonic.my_stats_url", "");

Verwijderd : user_pref("extensions.Softonic.newTab", true);

Verwijderd : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/INF00047/tb_v1?SearchSource=1[...]

Verwijderd : user_pref("extensions.Softonic.newtab", true);

Verwijderd : user_pref("extensions.Softonic.newtaburl", "hxxp://search.softonic.com/INF00047/tb_v1?SearchSource=1[...]

Verwijderd : user_pref("extensions.Softonic.pkgid_irobinhood2012", "wrXCtcKywrPCsMK1wrjCtA%3d%3d");

Verwijderd : user_pref("extensions.Softonic.prdct", "Softonic");

Verwijderd : user_pref("extensions.Softonic.prtnrId", "softonic");

Verwijderd : user_pref("extensions.Softonic.prtnrid", "softonic");

Verwijderd : user_pref("extensions.Softonic.rvrtMsg", "Click Yes to keep current home page and default search set[...]

Verwijderd : user_pref("extensions.Softonic.savedVrsnTs", "1");

Verwijderd : user_pref("extensions.Softonic.sg", "az");

Verwijderd : user_pref("extensions.Softonic.smplGrp", "none");

Verwijderd : user_pref("extensions.Softonic.smplgrp", "none");

Verwijderd : user_pref("extensions.Softonic.srch", "");

Verwijderd : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");

Verwijderd : user_pref("extensions.Softonic.srchprvdr", "Search the web (Softonic)");

Verwijderd : user_pref("extensions.Softonic.tlbrId", "BASEirobinhoodActive");

Verwijderd : user_pref("extensions.Softonic.tlbrSrchUrl", "hxxp://search.softonic.com/INF00047/tb_v1?SearchSource[...]

Verwijderd : user_pref("extensions.Softonic.tlbrid", "BASEirobinhoodActive");

Verwijderd : user_pref("extensions.Softonic.tlbrsrchurl", "hxxp://search.softonic.com/INF00047/tb_v1?SearchSource[...]

Verwijderd : user_pref("extensions.Softonic.vrsn", "1.6.7.4");

Verwijderd : user_pref("extensions.Softonic.vrsnTs", "1.6.7.412:21:08");

Verwijderd : user_pref("extensions.Softonic.vrsni", "1.6.7.4");

Verwijderd : user_pref("extensions.Softonic.vrsnts", "1.6.7.412:21:08");

Verwijderd : user_pref("extensions.Softonic_i.dnsErr", true);

Verwijderd : user_pref("extensions.Softonic_i.hmpg", true);

Verwijderd : user_pref("extensions.Softonic_i.newTab", true);

Verwijderd : user_pref("extensions.Softonic_i.smplGrp", "none");

Verwijderd : user_pref("extensions.Softonic_i.vrsnTs", "1.6.7.412:21:08");

Verwijderd : user_pref("extensions.enabledAddons", "ffxtlbra%40softonic.com:1.6.0,youtube2mp3%40mondayx.de:1.2.3,[...]

Verwijderd : user_pref("keyword.URL", "hxxp://search.softonic.com/INF00047/tb_v1?SearchSource=2&cc=&q=");

File : C:\Users\Gianni\AppData\Roaming\Mozilla\Firefox\Profiles\hdul4pxh.default\prefs.js

[OK] De file bevat geen enkele ongeoorloofde invoer.

-\\ Google Chrome v [Onmogelijk de versie te verkrijgen]

File : C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] De file bevat geen enkele ongeoorloofde invoer.

*************************

AdwCleaner[s1].txt - [13613 octets] - [21/06/2013 12:22:11]

########## EOF - C:\AdwCleaner[s1].txt - [13674 octets] ##########

En de hijack logfile

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 12:28:59, on 21/06/2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16490)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE

C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe

C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe

C:\Users\Dell\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe

C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE

C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe

C:\hijackthis\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896