paashaas

# AdwCleaner v3.302 - Rapport aangemaakt 04/08/2014 op 09:00:15 # Laatste Update 30/07/2014 door Xplode # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (32 bits) # Gebruikersnaam : cato - CATO-PC # Gestart vanuit : C:\Users\cato\Downloads\adwcleaner_3.302.exe # Optie : Verwijderen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** ***** [ Taken ] ***** Taak Verwijderd : RegClean Pro ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\secman.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994} Sleutel Verwijderd : HKCU\Software\Myfree Codec Sleutel Verwijderd : HKCU\Software\OCS Sleutel Verwijderd : HKCU\Software\Softonic Sleutel Verwijderd : HKCU\Software\systweak Sleutel Verwijderd : HKLM\Software\GoforFiles Sleutel Verwijderd : HKLM\Software\Myfree Codec Sleutel Verwijderd : HKLM\Software\systweak ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17207 -\\ Google Chrome v36.0.1985.125 [ Bestand : C:\Users\cato\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [2073 octets] - [04/08/2014 08:57:44] AdwCleaner[s0].txt - [2035 octets] - [04/08/2014 09:00:15] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2095 octets] ########## # AdwCleaner v3.304 - Rapport aangemaakt 09/08/2014 op 09:42:58 # Laatste Update 08/08/2014 door Xplode # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (32 bits) # Gebruikersnaam : cato - CATO-PC # Gestart vanuit : C:\Users\cato\Downloads\adwcleaner_3.304.exe # Optie : Verwijderen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** ***** [ Taken ] ***** Taak Verwijderd : RegClean Pro ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\secman.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994} Sleutel Verwijderd : HKCU\Software\Myfree Codec Sleutel Verwijderd : HKCU\Software\OCS Sleutel Verwijderd : HKCU\Software\Softonic Sleutel Verwijderd : HKCU\Software\systweak Sleutel Verwijderd : HKLM\Software\GoforFiles Sleutel Verwijderd : HKLM\Software\Myfree Codec Sleutel Verwijderd : HKLM\Software\systweak ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17207 -\\ Google Chrome v36.0.1985.125 [ Bestand : C:\Users\cato\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [4206 octets] - [04/08/2014 08:57:44] AdwCleaner[s0].txt - [4210 octets] - [04/08/2014 09:00:15] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [4270 octets] ##########

Zoek.exe v5.0.0.0 Updated 07-August-2014 Tool run by cato on vr 08-08-2014 at 20:16:12,28. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\cato\Downloads\zoek (3).exe [scan all users] [script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2014-08-03-212754.log 12546 bytes C:\zoek-results2014-08-08-181517.log 4552 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "GoforFilesInstaller Starter"=- ==== Deleting Files \ Folders ====================== C:\Program Files\RegClean Pro not found "C:\Windows\tasks\RegClean Pro_DEFAULT.job" not found "C:\Windows\tasks\RegClean Pro_UPDATES.job" not found C:\Program Files\GoforFiles deleted C:\Program Files\MyFree Codec deleted C:\ntldr.exe deleted C:\Users\cato\AppData\Roaming\Systweak deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro deleted C:\Users\cato\Searches deleted C:\Windows\system32\tasks\RegClean Pro deleted C:\Windows\system32\roboot.exe deleted C:\Users\cato\IE11-Windows6.1.exe deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\cato\AppData\Local\Temp ==== 2014-07-28 05:15:45 666308FEAADFE8621B7A378AB9D91E27 918440 ----a-w- C:\Users\cato\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe ====== Java Cache ===== 2014-08-04 07:07:37 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\cato\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-6ec79bef ====== C:\Windows\system32 ===== ====== C:\Windows\system32\drivers ===== ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-08-03 10:15:07 -------- d-----w- C:\Program Files\trend micro 2014-07-13 12:06:57 -------- d-----w- C:\Program Files\Canon 2014-07-13 12:06:52 -------- d-----w- C:\Program Files\Common Files\Canon_Inc_IC ======= C: ===== ====== C:\Users\cato\AppData\Roaming ====== 2014-08-03 20:41:33 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2014-08-03 20:41:32 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2014-08-03 20:41:32 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2014-07-13 12:25:48 -------- d-----w- C:\Users\cato\AppData\Roaming\CANON INC 2014-07-13 12:07:38 -------- d-----w- C:\Users\cato\AppData\Roaming\Canon_Inc_IC 2014-07-13 11:15:07 -------- d-----w- C:\Users\cato\AppData\Roaming\canon ====== C:\Users\cato ====== 2014-08-08 13:24:41 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\cato\Downloads\RSIT.exe 2014-08-03 21:35:56 -------- d-----w- C:\ProgramData\Oracle 2014-07-13 11:14:49 -------- d-----w- C:\ProgramData\Canon_Inc_IC ====== C: exe-files == 2014-08-08 13:25:02 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\cato.exe 2014-08-08 13:24:41 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\cato\Downloads\RSIT.exe 2014-08-08 10:46:00 5CA3B9DB1F03E19C4EAD46A7322D1D3F 39749712 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\36.0.1985.125\36.0.1985.125_chrome_installer.exe 2014-08-07 21:22:13 3842C46F2FBC7522EF625F1833530804 145408 ----a-w- C:\Users\cato\AppData\LocalLow\Sun\Java\jre1.7.0_67\lzma.exe 2014-08-07 21:13:55 ADA04D0DC075479DC24AD3AE29EC33E2 741640 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\conn\ss_conn_service.exe 2014-08-07 21:09:42 3BBEE7ECEE903B81AF6CD58B25E234C2 15480376 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\USB Driver\SAMSUNG_USB_Driver_for_Mobile_Phones.exe 2014-08-07 21:08:12 0F71621E15B9E668CDC3CCC15FCBC6C5 845120 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\KiesPDLR.exe 2014-08-07 21:08:11 69109E9CBD5C72966C35DD3F099DE25D 55296 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AdminDelegator.exe 2014-08-07 21:06:52 18FD1E2DD9F583F3985A08290736A852 82944 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentInstaller.exe 2014-08-07 21:05:58 7784BFCED0AD022C9FD7D9CCD1B20E9C 71680 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentUpdate.exe 2014-08-07 21:05:43 3DB22E545A15364C58CD590DF2BEA467 624448 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Updater\Kies.Update.exe 2014-08-07 21:05:39 A0251ED3ABBA7ACC84416738C8282ACA 311616 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesTrayAgent.exe 2014-08-07 21:05:37 C5A3EDEF723C1819A0D9025A3FFE1379 277824 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesDriverInstaller.exe 2014-08-07 21:05:37 40D1C14CE98CB9E677734B585A2CA771 559936 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesAgent.exe 2014-08-07 21:05:36 F5ED26AB8BDD951BFAC8BBD0D68BA3E9 1564992 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Kies.exe 2014-08-07 21:05:10 36204876AB3E20F1863A38862C54F26D 3835040 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\MediaModules\MyFreeCodecPack.exe 2014-08-07 21:04:45 40BBA969A87E644435A4B0C64C10622F 173568 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\ConnectionManager.exe 2014-08-07 21:04:22 229A993278CCF41FA9818FD536495C63 697856 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceManager.exe 2014-08-07 21:04:21 50062450C8DFA7FE8AD46481EF4F3974 67904 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\Kies_Tutorial.exe 2014-08-07 21:04:14 A4F5E80C7C1109246008EBD3895EB5CB 352768 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceDataService.exe 2014-08-07 21:04:11 EC0E53ED4AF02A4E85803FA2E46E55C7 65856 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\RegisterCOM.exe 2014-08-07 21:00:17 3DB22E545A15364C58CD590DF2BEA467 624448 ----a-w- C:\Users\cato\AppData\Roaming\Samsung\Kies\UpdateTemp\Temp\Kies.Update.exe 2014-08-07 20:58:08 C5D237A3DA4A914D19D825C73FDE4487 8848464 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\36.0.1985.125\36.0.1985.125_35.0.1916.153_chrome_updater.exe === C: other files == 2014-08-07 21:13:50 C9700F35EFBD6CD6A056774D51FDCC4D 83200 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ssudrmnetmp.inf_x86_neutral_24c891212cd2c1c8\i386\ssudrmnetmp.sys 2014-08-07 21:13:50 C9700F35EFBD6CD6A056774D51FDCC4D 83200 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ssudrmnetmp.sys 2014-08-07 21:13:50 403A578649DDF0D0C560E0D9DD58ECC5 23296 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ss_conn_usb_driver.inf_x86_neutral_6b86d780761a364f\i386\ss_conn_usb_driver.sys 2014-08-07 21:13:50 403A578649DDF0D0C560E0D9DD58ECC5 23296 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ss_conn_usb_driver.sys 2014-08-07 21:13:49 5ED6B9921766E32E45B0EC4A51B33EFC 61696 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ssudrmnet.inf_x86_neutral_02fc761d6eb0a252\i386\ssudrmnet.sys 2014-08-07 21:13:49 5ED6B9921766E32E45B0EC4A51B33EFC 61696 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ssudrmnet.sys 2014-08-07 21:13:49 389148FB4E2B893AFF0F81F32523EF69 34688 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ssudeadb.inf_x86_neutral_ed448bb49d266e76\i386\ssudeadb.sys 2014-08-07 21:13:49 389148FB4E2B893AFF0F81F32523EF69 34688 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ssudeadb.sys 2014-08-07 21:13:48 A471CFF55D4C0F3C9F5DB27EAB176977 184192 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ssudserd.inf_x86_neutral_932fde8d9ac4dd80\i386\ssudserd.sys 2014-08-07 21:13:48 A471CFF55D4C0F3C9F5DB27EAB176977 184192 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ssudserd.sys 2014-08-07 21:13:48 0C19DCB52D54AFA3308D0707FFCAE0CC 46848 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ssudnd5.inf_x86_neutral_9dbcf00a391510ca\i386\ssudnd5.sys 2014-08-07 21:13:48 0C19DCB52D54AFA3308D0707FFCAE0CC 46848 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ssudnd5.sys 2014-08-07 21:13:48 01D54BFD6F2F09EE0D38D47D06E30287 184192 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ssudobex.inf_x86_neutral_8b198d60c0cabddb\i386\ssudobex.sys 2014-08-07 21:13:48 01D54BFD6F2F09EE0D38D47D06E30287 184192 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ssudobex.sys 2014-08-07 21:13:47 5EE6503C932CB79B493E4B4D8E23D219 184192 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ssudmdm.inf_x86_neutral_eb624d8b1b1ec274\i386\ssudmdm.sys 2014-08-07 21:13:47 5EE6503C932CB79B493E4B4D8E23D219 184192 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ssudmdm.sys 2014-08-07 21:13:46 FB5D5F173455EB02E2F3512FCEDB7DAA 335104 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ssudqcnet.inf_x86_neutral_a0f95af6ddf0a9df\i386\ssudqcnet.sys 2014-08-07 21:13:46 FB5D5F173455EB02E2F3512FCEDB7DAA 335104 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ssudqcnet.sys 2014-08-07 21:13:46 7E9755A50F753DB747572AB95DB09BB2 184192 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ssuddmgr.inf_x86_neutral_e8267708d90a813e\i386\ssuddmgr.sys 2014-08-07 21:13:46 7E9755A50F753DB747572AB95DB09BB2 184192 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ssuddmgr.sys 2014-08-07 21:13:46 7A5FB3E4E0D77740D56E516EE6B2DC2B 89856 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ssudbus.inf_x86_neutral_6c8cd03f9c562c7a\i386\ssudbus.sys 2014-08-07 21:13:46 7A5FB3E4E0D77740D56E516EE6B2DC2B 89856 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\i386\ssudbus.sys 2014-08-07 21:13:44 A07F59F11B076BA50B958768438FA227 95488 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ssudrmnetmp.sys 2014-08-07 21:13:44 2BECFFD88B40EE62FE38FB3DC2277557 26368 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ss_conn_usb_driver.sys 2014-08-07 21:13:44 162A54847FB9F03418B35078DB7F552D 70400 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ssudrmnet.sys 2014-08-07 21:13:43 F7093A27C4AF6D9EEA0ACAC1C4FF6828 206080 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ssudserd.sys 2014-08-07 21:13:43 5975B3494B9997194574BB66BEFE3286 40704 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ssudeadb.sys 2014-08-07 21:13:42 B5D5A1846972B7F93BDC6333272D750E 206080 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ssudobex.sys 2014-08-07 21:13:42 72EF2E615BDF8A00C94E7B77AFDAED62 52480 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ssudnd5.sys 2014-08-07 21:13:41 91310683D7B6B292B746D60734B59322 206080 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ssudmdm.sys 2014-08-07 21:13:41 124ACBF685E47238B0DFCFA6CB1A7810 206080 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ssuddmgr.sys 2014-08-07 21:13:40 EE6A9E6C352C8F6E22DEBB3141F5DCAA 386816 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ssudqcnet.sys 2014-08-07 21:13:40 30710AEFCE721CEEE0F35EB6A01C263C 110336 ----a-w- C:\Users\cato\Documents\USB Drivers\25_escape\amd64\ssudbus.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2306347899-3207702929-778101096-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" "KiesPreload"="C:\Users\cato\Documents\Kies\Kies.exe /preload" "KiesAirMessage"="C:\Users\cato\Documents\Kies\KiesAirMessage.exe -startup" "Spotify Web Helper"="C:\Users\cato\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "EPSON Stylus DX7400 Series"="C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU C:\Windows\TEMP\E_S97AC.tmp /EF HKCU" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "KiesTrayAgent"="C:\Users\cato\Documents\Kies\KiesTrayAgent.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" "KiesPreload"="C:\Users\cato\Documents\Kies\Kies.exe /preload" "KiesAirMessage"="C:\Users\cato\Documents\Kies\KiesAirMessage.exe -startup" "Spotify Web Helper"="C:\Users\cato\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "EPSON Stylus DX7400 Series"="C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU C:\Windows\TEMP\E_S97AC.tmp /EF HKCU" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-07-2014 20:36] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [17-12-2013 19:07] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [17-12-2013 19:07] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\{0A4BEB54-5553-4235-94FF-0C806BD99F22}" [C:\Program Files\OpenOffice 4\program\soffice.exe] "C:\Windows\system32\tasks\{60F375F1-E181-404D-9C06-B470C84543B8}" [C:\Program Files\VideoLAN\VLC\vlc.exe] "C:\Windows\system32\tasks\{AA49C1E3-AEDC-47EA-9401-1ACDB4D1258B}" [C:\Program Files\OpenOffice 4\program\soffice.exe] "C:\Windows\system32\tasks\{F2136C1D-5A22-44F2-9273-F47B99FB70D1}" [C:\Program Files\OpenOffice 4\program\soffice.exe] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14-07-2014 18:22] Google Docs - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Skype Click to Call - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Google Wallet - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{A5583D70-650A-4BB9-8AF8-4F1FC4B30EAA}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {A5583D70-650A-4BB9-8AF8-4F1FC4B30EAA} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}" ==== Empty IE Cache ====================== C:\Users\cato\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\cato\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2Q6UZRHH will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\cato\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=197 folders=29 210231804 bytes) ==== Empty Temp Folders ====================== C:\Users\cato\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\cato\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\cato\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2Q6UZRHH" not found "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on vr 08-08-2014 at 20:39:21,25 ======================

Logfile of random's system information tool 1.10 (written by random/random) Run by cato at 2014-08-08 15:25:01 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 36 GB (23%) free of 153 GB Total RAM: 2013 MB (46% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:25:38, on 8-8-2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17207) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Microsoft Security Client\msseces.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Users\cato\Documents\Kies\KiesTrayAgent.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Skype\Phone\Skype.exe C:\Users\cato\Documents\Kies\Kies.exe C:\Users\cato\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files\NewsLeecher\newsLeecher.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchFilterHost.exe C:\Users\cato\Downloads\RSIT.exe C:\Program Files\trend micro\cato.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [KiesTrayAgent] C:\Users\cato\Documents\Kies\KiesTrayAgent.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [GoforFilesInstaller Starter] "C:\Users\cato\AppData\Local\Temp\install37357653.exe" -startup O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [KiesPreload] C:\Users\cato\Documents\Kies\Kies.exe /preload O4 - HKCU\..\Run: [KiesAirMessage] C:\Users\cato\Documents\Kies\KiesAirMessage.exe -startup O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\cato\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU "C:\Windows\TEMP\E_S97AC.tmp" /EF "HKCU" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe -- End of file - 5719 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\RegClean Pro_DEFAULT.job - C:\Program Files\RegClean Pro\RegCleanPro.exe -default C:\Windows\tasks\RegClean Pro_UPDATES.job - C:\Program Files\RegClean Pro\RegCleanPro.exe -updatecheck ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-14 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 951576] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 137752] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 171032] "Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-11 172568] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904] "KiesTrayAgent"=C:\Users\cato\Documents\Kies\KiesTrayAgent.exe [2014-07-25 311616] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "GoforFilesInstaller Starter"=C:\Users\cato\AppData\Local\Temp\install37357653.exe [2014-03-16 7980944] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-11-09 17880752] "KiesPreload"=C:\Users\cato\Documents\Kies\Kies.exe [2014-07-25 1562264] "KiesAirMessage"=C:\Users\cato\Documents\Kies\KiesAirMessage.exe -startup [] "Spotify Web Helper"=C:\Users\cato\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-03-07 1171968] "EPSON Stylus DX7400 Series"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE [2007-04-12 182272] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2011-02-11 228864] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "VIDC.FFDS"=ff_vfw.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-08-04 08:57:30 ----D---- C:\AdwCleaner 2014-08-03 23:35:56 ----D---- C:\ProgramData\Oracle 2014-08-03 22:41:32 ----D---- C:\Windows\Temp 2014-08-03 12:15:07 ----D---- C:\rsit 2014-08-03 12:15:07 ----D---- C:\Program Files\trend micro 2014-07-13 14:25:48 ----D---- C:\Users\cato\AppData\Roaming\CANON INC 2014-07-13 14:07:38 ----D---- C:\Users\cato\AppData\Roaming\Canon_Inc_IC 2014-07-13 14:06:57 ----D---- C:\Program Files\Canon 2014-07-13 14:06:52 ----D---- C:\Program Files\Common Files\Canon_Inc_IC 2014-07-13 13:15:07 ----D---- C:\Users\cato\AppData\Roaming\canon 2014-07-13 13:14:49 ----D---- C:\ProgramData\Canon_Inc_IC 2014-07-09 02:50:14 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-07-09 02:50:14 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-07-09 02:50:14 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-07-09 02:50:13 ----A---- C:\Windows\system32\urlmon.dll 2014-07-09 02:50:13 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-07-09 02:50:13 ----A---- C:\Windows\system32\iernonce.dll 2014-07-09 02:50:12 ----A---- C:\Windows\system32\jsproxy.dll 2014-07-09 02:50:12 ----A---- C:\Windows\system32\ieUnatt.exe 2014-07-09 02:50:12 ----A---- C:\Windows\system32\iedkcs32.dll 2014-07-09 02:50:11 ----A---- C:\Windows\system32\msfeeds.dll 2014-07-09 02:50:11 ----A---- C:\Windows\system32\ieapfltr.dll 2014-07-09 02:50:11 ----A---- C:\Windows\system32\dxtmsft.dll 2014-07-09 02:50:09 ----A---- C:\Windows\system32\msrating.dll 2014-07-09 02:50:09 ----A---- C:\Windows\system32\iesetup.dll 2014-07-09 02:50:09 ----A---- C:\Windows\system32\ie4uinit.exe 2014-07-09 02:50:08 ----A---- C:\Windows\system32\wininet.dll 2014-07-09 02:50:08 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-07-09 02:50:07 ----A---- C:\Windows\system32\dxtrans.dll 2014-07-09 02:50:06 ----A---- C:\Windows\system32\ieui.dll 2014-07-09 02:50:06 ----A---- C:\Windows\system32\ieframe.dll 2014-07-09 02:50:05 ----A---- C:\Windows\system32\mshtmled.dll 2014-07-09 02:50:04 ----A---- C:\Windows\system32\mshtmlmedia.dll 2014-07-09 02:50:04 ----A---- C:\Windows\system32\MshtmlDac.dll 2014-07-09 02:50:03 ----A---- C:\Windows\system32\iertutil.dll 2014-07-09 02:50:02 ----A---- C:\Windows\system32\jscript9diag.dll 2014-07-09 02:50:01 ----A---- C:\Windows\system32\mshtml.dll 2014-07-09 02:50:00 ----A---- C:\Windows\system32\vbscript.dll 2014-07-09 02:49:59 ----A---- C:\Windows\system32\jscript9.dll 2014-07-09 02:49:57 ----A---- C:\Windows\system32\qedit.dll 2014-07-09 02:49:46 ----A---- C:\Windows\system32\win32k.sys 2014-07-09 02:49:46 ----A---- C:\Windows\system32\osk.exe 2014-07-09 02:49:42 ----A---- C:\Windows\system32\drivers\afd.sys 2014-07-09 02:49:39 ----A---- C:\Windows\system32\schannel.dll 2014-07-09 02:49:39 ----A---- C:\Windows\system32\msv1_0.dll 2014-07-09 02:49:39 ----A---- C:\Windows\system32\kerberos.dll 2014-07-09 02:49:38 ----A---- C:\Windows\system32\wdigest.dll 2014-07-09 02:49:38 ----A---- C:\Windows\system32\TSpkg.dll 2014-07-09 02:49:38 ----A---- C:\Windows\system32\ncrypt.dll 2014-07-09 02:49:38 ----A---- C:\Windows\system32\credssp.dll 2014-07-09 02:49:33 ----A---- C:\Windows\system32\aepdu.dll 2014-07-09 02:49:31 ----A---- C:\Windows\system32\aeinv.dll 2014-07-09 02:49:26 ----A---- C:\Windows\system32\lsasrv.dll ======List of files/folders modified in the last 1 month====== 2014-08-08 15:25:13 ----D---- C:\Windows\Prefetch 2014-08-08 14:49:31 ----D---- C:\Users\cato\AppData\Roaming\Skype 2014-08-08 13:47:35 ----D---- C:\Windows\system32\config 2014-08-07 23:57:14 ----D---- C:\Windows\Microsoft.NET 2014-08-07 23:31:43 ----D---- C:\Program Files\Microsoft Silverlight 2014-08-07 23:30:30 ----D---- C:\Windows\system32\catroot 2014-08-07 23:28:03 ----SHD---- C:\Windows\Installer 2014-08-07 23:28:02 ----SHD---- C:\Config.Msi 2014-08-07 23:27:12 ----SHD---- C:\System Volume Information 2014-08-07 23:20:12 ----D---- C:\Users\cato\AppData\Roaming\Spotify 2014-08-07 23:15:01 ----D---- C:\Windows\system32\DriverStore 2014-08-07 23:15:00 ----D---- C:\Windows\inf 2014-08-07 22:55:46 ----RD---- C:\Program Files\Skype 2014-08-07 22:54:57 ----D---- C:\Windows\Tasks 2014-08-07 22:54:57 ----D---- C:\Windows\system32\wfp 2014-08-07 22:54:57 ----D---- C:\Windows\system32\Tasks 2014-08-07 22:54:57 ----D---- C:\Windows\System32 2014-08-07 22:54:55 ----D---- C:\Windows\winsxs 2014-08-07 22:54:53 ----D---- C:\Windows\system32\wbem 2014-08-07 22:54:53 ----D---- C:\Windows 2014-08-07 22:54:09 ----D---- C:\Windows\system32\nl-NL 2014-08-07 22:54:09 ----D---- C:\Windows\system32\drivers\etc 2014-08-07 22:54:09 ----D---- C:\Windows\system32\catroot2 2014-08-07 22:54:09 ----D---- C:\Windows\rescache 2014-08-07 22:54:08 ----D---- C:\Windows\system32\drivers\UMDF 2014-08-07 22:54:08 ----D---- C:\Windows\system32\drivers 2014-08-07 22:54:08 ----D---- C:\Users\cato\AppData\Roaming\vlc 2014-08-07 22:54:08 ----D---- C:\Users\cato\AppData\Roaming\Systweak 2014-08-07 22:54:05 ----SHD---- C:\RECYCLER 2014-08-07 22:54:04 ----RD---- C:\Program Files 2014-08-07 22:54:04 ----D---- C:\Program Files\MyFree Codec 2014-08-07 22:54:02 ----D---- C:\Program Files\GoforFiles 2014-08-07 22:54:01 ----SHD---- C:\$RECYCLE.BIN 2014-08-07 22:53:46 ----D---- C:\Windows\registration 2014-08-07 22:53:15 ----HD---- C:\ProgramData 2014-08-07 22:52:59 ----D---- C:\Program Files\Java 2014-08-07 22:52:52 ----D---- C:\Program Files\Common Files\Java 2014-08-07 22:52:52 ----D---- C:\Program Files\Common Files 2014-07-11 16:04:08 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-07-09 20:36:33 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2014-07-09 10:58:30 ----D---- C:\Program Files\Windows Journal 2014-07-09 10:58:28 ----D---- C:\Windows\system32\en-US 2014-07-09 10:58:27 ----D---- C:\Program Files\Internet Explorer 2014-07-09 10:58:26 ----D---- C:\Windows\ehome 2014-07-09 10:58:24 ----D---- C:\Windows\system32\Dism 2014-07-09 10:58:23 ----SD---- C:\Windows\system32\CompatTel 2014-07-09 06:46:32 ----D---- C:\Windows\system32\MRT 2014-07-09 06:44:15 ----A---- C:\Windows\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 231960] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 104264] R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-02-11 9036800] R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x86.sys [2009-07-14 50688] S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432] R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176] R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520] R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 22216] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 279776] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-12-17 116648] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-12-17 116648] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-06-19 108032] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-12-17 1343400] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------

hoi kape , nog bedankt voor de tip, ik heb het systeem inmiddels teruggezet, heb hiervoor methode 1 gebruikt. het ziet er naar uit dat alle pictogrammen hun oorspronkelijke uiterlijk weer hebben gekregen, en ze werken ook nog. nog bedankt hiervoor het lijkt erop dat het euvel verholpen is.

is goed, ben trouwens een paar dagen weg, meldt me vrijdag wel weer, nog bedankt voor de moeite.

ja dat lukt wel , alleen die andere bestanden krijgen dan ook dat pictogram .

het laatste, alleen als je met de rechtermuisknop werkt kun je het juiste bestand uitzoeken. en als je dat bestand hebt geopend, krijgen alle andere bestanden ook hetzelfde pictogram.

zijn nog steeds allemaal hetzelfde. trouwens als je met de rechtermuisknop een progammaatje opent, is dat wel mogelijk. dan veranderd ook het pictogram, maar tegelijkertijd tonen de andere bestanden hetzelfde pictogram. dubbelklikken is niet mogelijk er staat dan het verkeerde pictogram bij, uitgezonderd één natuurlijk.

# AdwCleaner v3.302 - Rapport aangemaakt 04/08/2014 op 09:00:15 # Laatste Update 30/07/2014 door Xplode # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (32 bits) # Gebruikersnaam : cato - CATO-PC # Gestart vanuit : C:\Users\cato\Downloads\adwcleaner_3.302.exe # Optie : Verwijderen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** ***** [ Taken ] ***** Taak Verwijderd : RegClean Pro ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\secman.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager Sleutel Verwijderd : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994} Sleutel Verwijderd : HKCU\Software\Myfree Codec Sleutel Verwijderd : HKCU\Software\OCS Sleutel Verwijderd : HKCU\Software\Softonic Sleutel Verwijderd : HKCU\Software\systweak Sleutel Verwijderd : HKLM\Software\GoforFiles Sleutel Verwijderd : HKLM\Software\Myfree Codec Sleutel Verwijderd : HKLM\Software\systweak ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17207 -\\ Google Chrome v36.0.1985.125 [ Bestand : C:\Users\cato\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [2073 octets] - [04/08/2014 08:57:44] AdwCleaner[s0].txt - [2035 octets] - [04/08/2014 09:00:15] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2095 octets] ##########

Zoek.exe v5.0.0.0 Updated 03-August-2014 Tool run by cato on zo 03-08-2014 at 22:16:59,45. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\cato\Downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 3-8-2014 22:23:38 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\CrashDump deleted successfully C:\Program Files\NativeFus_Log deleted successfully C:\PROGRA~2\Oracle deleted successfully C:\Users\cato\AppData\Roaming\GoforFiles deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "GoforFilesInstaller Starter"=- ==== Deleting Files \ Folders ====================== C:\Program Files\RegClean Pro not found C:\Program Files\GoforFiles deleted C:\Program Files\MyFree Codec deleted C:\ntldr.exe deleted C:\Users\cato\AppData\Roaming\Systweak deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro deleted C:\Users\cato\Searches deleted C:\Windows\system32\tasks\RegClean Pro deleted C:\Windows\system32\tasks\RegClean Pro_DEFAULT deleted C:\Windows\system32\tasks\RegClean Pro_UPDATES deleted C:\Windows\tasks\RegClean Pro_DEFAULT.job deleted C:\Windows\tasks\RegClean Pro_UPDATES.job deleted C:\Windows\system32\config\systemprofile\Searches deleted C:\Windows\system32\roboot.exe deleted C:\Users\cato\IE11-Windows6.1.exe deleted "C:\Users\cato\AppData\Local\Temp\install37357653.exe" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\cato\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\system32 ===== 2014-08-01 08:41:20 EC6E2DB67695966DF22CF5EBEFC1D305 2425856 ----a-w- C:\Windows\System32\wucltux.dll 2014-08-01 08:41:20 459E257F8915D44B23ACB46211FD45D0 45536 ----a-w- C:\Windows\System32\wups2.dll 2014-08-01 08:41:20 072678E0D68E9C3A7960328671134C7B 54240 ----a-w- C:\Windows\System32\wuauclt.exe 2014-08-01 08:41:19 D9B0134913E5EF007AF82A418C503322 1973728 ----a-w- C:\Windows\System32\wuaueng.dll 2014-08-01 08:40:50 255F0417EC31C71585824269522EC8E9 36320 ----a-w- C:\Windows\System32\wups.dll 2014-08-01 08:40:49 867148EBF47E7E7E7B21C07B4A981929 581600 ----a-w- C:\Windows\System32\wuapi.dll 2014-08-01 08:40:49 372218B80DEF827063049EBEE76B7501 92672 ----a-w- C:\Windows\System32\wudriver.dll 2014-08-01 08:40:37 F419D738BD2AE58D9DF2F9FEB5F43842 33792 ----a-w- C:\Windows\System32\wuapp.exe 2014-08-01 08:40:37 5AA2CAD923E9E647276A61387E83DDD0 179656 ----a-w- C:\Windows\System32\wuwebv.dll ====== C:\Windows\system32\drivers ===== 2014-07-09 00:49:42 D0B388DA1D111A34366E04EB4A5DD156 338944 ----a-w- C:\Windows\System32\drivers\afd.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-08-03 10:15:07 -------- d-----w- C:\Program Files\trend micro 2014-07-13 12:06:57 -------- d-----w- C:\Program Files\Canon 2014-07-13 12:06:52 -------- d-----w- C:\Program Files\Common Files\Canon_Inc_IC ======= C: ===== ====== C:\Users\cato\AppData\Roaming ====== 2014-07-13 12:25:48 -------- d-----w- C:\Users\cato\AppData\Roaming\CANON INC 2014-07-13 12:07:38 -------- d-----w- C:\Users\cato\AppData\Roaming\Canon_Inc_IC 2014-07-13 11:15:07 -------- d-----w- C:\Users\cato\AppData\Roaming\canon ====== C:\Users\cato ====== 2014-08-03 10:14:08 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\cato\Downloads\RSIT.exe 2014-07-13 12:07:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2014-07-13 11:14:49 -------- d-----w- C:\ProgramData\Canon_Inc_IC ====== C: exe-files == 2014-08-03 10:15:09 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\cato.exe 2014-08-03 10:14:08 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\cato\Downloads\RSIT.exe 2014-08-01 08:41:54 C5D237A3DA4A914D19D825C73FDE4487 8848464 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\36.0.1985.125\36.0.1985.125_35.0.1916.153_chrome_updater.exe 2014-08-01 08:41:20 072678E0D68E9C3A7960328671134C7B 54240 ----a-w- C:\Windows\System32\wuauclt.exe 2014-08-01 08:40:37 F419D738BD2AE58D9DF2F9FEB5F43842 33792 ----a-w- C:\Windows\System32\wuapp.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2306347899-3207702929-778101096-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" "KiesPreload"="C:\Users\cato\Documents\Kies\Kies.exe /preload" "KiesAirMessage"="C:\Users\cato\Documents\Kies\KiesAirMessage.exe -startup" "Spotify Web Helper"="C:\Users\cato\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "EPSON Stylus DX7400 Series"="C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU C:\Windows\TEMP\E_S97AC.tmp /EF HKCU" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "KiesTrayAgent"="C:\Users\cato\Documents\Kies\KiesTrayAgent.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" "KiesPreload"="C:\Users\cato\Documents\Kies\Kies.exe /preload" "KiesAirMessage"="C:\Users\cato\Documents\Kies\KiesAirMessage.exe -startup" "Spotify Web Helper"="C:\Users\cato\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "EPSON Stylus DX7400 Series"="C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU C:\Windows\TEMP\E_S97AC.tmp /EF HKCU" ==== Startup Folders ====================== 2014-07-13 12:25:47 1233 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Image Transfer Utility.lnk 2014-07-13 12:07:17 1143 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-07-2014 20:36] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [17-12-2013 19:07] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [17-12-2013 19:07] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\{0A4BEB54-5553-4235-94FF-0C806BD99F22}" [C:\Program Files\OpenOffice 4\program\soffice.exe] "C:\Windows\system32\tasks\{60F375F1-E181-404D-9C06-B470C84543B8}" [C:\Program Files\VideoLAN\VLC\vlc.exe] "C:\Windows\system32\tasks\{AA49C1E3-AEDC-47EA-9401-1ACDB4D1258B}" [C:\Program Files\OpenOffice 4\program\soffice.exe] "C:\Windows\system32\tasks\{F2136C1D-5A22-44F2-9273-F47B99FB70D1}" [C:\Program Files\OpenOffice 4\program\soffice.exe] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14-07-2014 18:22] Google Docs - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Skype Click to Call - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Google Wallet - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - cato\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{A5583D70-650A-4BB9-8AF8-4F1FC4B30EAA}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {A5583D70-650A-4BB9-8AF8-4F1FC4B30EAA} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}" ==== Empty IE Cache ====================== C:\Users\cato\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\cato\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\cato\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=197 folders=26 210231196 bytes) ==== Empty Temp Folders ====================== C:\Users\cato\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\cato\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on zo 03-08-2014 at 23:27:54,64 ======================

Logfile of random's system information tool 1.10 (written by random/random) Run by cato at 2014-08-03 12:15:07 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 39 GB (25%) free of 153 GB Total RAM: 2013 MB (41% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:15:56, on 3-8-2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17207) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Microsoft Security Client\msseces.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Users\cato\Documents\Kies\KiesTrayAgent.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Skype\Phone\Skype.exe C:\Users\cato\Documents\Kies\Kies.exe C:\Users\cato\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Windows\System32\spool\drivers\w32x86\3\E_FATICDE.EXE C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\cato\Downloads\RSIT.exe C:\Program Files\trend micro\cato.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [KiesTrayAgent] C:\Users\cato\Documents\Kies\KiesTrayAgent.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [GoforFilesInstaller Starter] "C:\Users\cato\AppData\Local\Temp\install37357653.exe" -startup O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [KiesPreload] C:\Users\cato\Documents\Kies\Kies.exe /preload O4 - HKCU\..\Run: [KiesAirMessage] C:\Users\cato\Documents\Kies\KiesAirMessage.exe -startup O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\cato\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU "C:\Windows\TEMP\E_S97AC.tmp" /EF "HKCU" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: Image Transfer Utility.lnk = C:\Program Files\Canon\ImageTransferUtility\ImageTransferUtility.exe O4 - Global Startup: ImageBrowser EX Agent.lnk = C:\Program Files\Canon\ImageBrowser EX\MFManager.exe O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe -- End of file - 5912 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\RegClean Pro_DEFAULT.job - C:\Program Files\RegClean Pro\RegCleanPro.exe -default C:\Windows\tasks\RegClean Pro_UPDATES.job - C:\Program Files\RegClean Pro\RegCleanPro.exe -updatecheck ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-14 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 951576] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 137752] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 171032] "Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-11 172568] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904] "KiesTrayAgent"=C:\Users\cato\Documents\Kies\KiesTrayAgent.exe [2014-02-14 311616] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "GoforFilesInstaller Starter"=C:\Users\cato\AppData\Local\Temp\install37357653.exe [2014-03-16 7980944] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-11-09 17880752] "KiesPreload"=C:\Users\cato\Documents\Kies\Kies.exe [2014-02-14 1564992] "KiesAirMessage"=C:\Users\cato\Documents\Kies\KiesAirMessage.exe -startup [] "Spotify Web Helper"=C:\Users\cato\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-03-07 1171968] "EPSON Stylus DX7400 Series"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE [2007-04-12 182272] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Image Transfer Utility.lnk - C:\Program Files\Canon\ImageTransferUtility\ImageTransferUtility.exe ImageBrowser EX Agent.lnk - C:\Program Files\Canon\ImageBrowser EX\MFManager.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2011-02-11 228864] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "VIDC.FFDS"=ff_vfw.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-08-03 12:15:07 ----D---- C:\rsit 2014-08-03 12:15:07 ----D---- C:\Program Files\trend micro 2014-08-01 10:41:20 ----A---- C:\Windows\system32\wups2.dll 2014-08-01 10:41:20 ----A---- C:\Windows\system32\wucltux.dll 2014-08-01 10:41:20 ----A---- C:\Windows\system32\wuauclt.exe 2014-08-01 10:41:19 ----A---- C:\Windows\system32\wuaueng.dll 2014-08-01 10:40:50 ----A---- C:\Windows\system32\wups.dll 2014-08-01 10:40:49 ----A---- C:\Windows\system32\wudriver.dll 2014-08-01 10:40:49 ----A---- C:\Windows\system32\wuapi.dll 2014-08-01 10:40:37 ----A---- C:\Windows\system32\wuwebv.dll 2014-08-01 10:40:37 ----A---- C:\Windows\system32\wuapp.exe 2014-07-13 14:25:48 ----D---- C:\Users\cato\AppData\Roaming\CANON INC 2014-07-13 14:07:38 ----D---- C:\Users\cato\AppData\Roaming\Canon_Inc_IC 2014-07-13 14:06:57 ----D---- C:\Program Files\Canon 2014-07-13 14:06:52 ----D---- C:\Program Files\Common Files\Canon_Inc_IC 2014-07-13 13:15:07 ----D---- C:\Users\cato\AppData\Roaming\canon 2014-07-13 13:14:49 ----D---- C:\ProgramData\Canon_Inc_IC 2014-07-09 02:50:14 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-07-09 02:50:14 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-07-09 02:50:14 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-07-09 02:50:13 ----A---- C:\Windows\system32\urlmon.dll 2014-07-09 02:50:13 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-07-09 02:50:13 ----A---- C:\Windows\system32\iernonce.dll 2014-07-09 02:50:12 ----A---- C:\Windows\system32\jsproxy.dll 2014-07-09 02:50:12 ----A---- C:\Windows\system32\ieUnatt.exe 2014-07-09 02:50:12 ----A---- C:\Windows\system32\iedkcs32.dll 2014-07-09 02:50:11 ----A---- C:\Windows\system32\msfeeds.dll 2014-07-09 02:50:11 ----A---- C:\Windows\system32\ieapfltr.dll 2014-07-09 02:50:11 ----A---- C:\Windows\system32\dxtmsft.dll 2014-07-09 02:50:09 ----A---- C:\Windows\system32\msrating.dll 2014-07-09 02:50:09 ----A---- C:\Windows\system32\iesetup.dll 2014-07-09 02:50:09 ----A---- C:\Windows\system32\ie4uinit.exe 2014-07-09 02:50:08 ----A---- C:\Windows\system32\wininet.dll 2014-07-09 02:50:08 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-07-09 02:50:07 ----A---- C:\Windows\system32\dxtrans.dll 2014-07-09 02:50:06 ----A---- C:\Windows\system32\ieui.dll 2014-07-09 02:50:06 ----A---- C:\Windows\system32\ieframe.dll 2014-07-09 02:50:05 ----A---- C:\Windows\system32\mshtmled.dll 2014-07-09 02:50:04 ----A---- C:\Windows\system32\mshtmlmedia.dll 2014-07-09 02:50:04 ----A---- C:\Windows\system32\MshtmlDac.dll 2014-07-09 02:50:03 ----A---- C:\Windows\system32\iertutil.dll 2014-07-09 02:50:02 ----A---- C:\Windows\system32\jscript9diag.dll 2014-07-09 02:50:01 ----A---- C:\Windows\system32\mshtml.dll 2014-07-09 02:50:00 ----A---- C:\Windows\system32\vbscript.dll 2014-07-09 02:49:59 ----A---- C:\Windows\system32\jscript9.dll 2014-07-09 02:49:57 ----A---- C:\Windows\system32\qedit.dll 2014-07-09 02:49:46 ----A---- C:\Windows\system32\win32k.sys 2014-07-09 02:49:46 ----A---- C:\Windows\system32\osk.exe 2014-07-09 02:49:42 ----A---- C:\Windows\system32\drivers\afd.sys 2014-07-09 02:49:39 ----A---- C:\Windows\system32\schannel.dll 2014-07-09 02:49:39 ----A---- C:\Windows\system32\msv1_0.dll 2014-07-09 02:49:39 ----A---- C:\Windows\system32\kerberos.dll 2014-07-09 02:49:38 ----A---- C:\Windows\system32\wdigest.dll 2014-07-09 02:49:38 ----A---- C:\Windows\system32\TSpkg.dll 2014-07-09 02:49:38 ----A---- C:\Windows\system32\ncrypt.dll 2014-07-09 02:49:38 ----A---- C:\Windows\system32\credssp.dll 2014-07-09 02:49:33 ----A---- C:\Windows\system32\aepdu.dll 2014-07-09 02:49:31 ----A---- C:\Windows\system32\aeinv.dll 2014-07-09 02:49:26 ----A---- C:\Windows\system32\lsasrv.dll ======List of files/folders modified in the last 1 month====== 2014-08-03 12:15:21 ----D---- C:\Windows\Prefetch 2014-08-03 12:15:07 ----RD---- C:\Program Files 2014-08-03 12:14:28 ----D---- C:\Windows\Temp 2014-08-03 11:40:23 ----D---- C:\Windows\system32\config 2014-08-02 23:08:48 ----D---- C:\Users\cato\AppData\Roaming\vlc 2014-08-02 14:11:35 ----D---- C:\Windows\rescache 2014-08-02 10:41:24 ----D---- C:\Windows\winsxs 2014-08-02 10:41:02 ----D---- C:\Windows\system32\nl-NL 2014-08-02 10:41:02 ----D---- C:\Windows\System32 2014-08-02 10:40:58 ----D---- C:\Program Files\Microsoft Silverlight 2014-08-01 16:21:51 ----SHD---- C:\Windows\Installer 2014-08-01 16:21:45 ----SHD---- C:\Config.Msi 2014-08-01 16:18:43 ----SHD---- C:\System Volume Information 2014-08-01 10:41:37 ----D---- C:\Windows\system32\catroot 2014-08-01 10:39:29 ----RD---- C:\Program Files\Skype 2014-07-13 14:06:52 ----D---- C:\Program Files\Common Files 2014-07-13 13:14:49 ----HD---- C:\ProgramData 2014-07-13 12:58:02 ----D---- C:\Windows\system32\catroot2 2014-07-11 16:04:08 ----D---- C:\Windows\inf 2014-07-11 16:04:08 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-07-09 20:36:33 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2014-07-09 10:58:30 ----D---- C:\Program Files\Windows Journal 2014-07-09 10:58:28 ----D---- C:\Windows\system32\en-US 2014-07-09 10:58:27 ----D---- C:\Program Files\Internet Explorer 2014-07-09 10:58:26 ----D---- C:\Windows\ehome 2014-07-09 10:58:24 ----D---- C:\Windows\system32\drivers 2014-07-09 10:58:24 ----D---- C:\Windows\system32\Dism 2014-07-09 10:58:23 ----SD---- C:\Windows\system32\CompatTel 2014-07-09 06:46:32 ----D---- C:\Windows\system32\MRT 2014-07-09 06:44:15 ----A---- C:\Windows\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 231960] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 104264] R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-02-11 9036800] R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x86.sys [2009-07-14 50688] S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432] R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176] R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520] R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 22216] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 279776] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-12-17 116648] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-12-17 116648] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-06-19 108032] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-12-17 1343400] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF----------------- hoi hier het logje

beste moderators gisteren opende ik een bestand van lees mij met klad blok. kort daarna werden alle pictogrammen op de computer een kladblok. Als ik later een bestand opende met adobe reader werden alle pictogrammen een adobe reader. Dat lees mij bestand stond bij een binnengehaalde film. Betreft het hier een virus of een systeem fout. Het betreft een progamma van windows 7. Het progamma kan ook geen herstelpunt vinden om een systeemherstel te bewerkstelligen. weten jullie een oplossing? alvast bedankt:rofl:

AdwCleaner v3.011 - Report created 05/11/2013 at 23:17:28 # Updated 03/11/2013 by Xplode # Operating System : Microsoft Windows XP Service Pack 3 (32 bits) # Username : Eigenaar - CATO # Running from : C:\Program Files\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6E4C89CF-3061-4EE4-B22A-B7A8AAEA5CB3} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{090ACFA1-1580-11D1-8AC0-00C0F00910F9} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B4E90801-B83C-11D0-8B40-00C0F00AE35A} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKLM\Software\systweak Key Deleted : HKLM\Software\Vittalia Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Vittalia ***** [ Browsers ] ***** -\\ Internet Explorer v8.0.6001.18702 ************************* AdwCleaner[R0].txt - [1620 octets] - [05/11/2013 23:04:01] AdwCleaner[s0].txt - [1567 octets] - [05/11/2013 23:17:28] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1627 octets] ########## AdwCleaner[S0].txt

hier het volgende logje. Zoek.exe Version 4.0.0.5 Updated 26-October-2013 Tool run by Eigenaar on ma 04-11-2013 at 19:52:29,96. Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Program Files\zoek\zoek.scr [script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2013-10-30-211351.log 84341 bytes C:\zoek-results2013-11-03-141020.log 53491 bytes ==== Running Processes ====================== C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Documents and Settings\Eigenaar\Application Data\Dropbox\bin\Dropbox.exe svchost.exe C:\WINDOWS\System32\svchost.exe -k HTTPFilter C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\mqsvc.exe C:\WINDOWS\system32\mqtgsvc.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1409082233-1417001333-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" "DWQueuedReporting"="c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [HKEY_USERS\S-1-5-21-1409082233-1417001333-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe /background" "EPSON Stylus DX7400 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU C:\DOCUME~1\Eigenaar\LOCALS~1\Temp\E_S2.tmp /EF HKCU" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" "DWQueuedReporting"="c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "NeroCheck"="C:\WINDOWS\system32\NeroCheck.exe" "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "HDAudDeck"="C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "MsmqIntCert"="regsvr32 /s mqrt.dll" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe /background" "EPSON Stylus DX7400 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU C:\DOCUME~1\Eigenaar\LOCALS~1\Temp\E_S2.tmp /EF HKCU" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] ==== Startup Folders ====================== 2013-05-12 12:57:38 1037 ----a-w- C:\Documents and Settings\Eigenaar\Menu Start\Programma's\Opstarten\Dropbox.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-10-2013 14:47] C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job --ah----- C:\Program Files\Microsoft Security Client\MpCmdRun.exe [12-08-2013 09:12] C:\WINDOWS\tasks\User_Feed_Synchronization-{D74943D8-21E6-47EA-8123-F1097F0A9F19}.job --ah----- C:\WINDOWS\system32\msfeedssync.exe [08-03-2009 04:31] ==== HijackThis Entries ====================== R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1 O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU "C:\DOCUME~1\Eigenaar\LOCALS~1\Temp\E_S2.tmp" /EF "HKCU" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Dropbox.lnk = C:\Documents and Settings\Eigenaar\Application Data\Dropbox\bin\Dropbox.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000 O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1292099857546 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1357471007078 O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe ==== Empty IE Cache ====================== C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\Eigenaar\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\DOCUME~1\Eigenaar\LOCALS~1\Temp successfully emptied ==== Deleting Files / Folders ====================== "C:\Documents and Settings\Eigenaar\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on ma 04-11-2013 at 20:00:06,18 =====================

[TABLE=width: 500] [TR] [TD]:dong:Zoek.exe Version 4.0.0.5 Updated 26-October-2013 Tool run by Eigenaar on zo 03-11-2013 at 15:03:39,98. Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Program Files\zoek\zoek.scr [script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2013-10-30-211351.log 84341 bytes ==== Running Processes ====================== C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Documents and Settings\Eigenaar\Application Data\Dropbox\bin\Dropbox.exe svchost.exe C:\WINDOWS\System32\svchost.exe -k HTTPFilter C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\mqsvc.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\WINDOWS\system32\mqtgsvc.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" "DWQueuedReporting"="c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [HKEY_USERS\S-1-5-21-1409082233-1417001333-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe /background" "EPSON Stylus DX7400 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU C:\DOCUME~1\Eigenaar\LOCALS~1\Temp\E_S2.tmp /EF HKCU" "vbc"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe" "vbc2091943158"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1824901191.exe" "vbc1978008113"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1681477597.exe" "vbc659796422"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2042403158.exe" "vbc1188681060"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\717116944.exe" "vbc2144488421"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\721940281.exe" "vbc1897047118"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1655530214.exe" "vbc1406516084"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\811134311.exe" "vbc2146605980"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852381032.exe" "vbc1619121671"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\374251023.exe" "vbc387360606"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\964367574.exe" "vbc1908720176"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1557789078.exe" "vbc859871894"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\327002241.exe" "vbc683366727"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\896706536.exe" "vbc194409582"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1138889941.exe" "vbc1856775642"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1383045744.exe" "vbc1894768832"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1157442044.exe" "vbc376369054"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\562181813.exe" "vbc1549809314"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1482248998.exe" "vbc443139789"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1142626703.exe" "vbc536878382"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1643539079.exe" "vbc386067949"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\490176976.exe" "vbc1647837715"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1939377899.exe" "vbc1541359411"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1906560648.exe" "vbc579348746"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2030925814.exe" "vbc523397506"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1237887659.exe" "vbc1736904694"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1533653247.exe" "vbc431144831"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\491591870.exe" "vbc867453811"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\827837282.exe" "vbc362179912"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\106673662.exe" "vbc141212277"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1198347355.exe" "vbc1570913753"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1518660744.exe" "vbc217282495"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\711157075.exe" "vbc930052486"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\250968500.exe" "vbc983456898"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\839453645.exe" "vbc174217035"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\477185117.exe" "vbc211116212"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928039264.exe" "vbc254249658"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852351187.exe" "vbc505210561"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2024858668.exe" "vbc1424007180"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\28147166.exe" "vbc1838676473"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\132298160.exe" "vbc1686936604"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2073073660.exe" "vbc238358703"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891649429.exe" "vbc466953723"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1622483677.exe" "vbc719314804"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\38460537.exe" "vbc293405591"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891994454.exe" "vbc506346791"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\568293099.exe" "vbc354556048"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\913028986.exe" "vbc1059283263"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\450366581.exe" "vbc1171521429"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\472853614.exe" "vbc1954838765"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942997199.exe" "vbc291473079"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1354312856.exe" "vbc1676232298"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1333413286.exe" "vbc1233324698"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\517901380.exe" "vbc167582152"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1590732147.exe" "vbc1429507883"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1546409559.exe" "vbc1851204417"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\974914798.exe" "vbc311787921"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1374750171.exe" "vbc2068992780"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1452379947.exe" "vbc1320108342"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1766659286.exe" "vbc1628439579"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1908075508.exe" "vbc293614927"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1379096340.exe" "vbc1590515389"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1307499371.exe" "vbc2032646007"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\560592093.exe" "vbc1811690885"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1580963075.exe" "vbc573892755"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1282968944.exe" "vbc873731670"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1265777514.exe" "vbc415731410"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\530800959.exe" "vbc1440370814"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\725216426.exe" "vbc1389169711"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1244149229.exe" "vbc1307364733"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\247293727.exe" "vbc1381944077"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\560430003.exe" "vbc795855333"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942850209.exe" "vbc1955463346"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1963607394.exe" "vbc1934098502"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1769340129.exe" "vbc1464936860"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\22385575.exe" "vbc2143145257"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\544477500.exe" "vbc239725996"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1887855002.exe" "vbc2038121375"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\879434461.exe" "vbc1869056366"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1120501010.exe" "vbc847438858"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1929248970.exe" "vbc123153201"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1325674959.exe" "vbc1491969418"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1679781972.exe" "vbc142453261"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\894359434.exe" "vbc76331665"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\265122022.exe" "vbc1288993052"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\617703569.exe" "vbc1095730446"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\641273915.exe" "vbc1570519057"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\280945533.exe" "vbc510271942"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\796643385.exe" "vbc1979143139"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1973374628.exe" "vbc1182697898"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2084655848.exe" "vbc1927990452"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\223736770.exe" "vbc1765496179"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\606806932.exe" "vbc1395905051"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1023805580.exe" "vbc1833387593"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1167377095.exe" "vbc1020560345"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2028353766.exe" "vbc55061111"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1979150877.exe" "vbc2064628390"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\561578058.exe" "vbc771109202"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\147980028.exe" "vbc100858379"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\189723825.exe" "vbc1619836755"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1110523802.exe" "vbc1967861477"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\631310266.exe" "vbc555558107"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\41075000.exe" "vbc722414696"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\478590523.exe" "vbc124904578"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1539716802.exe" "vbc347633813"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1875880299.exe" "vbc562405581"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\479722850.exe" "vbc390823457"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\929916921.exe" "vbc372082090"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\656691230.exe" "vbc707408742"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1616324933.exe" "vbc2042813338"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1700493749.exe" "vbc457986266"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2139521729.exe" "vbc861670088"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1564851165.exe" "vbc2111761433"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1468198040.exe" "vbc681772049"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\827192395.exe" "vbc213578226"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2009209667.exe" "vbc676310805"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\887123043.exe" "vbc2091379466"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1306130374.exe" "vbc1405151241"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\752914268.exe" "vbc1002102434"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\900019294.exe" "vbc917322729"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\896604422.exe" "vbc720914503"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1392086522.exe" "vbc615535643"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\342978580.exe" "vbc833687458"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1805944475.exe" "vbc1234463327"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1884376009.exe" "vbc1363280320"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1390571556.exe" "vbc2026959853"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2018483793.exe" "vbc975216105"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1492867807.exe" "vbc1494768918"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1072151581.exe" "vbc576478874"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\63490310.exe" "vbc1397711074"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\959066471.exe" "vbc939396727"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1056894661.exe" "vbc1146080217"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1975788143.exe" "vbc273683134"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\375559732.exe" "vbc449832729"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1075162931.exe" "vbc144589114"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\457321773.exe" "vbc1224825673"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\283533553.exe" "vbc2085256060"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\271931877.exe" "vbc170100575"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1287139816.exe" "vbc573629799"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1005614383.exe" "vbc1042610005"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\718561185.exe" "vbc959705840"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\179281102.exe" "vbc1516537000"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1122141872.exe" "vbc1313410217"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1658582548.exe" "vbc109755253"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\907074605.exe" "vbc486416136"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" "DWQueuedReporting"="c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "NeroCheck"="C:\WINDOWS\system32\NeroCheck.exe" "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "HDAudDeck"="C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "MsmqIntCert"="regsvr32 /s mqrt.dll" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe /background" "EPSON Stylus DX7400 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU C:\DOCUME~1\Eigenaar\LOCALS~1\Temp\E_S2.tmp /EF HKCU" "vbc"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe" "vbc2091943158"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1824901191.exe" "vbc1978008113"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1681477597.exe" "vbc659796422"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2042403158.exe" "vbc1188681060"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\717116944.exe" "vbc2144488421"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\721940281.exe" "vbc1897047118"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1655530214.exe" "vbc1406516084"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\811134311.exe" "vbc2146605980"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852381032.exe" "vbc1619121671"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\374251023.exe" "vbc387360606"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\964367574.exe" "vbc1908720176"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1557789078.exe" "vbc859871894"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\327002241.exe" "vbc683366727"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\896706536.exe" "vbc194409582"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1138889941.exe" "vbc1856775642"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1383045744.exe" "vbc1894768832"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1157442044.exe" "vbc376369054"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\562181813.exe" "vbc1549809314"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1482248998.exe" "vbc443139789"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1142626703.exe" "vbc536878382"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1643539079.exe" "vbc386067949"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\490176976.exe" "vbc1647837715"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1939377899.exe" "vbc1541359411"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1906560648.exe" "vbc579348746"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2030925814.exe" "vbc523397506"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1237887659.exe" "vbc1736904694"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1533653247.exe" "vbc431144831"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\491591870.exe" "vbc867453811"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\827837282.exe" "vbc362179912"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\106673662.exe" "vbc141212277"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1198347355.exe" "vbc1570913753"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1518660744.exe" "vbc217282495"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\711157075.exe" "vbc930052486"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\250968500.exe" "vbc983456898"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\839453645.exe" "vbc174217035"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\477185117.exe" "vbc211116212"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928039264.exe" "vbc254249658"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852351187.exe" "vbc505210561"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2024858668.exe" "vbc1424007180"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\28147166.exe" "vbc1838676473"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\132298160.exe" "vbc1686936604"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2073073660.exe" "vbc238358703"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891649429.exe" "vbc466953723"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1622483677.exe" "vbc719314804"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\38460537.exe" "vbc293405591"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891994454.exe" "vbc506346791"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\568293099.exe" "vbc354556048"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\913028986.exe" "vbc1059283263"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\450366581.exe" "vbc1171521429"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\472853614.exe" "vbc1954838765"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942997199.exe" "vbc291473079"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1354312856.exe" "vbc1676232298"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1333413286.exe" "vbc1233324698"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\517901380.exe" "vbc167582152"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1590732147.exe" "vbc1429507883"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1546409559.exe" "vbc1851204417"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\974914798.exe" "vbc311787921"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1374750171.exe" "vbc2068992780"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1452379947.exe" "vbc1320108342"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1766659286.exe" "vbc1628439579"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1908075508.exe" "vbc293614927"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1379096340.exe" "vbc1590515389"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1307499371.exe" "vbc2032646007"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\560592093.exe" "vbc1811690885"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1580963075.exe" "vbc573892755"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1282968944.exe" "vbc873731670"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1265777514.exe" "vbc415731410"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\530800959.exe" "vbc1440370814"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\725216426.exe" "vbc1389169711"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1244149229.exe" "vbc1307364733"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\247293727.exe" "vbc1381944077"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\560430003.exe" "vbc795855333"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942850209.exe" "vbc1955463346"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1963607394.exe" "vbc1934098502"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1769340129.exe" "vbc1464936860"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\22385575.exe" "vbc2143145257"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\544477500.exe" "vbc239725996"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1887855002.exe" "vbc2038121375"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\879434461.exe" "vbc1869056366"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1120501010.exe" "vbc847438858"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1929248970.exe" "vbc123153201"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1325674959.exe" "vbc1491969418"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1679781972.exe" "vbc142453261"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\894359434.exe" "vbc76331665"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\265122022.exe" "vbc1288993052"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\617703569.exe" "vbc1095730446"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\641273915.exe" "vbc1570519057"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\280945533.exe" "vbc510271942"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\796643385.exe" "vbc1979143139"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1973374628.exe" "vbc1182697898"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2084655848.exe" "vbc1927990452"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\223736770.exe" "vbc1765496179"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\606806932.exe" "vbc1395905051"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1023805580.exe" "vbc1833387593"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1167377095.exe" "vbc1020560345"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2028353766.exe" "vbc55061111"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1979150877.exe" "vbc2064628390"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\561578058.exe" "vbc771109202"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\147980028.exe" "vbc100858379"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\189723825.exe" "vbc1619836755"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1110523802.exe" "vbc1967861477"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\631310266.exe" "vbc555558107"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\41075000.exe" "vbc722414696"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\478590523.exe" "vbc124904578"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1539716802.exe" "vbc347633813"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1875880299.exe" "vbc562405581"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\479722850.exe" "vbc390823457"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\929916921.exe" "vbc372082090"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\656691230.exe" "vbc707408742"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1616324933.exe" "vbc2042813338"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1700493749.exe" "vbc457986266"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2139521729.exe" "vbc861670088"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1564851165.exe" "vbc2111761433"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1468198040.exe" "vbc681772049"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\827192395.exe" "vbc213578226"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2009209667.exe" "vbc676310805"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\887123043.exe" "vbc2091379466"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1306130374.exe" "vbc1405151241"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\752914268.exe" "vbc1002102434"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\900019294.exe" "vbc917322729"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\896604422.exe" "vbc720914503"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1392086522.exe" "vbc615535643"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\342978580.exe" "vbc833687458"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1805944475.exe" "vbc1234463327"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1884376009.exe" "vbc1363280320"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1390571556.exe" "vbc2026959853"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2018483793.exe" "vbc975216105"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1492867807.exe" "vbc1494768918"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1072151581.exe" "vbc576478874"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\63490310.exe" "vbc1397711074"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\959066471.exe" "vbc939396727"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1056894661.exe" "vbc1146080217"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1975788143.exe" "vbc273683134"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\375559732.exe" "vbc449832729"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1075162931.exe" "vbc144589114"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\457321773.exe" "vbc1224825673"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\283533553.exe" "vbc2085256060"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\271931877.exe" "vbc170100575"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1287139816.exe" "vbc573629799"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1005614383.exe" "vbc1042610005"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\718561185.exe" "vbc959705840"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\179281102.exe" "vbc1516537000"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1122141872.exe" "vbc1313410217"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1658582548.exe" "vbc109755253"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\907074605.exe" "vbc486416136"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] ==== Startup Folders ====================== 2013-05-12 12:57:38 1037 ----a-w- C:\Documents and Settings\Eigenaar\Menu Start\Programma's\Opstarten\Dropbox.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-10-2013 14:47] C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job --ah----- C:\Program Files\Microsoft Security Client\MpCmdRun.exe [12-08-2013 09:12] C:\WINDOWS\tasks\User_Feed_Synchronization-{D74943D8-21E6-47EA-8123-F1097F0A9F19}.job --ah----- C:\WINDOWS\system32\msfeedssync.exe [08-03-2009 04:31] ==== HijackThis Entries ====================== R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1 O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU "C:\DOCUME~1\Eigenaar\LOCALS~1\Temp\E_S2.tmp" /EF "HKCU" O4 - HKCU\..\Run: [vbc] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe O4 - HKCU\..\Run: [vbc2091943158] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1824901191.exe O4 - HKCU\..\Run: [vbc1978008113] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1681477597.exe O4 - HKCU\..\Run: [vbc659796422] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2042403158.exe O4 - HKCU\..\Run: [vbc1188681060] C:\Documents and Settings\Eigenaar\Local Settings\Temp\717116944.exe O4 - HKCU\..\Run: [vbc2144488421] C:\Documents and Settings\Eigenaar\Local Settings\Temp\721940281.exe O4 - HKCU\..\Run: [vbc1897047118] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1655530214.exe O4 - HKCU\..\Run: [vbc1406516084] C:\Documents and Settings\Eigenaar\Local Settings\Temp\811134311.exe O4 - HKCU\..\Run: [vbc2146605980] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852381032.exe O4 - HKCU\..\Run: [vbc1619121671] C:\Documents and Settings\Eigenaar\Local Settings\Temp\374251023.exe O4 - HKCU\..\Run: [vbc387360606] C:\Documents and Settings\Eigenaar\Local Settings\Temp\964367574.exe O4 - HKCU\..\Run: [vbc1908720176] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1557789078.exe O4 - HKCU\..\Run: [vbc859871894] C:\Documents and Settings\Eigenaar\Local Settings\Temp\327002241.exe O4 - HKCU\..\Run: [vbc683366727] C:\Documents and Settings\Eigenaar\Local Settings\Temp\896706536.exe O4 - HKCU\..\Run: [vbc194409582] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1138889941.exe O4 - HKCU\..\Run: [vbc1856775642] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1383045744.exe O4 - HKCU\..\Run: [vbc1894768832] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1157442044.exe O4 - HKCU\..\Run: [vbc376369054] C:\Documents and Settings\Eigenaar\Local Settings\Temp\562181813.exe O4 - HKCU\..\Run: [vbc1549809314] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1482248998.exe O4 - HKCU\..\Run: [vbc443139789] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1142626703.exe O4 - HKCU\..\Run: [vbc536878382] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1643539079.exe O4 - HKCU\..\Run: [vbc386067949] C:\Documents and Settings\Eigenaar\Local Settings\Temp\490176976.exe O4 - HKCU\..\Run: [vbc1647837715] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1939377899.exe O4 - HKCU\..\Run: [vbc1541359411] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1906560648.exe O4 - HKCU\..\Run: [vbc579348746] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2030925814.exe O4 - HKCU\..\Run: [vbc523397506] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1237887659.exe O4 - HKCU\..\Run: [vbc1736904694] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1533653247.exe O4 - HKCU\..\Run: [vbc431144831] C:\Documents and Settings\Eigenaar\Local Settings\Temp\491591870.exe O4 - HKCU\..\Run: [vbc867453811] C:\Documents and Settings\Eigenaar\Local Settings\Temp\827837282.exe O4 - HKCU\..\Run: [vbc362179912] C:\Documents and Settings\Eigenaar\Local Settings\Temp\106673662.exe O4 - HKCU\..\Run: [vbc141212277] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1198347355.exe O4 - HKCU\..\Run: [vbc1570913753] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1518660744.exe O4 - HKCU\..\Run: [vbc217282495] C:\Documents and Settings\Eigenaar\Local Settings\Temp\711157075.exe O4 - HKCU\..\Run: [vbc930052486] C:\Documents and Settings\Eigenaar\Local Settings\Temp\250968500.exe O4 - HKCU\..\Run: [vbc983456898] C:\Documents and Settings\Eigenaar\Local Settings\Temp\839453645.exe O4 - HKCU\..\Run: [vbc174217035] C:\Documents and Settings\Eigenaar\Local Settings\Temp\477185117.exe O4 - HKCU\..\Run: [vbc211116212] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928039264.exe O4 - HKCU\..\Run: [vbc254249658] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852351187.exe O4 - HKCU\..\Run: [vbc505210561] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2024858668.exe O4 - HKCU\..\Run: [vbc1424007180] C:\Documents and Settings\Eigenaar\Local Settings\Temp\28147166.exe O4 - HKCU\..\Run: [vbc1838676473] C:\Documents and Settings\Eigenaar\Local Settings\Temp\132298160.exe O4 - HKCU\..\Run: [vbc1686936604] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2073073660.exe O4 - HKCU\..\Run: [vbc238358703] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891649429.exe O4 - HKCU\..\Run: [vbc466953723] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1622483677.exe O4 - HKCU\..\Run: [vbc719314804] C:\Documents and Settings\Eigenaar\Local Settings\Temp\38460537.exe O4 - HKCU\..\Run: [vbc293405591] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891994454.exe O4 - HKCU\..\Run: [vbc506346791] C:\Documents and Settings\Eigenaar\Local Settings\Temp\568293099.exe O4 - HKCU\..\Run: [vbc354556048] C:\Documents and Settings\Eigenaar\Local Settings\Temp\913028986.exe O4 - HKCU\..\Run: [vbc1059283263] C:\Documents and Settings\Eigenaar\Local Settings\Temp\450366581.exe O4 - HKCU\..\Run: [vbc1171521429] C:\Documents and Settings\Eigenaar\Local Settings\Temp\472853614.exe O4 - HKCU\..\Run: [vbc1954838765] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942997199.exe O4 - HKCU\..\Run: [vbc291473079] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1354312856.exe O4 - HKCU\..\Run: [vbc1676232298] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1333413286.exe O4 - HKCU\..\Run: [vbc1233324698] C:\Documents and Settings\Eigenaar\Local Settings\Temp\517901380.exe O4 - HKCU\..\Run: [vbc167582152] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1590732147.exe O4 - HKCU\..\Run: [vbc1429507883] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1546409559.exe O4 - HKCU\..\Run: [vbc1851204417] C:\Documents and Settings\Eigenaar\Local Settings\Temp\974914798.exe O4 - HKCU\..\Run: [vbc311787921] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1374750171.exe O4 - HKCU\..\Run: [vbc2068992780] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1452379947.exe O4 - HKCU\..\Run: [vbc1320108342] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1766659286.exe O4 - HKCU\..\Run: [vbc1628439579] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1908075508.exe O4 - HKCU\..\Run: [vbc293614927] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1379096340.exe O4 - HKCU\..\Run: [vbc1590515389] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1307499371.exe O4 - HKCU\..\Run: [vbc2032646007] C:\Documents and Settings\Eigenaar\Local Settings\Temp\560592093.exe O4 - HKCU\..\Run: [vbc1811690885] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1580963075.exe O4 - HKCU\..\Run: [vbc573892755] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1282968944.exe O4 - HKCU\..\Run: [vbc873731670] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1265777514.exe O4 - HKCU\..\Run: [vbc415731410] C:\Documents and Settings\Eigenaar\Local Settings\Temp\530800959.exe O4 - HKCU\..\Run: [vbc1440370814] C:\Documents and Settings\Eigenaar\Local Settings\Temp\725216426.exe O4 - HKCU\..\Run: [vbc1389169711] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1244149229.exe O4 - HKCU\..\Run: [vbc1307364733] C:\Documents and Settings\Eigenaar\Local Settings\Temp\247293727.exe O4 - HKCU\..\Run: [vbc1381944077] C:\Documents and Settings\Eigenaar\Local Settings\Temp\560430003.exe O4 - HKCU\..\Run: [vbc795855333] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942850209.exe O4 - HKCU\..\Run: [vbc1955463346] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1963607394.exe O4 - HKCU\..\Run: [vbc1934098502] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1769340129.exe O4 - HKCU\..\Run: [vbc1464936860] C:\Documents and Settings\Eigenaar\Local Settings\Temp\22385575.exe O4 - HKCU\..\Run: [vbc2143145257] C:\Documents and Settings\Eigenaar\Local Settings\Temp\544477500.exe O4 - HKCU\..\Run: [vbc239725996] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1887855002.exe O4 - HKCU\..\Run: [vbc2038121375] C:\Documents and Settings\Eigenaar\Local Settings\Temp\879434461.exe O4 - HKCU\..\Run: [vbc1869056366] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1120501010.exe O4 - HKCU\..\Run: [vbc847438858] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1929248970.exe O4 - HKCU\..\Run: [vbc123153201] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1325674959.exe O4 - HKCU\..\Run: [vbc1491969418] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1679781972.exe O4 - HKCU\..\Run: [vbc142453261] C:\Documents and Settings\Eigenaar\Local Settings\Temp\894359434.exe O4 - HKCU\..\Run: [vbc76331665] C:\Documents and Settings\Eigenaar\Local Settings\Temp\265122022.exe O4 - HKCU\..\Run: [vbc1288993052] C:\Documents and Settings\Eigenaar\Local Settings\Temp\617703569.exe O4 - HKCU\..\Run: [vbc1095730446] C:\Documents and Settings\Eigenaar\Local Settings\Temp\641273915.exe O4 - HKCU\..\Run: [vbc1570519057] C:\Documents and Settings\Eigenaar\Local Settings\Temp\280945533.exe O4 - HKCU\..\Run: [vbc510271942] C:\Documents and Settings\Eigenaar\Local Settings\Temp\796643385.exe O4 - HKCU\..\Run: [vbc1979143139] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1973374628.exe O4 - HKCU\..\Run: [vbc1182697898] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2084655848.exe O4 - HKCU\..\Run: [vbc1927990452] C:\Documents and Settings\Eigenaar\Local Settings\Temp\223736770.exe O4 - HKCU\..\Run: [vbc1765496179] C:\Documents and Settings\Eigenaar\Local Settings\Temp\606806932.exe O4 - HKCU\..\Run: [vbc1395905051] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1023805580.exe O4 - HKCU\..\Run: [vbc1833387593] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1167377095.exe O4 - HKCU\..\Run: [vbc1020560345] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2028353766.exe O4 - HKCU\..\Run: [vbc55061111] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1979150877.exe O4 - HKCU\..\Run: [vbc2064628390] C:\Documents and Settings\Eigenaar\Local Settings\Temp\561578058.exe O4 - HKCU\..\Run: [vbc771109202] C:\Documents and Settings\Eigenaar\Local Settings\Temp\147980028.exe O4 - HKCU\..\Run: [vbc100858379] C:\Documents and Settings\Eigenaar\Local Settings\Temp\189723825.exe O4 - HKCU\..\Run: [vbc1619836755] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1110523802.exe O4 - HKCU\..\Run: [vbc1967861477] C:\Documents and Settings\Eigenaar\Local Settings\Temp\631310266.exe O4 - HKCU\..\Run: [vbc555558107] C:\Documents and Settings\Eigenaar\Local Settings\Temp\41075000.exe O4 - HKCU\..\Run: [vbc722414696] C:\Documents and Settings\Eigenaar\Local Settings\Temp\478590523.exe O4 - HKCU\..\Run: [vbc124904578] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1539716802.exe O4 - HKCU\..\Run: [vbc347633813] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1875880299.exe O4 - HKCU\..\Run: [vbc562405581] C:\Documents and Settings\Eigenaar\Local Settings\Temp\479722850.exe O4 - HKCU\..\Run: [vbc390823457] C:\Documents and Settings\Eigenaar\Local Settings\Temp\929916921.exe O4 - HKCU\..\Run: [vbc372082090] C:\Documents and Settings\Eigenaar\Local Settings\Temp\656691230.exe O4 - HKCU\..\Run: [vbc707408742] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1616324933.exe O4 - HKCU\..\Run: [vbc2042813338] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1700493749.exe O4 - HKCU\..\Run: [vbc457986266] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2139521729.exe O4 - HKCU\..\Run: [vbc861670088] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1564851165.exe O4 - HKCU\..\Run: [vbc2111761433] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1468198040.exe O4 - HKCU\..\Run: [vbc681772049] C:\Documents and Settings\Eigenaar\Local Settings\Temp\827192395.exe O4 - HKCU\..\Run: [vbc213578226] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2009209667.exe O4 - HKCU\..\Run: [vbc676310805] C:\Documents and Settings\Eigenaar\Local Settings\Temp\887123043.exe O4 - HKCU\..\Run: [vbc2091379466] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1306130374.exe O4 - HKCU\..\Run: [vbc1405151241] C:\Documents and Settings\Eigenaar\Local Settings\Temp\752914268.exe O4 - HKCU\..\Run: [vbc1002102434] C:\Documents and Settings\Eigenaar\Local Settings\Temp\900019294.exe O4 - HKCU\..\Run: [vbc917322729] C:\Documents and Settings\Eigenaar\Local Settings\Temp\896604422.exe O4 - HKCU\..\Run: [vbc720914503] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1392086522.exe O4 - HKCU\..\Run: [vbc615535643] C:\Documents and Settings\Eigenaar\Local Settings\Temp\342978580.exe O4 - HKCU\..\Run: [vbc833687458] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1805944475.exe O4 - HKCU\..\Run: [vbc1234463327] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1884376009.exe O4 - HKCU\..\Run: [vbc1363280320] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1390571556.exe O4 - HKCU\..\Run: [vbc2026959853] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2018483793.exe O4 - HKCU\..\Run: [vbc975216105] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1492867807.exe O4 - HKCU\..\Run: [vbc1494768918] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1072151581.exe O4 - HKCU\..\Run: [vbc576478874] C:\Documents and Settings\Eigenaar\Local Settings\Temp\63490310.exe O4 - HKCU\..\Run: [vbc1397711074] C:\Documents and Settings\Eigenaar\Local Settings\Temp\959066471.exe O4 - HKCU\..\Run: [vbc939396727] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1056894661.exe O4 - HKCU\..\Run: [vbc1146080217] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1975788143.exe O4 - HKCU\..\Run: [vbc273683134] C:\Documents and Settings\Eigenaar\Local Settings\Temp\375559732.exe O4 - HKCU\..\Run: [vbc449832729] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1075162931.exe O4 - HKCU\..\Run: [vbc144589114] C:\Documents and Settings\Eigenaar\Local Settings\Temp\457321773.exe O4 - HKCU\..\Run: [vbc1224825673] C:\Documents and Settings\Eigenaar\Local Settings\Temp\283533553.exe O4 - HKCU\..\Run: [vbc2085256060] C:\Documents and Settings\Eigenaar\Local Settings\Temp\271931877.exe O4 - HKCU\..\Run: [vbc170100575] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1287139816.exe O4 - HKCU\..\Run: [vbc573629799] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1005614383.exe O4 - HKCU\..\Run: [vbc1042610005] C:\Documents and Settings\Eigenaar\Local Settings\Temp\718561185.exe O4 - HKCU\..\Run: [vbc959705840] C:\Documents and Settings\Eigenaar\Local Settings\Temp\179281102.exe O4 - HKCU\..\Run: [vbc1516537000] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1122141872.exe O4 - HKCU\..\Run: [vbc1313410217] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1658582548.exe O4 - HKCU\..\Run: [vbc109755253] C:\Documents and Settings\Eigenaar\Local Settings\Temp\907074605.exe O4 - HKCU\..\Run: [vbc486416136] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Dropbox.lnk = C:\Documents and Settings\Eigenaar\Application Data\Dropbox\bin\Dropbox.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000 O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1292099857546 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1357471007078 O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe ==== Empty IE Cache ====================== C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\Eigenaar\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\DOCUME~1\Eigenaar\LOCALS~1\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\Documents and Settings\Eigenaar\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on zo 03-11-2013 at 15:10:20,12 ====================== [/TD] [TD][/TD] [/TR] [TR] [TD][/TD] [TD][/TD] [/TR] [TR] [TD][/TD] [TD][/TD] [/TR] [/TABLE]

hoi kweezie wabbit zo te zien is het kwalijke bestandje er uit. de computer start nu ook sneller op, en bij het cpu gebruik staat nu ook 0% i.p.v. 50 %. nog hartelijk dank hiervoor. de paashaas

hoi ik zie dat het toch is goed gekomen, mijn excuus, de paashaas.

hoi kweezie wabbit nog bedankt voor je bericht hierbij het logje Zoek.exe Version 4.0.0.5 Updated 26-October-2013 Tool run by Eigenaar on wo 30-10-2013 at 18:15:52,03. Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Documents and Settings\Eigenaar\Downloads\zoek\zoek.scr [script inserted] [Checkboxes used] ==== Running Processes ====================== C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\igfxsrvc.exe svchost.exe C:\WINDOWS\System32\svchost.exe -k HTTPFilter C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\mqsvc.exe C:\WINDOWS\system32\mqtgsvc.exe C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Documents and Settings\Eigenaar\Local Settings\Temp\907074605.exe C:\Documents and Settings\Eigenaar\Application Data\Dropbox\bin\Dropbox.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vbc.exe ==== System Restore Info ====================== 30-10-2013 18:20:49 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== 7-Zip 9.20 ABBYY FineReader 6.0 Sprint Adobe Flash Player 11 ActiveX Adobe Reader 9.5.4 - Nederlands Adobe Reader XI (11.0.05) - Nederlands Ahead Nero Burning ROM Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver Beveiligingsupdate for Windows XP (KB941569) Beveiligingsupdate voor Microsoft Windows (KB2564958) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2360131) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2416400) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2482017) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2497640) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2510531) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2530548) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2544521) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2559049) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2586448) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2618444) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2647516) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2675157) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2699988) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2722913) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2744842) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2761465) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2792100) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2797052) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2799329) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2809289) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2817183) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2829530) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2838727) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2846071) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2847204) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2862772) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2870699) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2879017) Beveiligingsupdate voor Windows Internet Explorer 8 (KB971961) Beveiligingsupdate voor Windows Internet Explorer 8 (KB981332) Beveiligingsupdate voor Windows Internet Explorer 8 (KB982381) Beveiligingsupdate voor Windows Media Player (KB2834904) Beveiligingsupdate voor Windows Media Player 11 (KB954154) Beveiligingsupdate voor Windows XP (KB2079403) Beveiligingsupdate voor Windows XP (KB2115168) Beveiligingsupdate voor Windows XP (KB2121546) Beveiligingsupdate voor Windows XP (KB2124261) Beveiligingsupdate voor Windows XP (KB2229593) Beveiligingsupdate voor Windows XP (KB2259922) Beveiligingsupdate voor Windows XP (KB2279986) Beveiligingsupdate voor Windows XP (KB2286198) Beveiligingsupdate voor Windows XP (KB2290570) Beveiligingsupdate voor Windows XP (KB2296011) Beveiligingsupdate voor Windows XP (KB2296199) Beveiligingsupdate voor Windows XP (KB2347290) Beveiligingsupdate voor Windows XP (KB2360131) Beveiligingsupdate voor Windows XP (KB2360937) Beveiligingsupdate voor Windows XP (KB2387149) Beveiligingsupdate voor Windows XP (KB2393802) Beveiligingsupdate voor Windows XP (KB2412687) Beveiligingsupdate voor Windows XP (KB2419632) Beveiligingsupdate voor Windows XP (KB2423089) Beveiligingsupdate voor Windows XP (KB2436673) Beveiligingsupdate voor Windows XP (KB2440591) Beveiligingsupdate voor Windows XP (KB2443105) Beveiligingsupdate voor Windows XP (KB2476490) Beveiligingsupdate voor Windows XP (KB2476687) Beveiligingsupdate voor Windows XP (KB2478960) Beveiligingsupdate voor Windows XP (KB2478971) Beveiligingsupdate voor Windows XP (KB2479628) Beveiligingsupdate voor Windows XP (KB2479943) Beveiligingsupdate voor Windows XP (KB2481109) Beveiligingsupdate voor Windows XP (KB2483185) Beveiligingsupdate voor Windows XP (KB2485376) Beveiligingsupdate voor Windows XP (KB2485663) Beveiligingsupdate voor Windows XP (KB2503658) Beveiligingsupdate voor Windows XP (KB2503665) Beveiligingsupdate voor Windows XP (KB2506212) Beveiligingsupdate voor Windows XP (KB2506223) Beveiligingsupdate voor Windows XP (KB2507618) Beveiligingsupdate voor Windows XP (KB2507938) Beveiligingsupdate voor Windows XP (KB2508272) Beveiligingsupdate voor Windows XP (KB2508429) Beveiligingsupdate voor Windows XP (KB2509553) Beveiligingsupdate voor Windows XP (KB2511455) Beveiligingsupdate voor Windows XP (KB2524375) Beveiligingsupdate voor Windows XP (KB2535512) Beveiligingsupdate voor Windows XP (KB2536276-v2) Beveiligingsupdate voor Windows XP (KB2536276) Beveiligingsupdate voor Windows XP (KB2544893-v2) Beveiligingsupdate voor Windows XP (KB2544893) Beveiligingsupdate voor Windows XP (KB2555917) Beveiligingsupdate voor Windows XP (KB2562937) Beveiligingsupdate voor Windows XP (KB2566454) Beveiligingsupdate voor Windows XP (KB2567053) Beveiligingsupdate voor Windows XP (KB2567680) Beveiligingsupdate voor Windows XP (KB2570222) Beveiligingsupdate voor Windows XP (KB2570947) Beveiligingsupdate voor Windows XP (KB2584146) Beveiligingsupdate voor Windows XP (KB2585542) Beveiligingsupdate voor Windows XP (KB2592799) Beveiligingsupdate voor Windows XP (KB2598479) Beveiligingsupdate voor Windows XP (KB2603381) Beveiligingsupdate voor Windows XP (KB2618451) Beveiligingsupdate voor Windows XP (KB2619339) Beveiligingsupdate voor Windows XP (KB2620712) Beveiligingsupdate voor Windows XP (KB2621440) Beveiligingsupdate voor Windows XP (KB2624667) Beveiligingsupdate voor Windows XP (KB2631813) Beveiligingsupdate voor Windows XP (KB2633171) Beveiligingsupdate voor Windows XP (KB2639417) Beveiligingsupdate voor Windows XP (KB2641653) Beveiligingsupdate voor Windows XP (KB2646524) Beveiligingsupdate voor Windows XP (KB2647518) Beveiligingsupdate voor Windows XP (KB2653956) Beveiligingsupdate voor Windows XP (KB2655992) Beveiligingsupdate voor Windows XP (KB2659262) Beveiligingsupdate voor Windows XP (KB2660465) Beveiligingsupdate voor Windows XP (KB2661637) Beveiligingsupdate voor Windows XP (KB2676562) Beveiligingsupdate voor Windows XP (KB2685939) Beveiligingsupdate voor Windows XP (KB2686509) Beveiligingsupdate voor Windows XP (KB2691442) Beveiligingsupdate voor Windows XP (KB2695962) Beveiligingsupdate voor Windows XP (KB2698365) Beveiligingsupdate voor Windows XP (KB2705219) Beveiligingsupdate voor Windows XP (KB2707511) Beveiligingsupdate voor Windows XP (KB2709162) Beveiligingsupdate voor Windows XP (KB2712808) Beveiligingsupdate voor Windows XP (KB2718523) Beveiligingsupdate voor Windows XP (KB2719985) Beveiligingsupdate voor Windows XP (KB2723135) Beveiligingsupdate voor Windows XP (KB2724197) Beveiligingsupdate voor Windows XP (KB2727528) Beveiligingsupdate voor Windows XP (KB2731847) Beveiligingsupdate voor Windows XP (KB2753842-v2) Beveiligingsupdate voor Windows XP (KB2753842) Beveiligingsupdate voor Windows XP (KB2757638) Beveiligingsupdate voor Windows XP (KB2758857) Beveiligingsupdate voor Windows XP (KB2761226) Beveiligingsupdate voor Windows XP (KB2770660) Beveiligingsupdate voor Windows XP (KB2778344) Beveiligingsupdate voor Windows XP (KB2779030) Beveiligingsupdate voor Windows XP (KB2780091) Beveiligingsupdate voor Windows XP (KB2799494) Beveiligingsupdate voor Windows XP (KB2802968) Beveiligingsupdate voor Windows XP (KB2807986) Beveiligingsupdate voor Windows XP (KB2808735) Beveiligingsupdate voor Windows XP (KB2813170) Beveiligingsupdate voor Windows XP (KB2813345) Beveiligingsupdate voor Windows XP (KB2820197) Beveiligingsupdate voor Windows XP (KB2820917) Beveiligingsupdate voor Windows XP (KB2829361) Beveiligingsupdate voor Windows XP (KB2834886) Beveiligingsupdate voor Windows XP (KB2839229) Beveiligingsupdate voor Windows XP (KB2845187) Beveiligingsupdate voor Windows XP (KB2847311) Beveiligingsupdate voor Windows XP (KB2849470) Beveiligingsupdate voor Windows XP (KB2850851) Beveiligingsupdate voor Windows XP (KB2850869) Beveiligingsupdate voor Windows XP (KB2859537) Beveiligingsupdate voor Windows XP (KB2862330) Beveiligingsupdate voor Windows XP (KB2862335) Beveiligingsupdate voor Windows XP (KB2864063) Beveiligingsupdate voor Windows XP (KB2876217) Beveiligingsupdate voor Windows XP (KB2876315) Beveiligingsupdate voor Windows XP (KB2883150) Beveiligingsupdate voor Windows XP (KB923561) Beveiligingsupdate voor Windows XP (KB950762) Beveiligingsupdate voor Windows XP (KB950974) Beveiligingsupdate voor Windows XP (KB951376-v2) Beveiligingsupdate voor Windows XP (KB951748) Beveiligingsupdate voor Windows XP (KB952004) Beveiligingsupdate voor Windows XP (KB952954) Beveiligingsupdate voor Windows XP (KB953155) Beveiligingsupdate voor Windows XP (KB954459) Beveiligingsupdate voor Windows XP (KB956572) Beveiligingsupdate voor Windows XP (KB956744) Beveiligingsupdate voor Windows XP (KB956802) Beveiligingsupdate voor Windows XP (KB956803) Beveiligingsupdate voor Windows XP (KB956844) Beveiligingsupdate voor Windows XP (KB958644) Beveiligingsupdate voor Windows XP (KB958869) Beveiligingsupdate voor Windows XP (KB959426) Beveiligingsupdate voor Windows XP (KB960803) Beveiligingsupdate voor Windows XP (KB960859) Beveiligingsupdate voor Windows XP (KB961501) Beveiligingsupdate voor Windows XP (KB969059) Beveiligingsupdate voor Windows XP (KB970430) Beveiligingsupdate voor Windows XP (KB970483) Beveiligingsupdate voor Windows XP (KB971657) Beveiligingsupdate voor Windows XP (KB971961) Beveiligingsupdate voor Windows XP (KB972270) Beveiligingsupdate voor Windows XP (KB973507) Beveiligingsupdate voor Windows XP (KB973869) Beveiligingsupdate voor Windows XP (KB973904) Beveiligingsupdate voor Windows XP (KB974112) Beveiligingsupdate voor Windows XP (KB974318) Beveiligingsupdate voor Windows XP (KB974392) Beveiligingsupdate voor Windows XP (KB974571) Beveiligingsupdate voor Windows XP (KB975025) Beveiligingsupdate voor Windows XP (KB975467) Beveiligingsupdate voor Windows XP (KB975560) Beveiligingsupdate voor Windows XP (KB975562) Beveiligingsupdate voor Windows XP (KB975713) Beveiligingsupdate voor Windows XP (KB976323) Beveiligingsupdate voor Windows XP (KB977816) Beveiligingsupdate voor Windows XP (KB977914) Beveiligingsupdate voor Windows XP (KB978037) Beveiligingsupdate voor Windows XP (KB978338) Beveiligingsupdate voor Windows XP (KB978542) Beveiligingsupdate voor Windows XP (KB978601) Beveiligingsupdate voor Windows XP (KB978706) Beveiligingsupdate voor Windows XP (KB979309) Beveiligingsupdate voor Windows XP (KB979482) Beveiligingsupdate voor Windows XP (KB979687) Beveiligingsupdate voor Windows XP (KB980232) Beveiligingsupdate voor Windows XP (KB980436) Beveiligingsupdate voor Windows XP (KB981322) Beveiligingsupdate voor Windows XP (KB981349) Beveiligingsupdate voor Windows XP (KB981852) Beveiligingsupdate voor Windows XP (KB981957) Beveiligingsupdate voor Windows XP (KB981997) Beveiligingsupdate voor Windows XP (KB982132) Beveiligingsupdate voor Windows XP (KB982214) Beveiligingsupdate voor Windows XP (KB982665) Camera RAW Plug-In for EPSON Creativity Suite CCleaner CDBurnerXP Dropbox DVD Shrink 3.2 EPSON-Drucker-Software EPSON Attach To Email EPSON Copy Utility 3 EPSON Easy Photo Print EPSON File Manager EPSON Scan EPSON Scan Assistant EPSON Stylus CX7300_CX8300_DX7400_DX8400 Handboek EPSON Web-To-Page ExtractNow ffdshow v1.1.3996 [2011-10-13] GrabIt 1.7.2 Beta 6 (build 1008) Haali Media Splitter Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows XP (KB915800-v4) Hotfix for Windows XP (KB954550-v5) Hotfix voor Windows Media Player 11 (KB939683) Hotfix voor Windows XP (KB2158563) Hotfix voor Windows XP (KB2443685) Hotfix voor Windows XP (KB2570791) Hotfix voor Windows XP (KB2633952) Hotfix voor Windows XP (KB2756822) Hotfix voor Windows XP (KB2779562) Hotfix voor Windows XP (KB942288-v3) Hotfix voor Windows XP (KB952287) Hotfix voor Windows XP (KB961118) ImgBurn Intel® Graphics Media Accelerator Driver Java 7 Update 17 Java Auto Updater Java DB 10.5.3.0 Java SE Development Kit 6 Update 22 Malwarebytes Anti-Malware versie 1.75.0.1300 Medi@Show Medieval CUE Splitter Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Dutch Language Pack Microsoft .NET Framework 1.1 Security Update (KB2698023) Microsoft .NET Framework 1.1 Security Update (KB2833941) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - NLD Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - NLD Microsoft .NET Framework 3.5 Language Pack SP1 - nld Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile NLD Language Pack Microsoft .NET Framework 4 Extended Microsoft .NET Framework 4 Extended NLD Language Pack Microsoft Antimalware Service NL-NL Language Pack Microsoft Application Error Reporting Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Office XP Professional Microsoft Security Client Microsoft Security Client NL-NL Language Pack Microsoft Security Essentials Microsoft Silverlight Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 MSVCRT MultiPar versie 1.2.0.5 NewsLeecher v5.0 Final NVIDIA Drivers NVIDIA PhysX Pakket voor de provider van Microsoft Base-smartcardcryptografieservice Picasa 3 Platform PowerDVD QuickPar 0.9 Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576) Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407) Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188) Security Update for Microsoft .NET Framework 4 Extended (KB2416472) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft .NET Framework 4 Extended (KB2736428) Security Update for Microsoft .NET Framework 4 Extended (KB2742595) Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2) Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663) Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870) Security Update for Windows Search 4 - KB963093 Segoe UI Skype Click to Call SkypeT 6.1 Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD Taalpakket voor Microsoft .NET Framework 4 Extended - NLD Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2600217) Update voor Windows Internet Explorer 8 (KB2447568) Update voor Windows Internet Explorer 8 (KB2598845) Update voor Windows Internet Explorer 8 (KB2632503) Update voor Windows Internet Explorer 8 (KB976662) Update voor Windows XP (KB2141007) Update voor Windows XP (KB2345886) Update voor Windows XP (KB2467659) Update voor Windows XP (KB2492386) Update voor Windows XP (KB2541763) Update voor Windows XP (KB2616676-v2) Update voor Windows XP (KB2616676) Update voor Windows XP (KB2641690) Update voor Windows XP (KB2661254-v2) Update voor Windows XP (KB2718704) Update voor Windows XP (KB2736233) Update voor Windows XP (KB2749655) Update voor Windows XP (KB2863058) Update voor Windows XP (KB951978) Update voor Windows XP (KB955759) Update voor Windows XP (KB961503) Update voor Windows XP (KB967715) Update voor Windows XP (KB968389) Update voor Windows XP (KB971029) Update voor Windows XP (KB971737) Update voor Windows XP (KB973687) Update voor Windows XP (KB973815) VIA Platform apparaatbeheer Vittalia Installer VLC media player 2.0.6 WebEx Support Manager for Internet Explorer WebFldrs XP Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 8 Windows Live - Hulpprogramma voor uploaden Windows Live aanmeldhulp Windows Live Call Windows Live Communications Platform Windows Live Messenger Windows Management Framework Core Windows Media Format 11 runtime Windows Media Player 11 WinRAR 4.01 (32-bit) XML Paper Specification Shared Components Language Pack 1.0 ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Program Files\Vittalia deleted C:\Program Files\Common Files\DVDVideoSoft\bin deleted C:\Documents and Settings\Eigenaar\Application Data\Uniblue deleted C:\Documents and Settings\Eigenaar\Application Data\WinUpdtr deleted C:\Documents and Settings\Eigenaar\Application Data\Windows Search deleted C:\Documents and Settings\Eigenaar\Local Settings\Application Data\OpenCandy deleted C:\END deleted "C:\Documents and Settings\Eigenaar\Application Data\Vso" deleted ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2013-10-09 14:55:52 44854134A013F2F3281DB3C8644976C4 1374 ----a-w- C:\WINDOWS\imsins.BAK ====== C:\DOCUME~1\Eigenaar\LOCALS~1\Temp ==== 2013-10-30 17:01:07 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe 2013-10-30 15:50:10 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\907074605.exe 2013-10-29 22:29:02 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1658582548.exe 2013-10-29 18:45:16 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1122141872.exe 2013-10-29 16:45:20 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\179281102.exe 2013-10-29 04:19:08 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\718561185.exe 2013-10-28 09:53:53 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1005614383.exe 2013-10-28 09:09:33 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1287139816.exe 2013-10-28 09:03:52 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\271931877.exe 2013-10-28 08:42:09 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\283533553.exe 2013-10-27 08:09:53 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\457321773.exe 2013-10-26 23:17:49 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1075162931.exe 2013-10-26 23:00:29 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\375559732.exe 2013-10-26 22:07:24 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1975788143.exe 2013-10-26 21:14:01 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1056894661.exe 2013-10-26 15:23:07 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\959066471.exe 2013-10-26 07:58:52 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\63490310.exe 2013-10-25 19:59:09 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1072151581.exe 2013-10-24 16:20:37 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1492867807.exe 2013-10-21 17:37:50 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\2018483793.exe 2013-10-20 18:20:58 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1390571556.exe 2013-10-20 09:27:00 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1884376009.exe 2013-10-19 16:44:39 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1805944475.exe 2013-10-18 16:44:56 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\342978580.exe 2013-10-16 18:29:32 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1392086522.exe ====== Java Cache ===== ====== C:\WINDOWS\system32 ===== ====== C:\WINDOWS\system32\drivers ===== 2013-10-26 21:46:46 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2013-10-26 21:45:45 10285040 ----a-w- C:\Program Files\mbam-setup-1.75.0.1300.exe ======= C: ===== ====== C:\Documents and Settings\Eigenaar\Application Data ====== 2013-10-19 19:59:06 -------- d-----w- C:\Documents and Settings\Eigenaar\Application Data\ElevatedDiagnostics ====== C:\Documents and Settings\Eigenaar ====== ====== C: exe-files == 2013-10-30 17:01:07 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe 2013-10-30 15:50:10 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\907074605.exe 2013-10-29 22:29:02 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1658582548.exe 2013-10-29 18:45:16 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1122141872.exe 2013-10-29 16:45:20 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\179281102.exe 2013-10-29 04:19:08 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\718561185.exe 2013-10-28 09:53:53 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1005614383.exe 2013-10-28 09:09:33 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1287139816.exe 2013-10-28 09:03:52 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\271931877.exe 2013-10-28 08:42:09 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\283533553.exe 2013-10-27 08:45:31 8BBE63DF6DF1B042E8EFA88E3B358FC8 347304 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temporary Internet Files\Content.IE5\0NA0IOG8\MicrosoftFixit.IEAddon.WER.Run[1].exe 2013-10-27 08:09:53 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\457321773.exe 2013-10-26 23:17:49 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1075162931.exe 2013-10-26 23:00:29 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\375559732.exe 2013-10-26 22:07:24 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1975788143.exe 2013-10-26 21:45:45 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Program Files\mbam-setup-1.75.0.1300.exe 2013-10-26 21:14:01 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1056894661.exe 2013-10-26 15:23:07 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\959066471.exe 2013-10-26 07:58:52 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\63490310.exe 2013-10-25 19:59:09 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ---ha-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1072151581.exe 2013-10-24 16:20:37 D83C6F68ACDE70E2824395D4761A9EA4 1278976 ----a-w- C:\Documents and Settings\Eigenaar\Local Settings\Temp\1492867807.exe === C: other files == 2013-10-26 21:46:46 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" "DWQueuedReporting"="c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [HKEY_USERS\S-1-5-21-1409082233-1417001333-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe /background" "EPSON Stylus DX7400 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU C:\DOCUME~1\Eigenaar\LOCALS~1\Temp\E_S2.tmp /EF HKCU" "vbc"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe" "vbc2091943158"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1824901191.exe" "vbc1978008113"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1681477597.exe" "vbc659796422"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2042403158.exe" "vbc1188681060"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\717116944.exe" "vbc2144488421"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\721940281.exe" "vbc1897047118"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1655530214.exe" "vbc1406516084"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\811134311.exe" "vbc2146605980"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852381032.exe" "vbc1619121671"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\374251023.exe" "vbc387360606"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\964367574.exe" "vbc1908720176"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1557789078.exe" "vbc859871894"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\327002241.exe" "vbc683366727"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\896706536.exe" "vbc194409582"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1138889941.exe" "vbc1856775642"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1383045744.exe" "vbc1894768832"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1157442044.exe" "vbc376369054"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\562181813.exe" "vbc1549809314"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1482248998.exe" "vbc443139789"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1142626703.exe" "vbc536878382"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1643539079.exe" "vbc386067949"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\490176976.exe" "vbc1647837715"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1939377899.exe" "vbc1541359411"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1906560648.exe" "vbc579348746"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2030925814.exe" "vbc523397506"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1237887659.exe" "vbc1736904694"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1533653247.exe" "vbc431144831"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\491591870.exe" "vbc867453811"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\827837282.exe" "vbc362179912"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\106673662.exe" "vbc141212277"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1198347355.exe" "vbc1570913753"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1518660744.exe" "vbc217282495"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\711157075.exe" "vbc930052486"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\250968500.exe" "vbc983456898"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\839453645.exe" "vbc174217035"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\477185117.exe" "vbc211116212"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928039264.exe" "vbc254249658"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852351187.exe" "vbc505210561"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2024858668.exe" "vbc1424007180"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\28147166.exe" "vbc1838676473"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\132298160.exe" "vbc1686936604"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2073073660.exe" "vbc238358703"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891649429.exe" "vbc466953723"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1622483677.exe" "vbc719314804"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\38460537.exe" "vbc293405591"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891994454.exe" "vbc506346791"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\568293099.exe" "vbc354556048"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\913028986.exe" "vbc1059283263"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\450366581.exe" "vbc1171521429"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\472853614.exe" "vbc1954838765"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942997199.exe" "vbc291473079"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1354312856.exe" "vbc1676232298"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1333413286.exe" "vbc1233324698"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\517901380.exe" "vbc167582152"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1590732147.exe" "vbc1429507883"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1546409559.exe" "vbc1851204417"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\974914798.exe" "vbc311787921"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1374750171.exe" "vbc2068992780"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1452379947.exe" "vbc1320108342"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1766659286.exe" "vbc1628439579"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1908075508.exe" "vbc293614927"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1379096340.exe" "vbc1590515389"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1307499371.exe" "vbc2032646007"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\560592093.exe" "vbc1811690885"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1580963075.exe" "vbc573892755"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1282968944.exe" "vbc873731670"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1265777514.exe" "vbc415731410"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\530800959.exe" "vbc1440370814"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\725216426.exe" "vbc1389169711"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1244149229.exe" "vbc1307364733"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\247293727.exe" "vbc1381944077"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\560430003.exe" "vbc795855333"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942850209.exe" "vbc1955463346"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1963607394.exe" "vbc1934098502"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1769340129.exe" "vbc1464936860"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\22385575.exe" "vbc2143145257"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\544477500.exe" "vbc239725996"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1887855002.exe" "vbc2038121375"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\879434461.exe" "vbc1869056366"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1120501010.exe" "vbc847438858"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1929248970.exe" "vbc123153201"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1325674959.exe" "vbc1491969418"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1679781972.exe" "vbc142453261"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\894359434.exe" "vbc76331665"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\265122022.exe" "vbc1288993052"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\617703569.exe" "vbc1095730446"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\641273915.exe" "vbc1570519057"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\280945533.exe" "vbc510271942"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\796643385.exe" "vbc1979143139"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1973374628.exe" "vbc1182697898"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2084655848.exe" "vbc1927990452"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\223736770.exe" "vbc1765496179"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\606806932.exe" "vbc1395905051"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1023805580.exe" "vbc1833387593"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1167377095.exe" "vbc1020560345"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2028353766.exe" "vbc55061111"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1979150877.exe" "vbc2064628390"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\561578058.exe" "vbc771109202"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\147980028.exe" "vbc100858379"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\189723825.exe" "vbc1619836755"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1110523802.exe" "vbc1967861477"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\631310266.exe" "vbc555558107"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\41075000.exe" "vbc722414696"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\478590523.exe" "vbc124904578"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1539716802.exe" "vbc347633813"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1875880299.exe" "vbc562405581"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\479722850.exe" "vbc390823457"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\929916921.exe" "vbc372082090"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\656691230.exe" "vbc707408742"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1616324933.exe" "vbc2042813338"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1700493749.exe" "vbc457986266"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2139521729.exe" "vbc861670088"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1564851165.exe" "vbc2111761433"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1468198040.exe" "vbc681772049"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\827192395.exe" "vbc213578226"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2009209667.exe" "vbc676310805"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\887123043.exe" "vbc2091379466"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1306130374.exe" "vbc1405151241"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\752914268.exe" "vbc1002102434"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\900019294.exe" "vbc917322729"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\896604422.exe" "vbc720914503"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1392086522.exe" "vbc615535643"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\342978580.exe" "vbc833687458"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1805944475.exe" "vbc1234463327"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1884376009.exe" "vbc1363280320"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1390571556.exe" "vbc2026959853"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2018483793.exe" "vbc975216105"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1492867807.exe" "vbc1494768918"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1072151581.exe" "vbc576478874"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\63490310.exe" "vbc1397711074"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\959066471.exe" "vbc939396727"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1056894661.exe" "vbc1146080217"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1975788143.exe" "vbc273683134"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\375559732.exe" "vbc449832729"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1075162931.exe" "vbc144589114"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\457321773.exe" "vbc1224825673"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\283533553.exe" "vbc2085256060"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\271931877.exe" "vbc170100575"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1287139816.exe" "vbc573629799"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1005614383.exe" "vbc1042610005"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\718561185.exe" "vbc959705840"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\179281102.exe" "WinUpdtr"="C:\Documents and Settings\Eigenaar\Application Data\WinUpdtr\718561185.exe" "vbc1516537000"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1122141872.exe" "vbc1313410217"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1658582548.exe" "vbc109755253"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\907074605.exe" "vbc486416136"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" "DWQueuedReporting"="c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "NeroCheck"="C:\WINDOWS\system32\NeroCheck.exe" "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "HDAudDeck"="C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "MsmqIntCert"="regsvr32 /s mqrt.dll" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe /background" "EPSON Stylus DX7400 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU C:\DOCUME~1\Eigenaar\LOCALS~1\Temp\E_S2.tmp /EF HKCU" "vbc"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe" "vbc2091943158"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1824901191.exe" "vbc1978008113"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1681477597.exe" "vbc659796422"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2042403158.exe" "vbc1188681060"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\717116944.exe" "vbc2144488421"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\721940281.exe" "vbc1897047118"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1655530214.exe" "vbc1406516084"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\811134311.exe" "vbc2146605980"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852381032.exe" "vbc1619121671"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\374251023.exe" "vbc387360606"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\964367574.exe" "vbc1908720176"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1557789078.exe" "vbc859871894"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\327002241.exe" "vbc683366727"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\896706536.exe" "vbc194409582"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1138889941.exe" "vbc1856775642"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1383045744.exe" "vbc1894768832"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1157442044.exe" "vbc376369054"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\562181813.exe" "vbc1549809314"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1482248998.exe" "vbc443139789"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1142626703.exe" "vbc536878382"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1643539079.exe" "vbc386067949"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\490176976.exe" "vbc1647837715"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1939377899.exe" "vbc1541359411"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1906560648.exe" "vbc579348746"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2030925814.exe" "vbc523397506"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1237887659.exe" "vbc1736904694"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1533653247.exe" "vbc431144831"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\491591870.exe" "vbc867453811"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\827837282.exe" "vbc362179912"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\106673662.exe" "vbc141212277"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1198347355.exe" "vbc1570913753"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1518660744.exe" "vbc217282495"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\711157075.exe" "vbc930052486"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\250968500.exe" "vbc983456898"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\839453645.exe" "vbc174217035"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\477185117.exe" "vbc211116212"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928039264.exe" "vbc254249658"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852351187.exe" "vbc505210561"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2024858668.exe" "vbc1424007180"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\28147166.exe" "vbc1838676473"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\132298160.exe" "vbc1686936604"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2073073660.exe" "vbc238358703"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891649429.exe" "vbc466953723"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1622483677.exe" "vbc719314804"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\38460537.exe" "vbc293405591"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891994454.exe" "vbc506346791"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\568293099.exe" "vbc354556048"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\913028986.exe" "vbc1059283263"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\450366581.exe" "vbc1171521429"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\472853614.exe" "vbc1954838765"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942997199.exe" "vbc291473079"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1354312856.exe" "vbc1676232298"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1333413286.exe" "vbc1233324698"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\517901380.exe" "vbc167582152"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1590732147.exe" "vbc1429507883"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1546409559.exe" "vbc1851204417"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\974914798.exe" "vbc311787921"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1374750171.exe" "vbc2068992780"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1452379947.exe" "vbc1320108342"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1766659286.exe" "vbc1628439579"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1908075508.exe" "vbc293614927"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1379096340.exe" "vbc1590515389"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1307499371.exe" "vbc2032646007"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\560592093.exe" "vbc1811690885"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1580963075.exe" "vbc573892755"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1282968944.exe" "vbc873731670"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1265777514.exe" "vbc415731410"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\530800959.exe" "vbc1440370814"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\725216426.exe" "vbc1389169711"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1244149229.exe" "vbc1307364733"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\247293727.exe" "vbc1381944077"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\560430003.exe" "vbc795855333"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942850209.exe" "vbc1955463346"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1963607394.exe" "vbc1934098502"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1769340129.exe" "vbc1464936860"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\22385575.exe" "vbc2143145257"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\544477500.exe" "vbc239725996"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1887855002.exe" "vbc2038121375"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\879434461.exe" "vbc1869056366"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1120501010.exe" "vbc847438858"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1929248970.exe" "vbc123153201"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1325674959.exe" "vbc1491969418"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1679781972.exe" "vbc142453261"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\894359434.exe" "vbc76331665"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\265122022.exe" "vbc1288993052"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\617703569.exe" "vbc1095730446"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\641273915.exe" "vbc1570519057"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\280945533.exe" "vbc510271942"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\796643385.exe" "vbc1979143139"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1973374628.exe" "vbc1182697898"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2084655848.exe" "vbc1927990452"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\223736770.exe" "vbc1765496179"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\606806932.exe" "vbc1395905051"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1023805580.exe" "vbc1833387593"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1167377095.exe" "vbc1020560345"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2028353766.exe" "vbc55061111"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1979150877.exe" "vbc2064628390"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\561578058.exe" "vbc771109202"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\147980028.exe" "vbc100858379"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\189723825.exe" "vbc1619836755"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1110523802.exe" "vbc1967861477"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\631310266.exe" "vbc555558107"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\41075000.exe" "vbc722414696"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\478590523.exe" "vbc124904578"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1539716802.exe" "vbc347633813"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1875880299.exe" "vbc562405581"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\479722850.exe" "vbc390823457"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\929916921.exe" "vbc372082090"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\656691230.exe" "vbc707408742"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1616324933.exe" "vbc2042813338"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1700493749.exe" "vbc457986266"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2139521729.exe" "vbc861670088"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1564851165.exe" "vbc2111761433"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1468198040.exe" "vbc681772049"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\827192395.exe" "vbc213578226"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2009209667.exe" "vbc676310805"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\887123043.exe" "vbc2091379466"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1306130374.exe" "vbc1405151241"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\752914268.exe" "vbc1002102434"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\900019294.exe" "vbc917322729"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\896604422.exe" "vbc720914503"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1392086522.exe" "vbc615535643"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\342978580.exe" "vbc833687458"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1805944475.exe" "vbc1234463327"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1884376009.exe" "vbc1363280320"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1390571556.exe" "vbc2026959853"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\2018483793.exe" "vbc975216105"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1492867807.exe" "vbc1494768918"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1072151581.exe" "vbc576478874"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\63490310.exe" "vbc1397711074"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\959066471.exe" "vbc939396727"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1056894661.exe" "vbc1146080217"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1975788143.exe" "vbc273683134"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\375559732.exe" "vbc449832729"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1075162931.exe" "vbc144589114"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\457321773.exe" "vbc1224825673"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\283533553.exe" "vbc2085256060"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\271931877.exe" "vbc170100575"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1287139816.exe" "vbc573629799"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1005614383.exe" "vbc1042610005"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\718561185.exe" "vbc959705840"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\179281102.exe" "WinUpdtr"="C:\Documents and Settings\Eigenaar\Application Data\WinUpdtr\718561185.exe" "vbc1516537000"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1122141872.exe" "vbc1313410217"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1658582548.exe" "vbc109755253"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\907074605.exe" "vbc486416136"="C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] ==== Startup Folders ====================== 2013-05-12 12:57:38 1037 ----a-w- C:\Documents and Settings\Eigenaar\Menu Start\Programma's\Opstarten\Dropbox.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-10-2013 14:47] C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job --ah----- C:\Program Files\Microsoft Security Client\MpCmdRun.exe [12-08-2013 09:12] C:\WINDOWS\tasks\User_Feed_Synchronization-{D74943D8-21E6-47EA-8123-F1097F0A9F19}.job --ah----- C:\WINDOWS\system32\msfeedssync.exe [08-03-2009 04:31] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [30-07-2011 09:34] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/" "Search Page"="Google" "Search Bar"="Upgrade to Google Chrome" "Default_Search_URL"="Upgrade to Google Chrome" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="%s - Google Search" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="Upgrade to Google Chrome" "Default_Search_URL"="Upgrade to Google Chrome" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="Bing" "Search Bar"="Bing" "Default_Search_URL"="Bing" "Start Page"="https://www.google.nl/" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="%s - Bing" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="Bing" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{EC32772A-F92E-4F83-90F2-4FEB858E2909}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" {EC32772A-F92E-4F83-90F2-4FEB858E2909} Google Url="{searchTerms} - Google Search" ==== HijackThis Entries ====================== R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1 O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU "C:\DOCUME~1\Eigenaar\LOCALS~1\Temp\E_S2.tmp" /EF "HKCU" O4 - HKCU\..\Run: [vbc] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe O4 - HKCU\..\Run: [vbc2091943158] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1824901191.exe O4 - HKCU\..\Run: [vbc1978008113] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1681477597.exe O4 - HKCU\..\Run: [vbc659796422] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2042403158.exe O4 - HKCU\..\Run: [vbc1188681060] C:\Documents and Settings\Eigenaar\Local Settings\Temp\717116944.exe O4 - HKCU\..\Run: [vbc2144488421] C:\Documents and Settings\Eigenaar\Local Settings\Temp\721940281.exe O4 - HKCU\..\Run: [vbc1897047118] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1655530214.exe O4 - HKCU\..\Run: [vbc1406516084] C:\Documents and Settings\Eigenaar\Local Settings\Temp\811134311.exe O4 - HKCU\..\Run: [vbc2146605980] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852381032.exe O4 - HKCU\..\Run: [vbc1619121671] C:\Documents and Settings\Eigenaar\Local Settings\Temp\374251023.exe O4 - HKCU\..\Run: [vbc387360606] C:\Documents and Settings\Eigenaar\Local Settings\Temp\964367574.exe O4 - HKCU\..\Run: [vbc1908720176] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1557789078.exe O4 - HKCU\..\Run: [vbc859871894] C:\Documents and Settings\Eigenaar\Local Settings\Temp\327002241.exe O4 - HKCU\..\Run: [vbc683366727] C:\Documents and Settings\Eigenaar\Local Settings\Temp\896706536.exe O4 - HKCU\..\Run: [vbc194409582] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1138889941.exe O4 - HKCU\..\Run: [vbc1856775642] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1383045744.exe O4 - HKCU\..\Run: [vbc1894768832] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1157442044.exe O4 - HKCU\..\Run: [vbc376369054] C:\Documents and Settings\Eigenaar\Local Settings\Temp\562181813.exe O4 - HKCU\..\Run: [vbc1549809314] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1482248998.exe O4 - HKCU\..\Run: [vbc443139789] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1142626703.exe O4 - HKCU\..\Run: [vbc536878382] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1643539079.exe O4 - HKCU\..\Run: [vbc386067949] C:\Documents and Settings\Eigenaar\Local Settings\Temp\490176976.exe O4 - HKCU\..\Run: [vbc1647837715] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1939377899.exe O4 - HKCU\..\Run: [vbc1541359411] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1906560648.exe O4 - HKCU\..\Run: [vbc579348746] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2030925814.exe O4 - HKCU\..\Run: [vbc523397506] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1237887659.exe O4 - HKCU\..\Run: [vbc1736904694] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1533653247.exe O4 - HKCU\..\Run: [vbc431144831] C:\Documents and Settings\Eigenaar\Local Settings\Temp\491591870.exe O4 - HKCU\..\Run: [vbc867453811] C:\Documents and Settings\Eigenaar\Local Settings\Temp\827837282.exe O4 - HKCU\..\Run: [vbc362179912] C:\Documents and Settings\Eigenaar\Local Settings\Temp\106673662.exe O4 - HKCU\..\Run: [vbc141212277] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1198347355.exe O4 - HKCU\..\Run: [vbc1570913753] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1518660744.exe O4 - HKCU\..\Run: [vbc217282495] C:\Documents and Settings\Eigenaar\Local Settings\Temp\711157075.exe O4 - HKCU\..\Run: [vbc930052486] C:\Documents and Settings\Eigenaar\Local Settings\Temp\250968500.exe O4 - HKCU\..\Run: [vbc983456898] C:\Documents and Settings\Eigenaar\Local Settings\Temp\839453645.exe O4 - HKCU\..\Run: [vbc174217035] C:\Documents and Settings\Eigenaar\Local Settings\Temp\477185117.exe O4 - HKCU\..\Run: [vbc211116212] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928039264.exe O4 - HKCU\..\Run: [vbc254249658] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1852351187.exe O4 - HKCU\..\Run: [vbc505210561] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2024858668.exe O4 - HKCU\..\Run: [vbc1424007180] C:\Documents and Settings\Eigenaar\Local Settings\Temp\28147166.exe O4 - HKCU\..\Run: [vbc1838676473] C:\Documents and Settings\Eigenaar\Local Settings\Temp\132298160.exe O4 - HKCU\..\Run: [vbc1686936604] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2073073660.exe O4 - HKCU\..\Run: [vbc238358703] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891649429.exe O4 - HKCU\..\Run: [vbc466953723] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1622483677.exe O4 - HKCU\..\Run: [vbc719314804] C:\Documents and Settings\Eigenaar\Local Settings\Temp\38460537.exe O4 - HKCU\..\Run: [vbc293405591] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1891994454.exe O4 - HKCU\..\Run: [vbc506346791] C:\Documents and Settings\Eigenaar\Local Settings\Temp\568293099.exe O4 - HKCU\..\Run: [vbc354556048] C:\Documents and Settings\Eigenaar\Local Settings\Temp\913028986.exe O4 - HKCU\..\Run: [vbc1059283263] C:\Documents and Settings\Eigenaar\Local Settings\Temp\450366581.exe O4 - HKCU\..\Run: [vbc1171521429] C:\Documents and Settings\Eigenaar\Local Settings\Temp\472853614.exe O4 - HKCU\..\Run: [vbc1954838765] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942997199.exe O4 - HKCU\..\Run: [vbc291473079] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1354312856.exe O4 - HKCU\..\Run: [vbc1676232298] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1333413286.exe O4 - HKCU\..\Run: [vbc1233324698] C:\Documents and Settings\Eigenaar\Local Settings\Temp\517901380.exe O4 - HKCU\..\Run: [vbc167582152] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1590732147.exe O4 - HKCU\..\Run: [vbc1429507883] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1546409559.exe O4 - HKCU\..\Run: [vbc1851204417] C:\Documents and Settings\Eigenaar\Local Settings\Temp\974914798.exe O4 - HKCU\..\Run: [vbc311787921] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1374750171.exe O4 - HKCU\..\Run: [vbc2068992780] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1452379947.exe O4 - HKCU\..\Run: [vbc1320108342] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1766659286.exe O4 - HKCU\..\Run: [vbc1628439579] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1908075508.exe O4 - HKCU\..\Run: [vbc293614927] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1379096340.exe O4 - HKCU\..\Run: [vbc1590515389] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1307499371.exe O4 - HKCU\..\Run: [vbc2032646007] C:\Documents and Settings\Eigenaar\Local Settings\Temp\560592093.exe O4 - HKCU\..\Run: [vbc1811690885] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1580963075.exe O4 - HKCU\..\Run: [vbc573892755] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1282968944.exe O4 - HKCU\..\Run: [vbc873731670] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1265777514.exe O4 - HKCU\..\Run: [vbc415731410] C:\Documents and Settings\Eigenaar\Local Settings\Temp\530800959.exe O4 - HKCU\..\Run: [vbc1440370814] C:\Documents and Settings\Eigenaar\Local Settings\Temp\725216426.exe O4 - HKCU\..\Run: [vbc1389169711] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1244149229.exe O4 - HKCU\..\Run: [vbc1307364733] C:\Documents and Settings\Eigenaar\Local Settings\Temp\247293727.exe O4 - HKCU\..\Run: [vbc1381944077] C:\Documents and Settings\Eigenaar\Local Settings\Temp\560430003.exe O4 - HKCU\..\Run: [vbc795855333] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1942850209.exe O4 - HKCU\..\Run: [vbc1955463346] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1963607394.exe O4 - HKCU\..\Run: [vbc1934098502] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1769340129.exe O4 - HKCU\..\Run: [vbc1464936860] C:\Documents and Settings\Eigenaar\Local Settings\Temp\22385575.exe O4 - HKCU\..\Run: [vbc2143145257] C:\Documents and Settings\Eigenaar\Local Settings\Temp\544477500.exe O4 - HKCU\..\Run: [vbc239725996] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1887855002.exe O4 - HKCU\..\Run: [vbc2038121375] C:\Documents and Settings\Eigenaar\Local Settings\Temp\879434461.exe O4 - HKCU\..\Run: [vbc1869056366] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1120501010.exe O4 - HKCU\..\Run: [vbc847438858] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1929248970.exe O4 - HKCU\..\Run: [vbc123153201] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1325674959.exe O4 - HKCU\..\Run: [vbc1491969418] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1679781972.exe O4 - HKCU\..\Run: [vbc142453261] C:\Documents and Settings\Eigenaar\Local Settings\Temp\894359434.exe O4 - HKCU\..\Run: [vbc76331665] C:\Documents and Settings\Eigenaar\Local Settings\Temp\265122022.exe O4 - HKCU\..\Run: [vbc1288993052] C:\Documents and Settings\Eigenaar\Local Settings\Temp\617703569.exe O4 - HKCU\..\Run: [vbc1095730446] C:\Documents and Settings\Eigenaar\Local Settings\Temp\641273915.exe O4 - HKCU\..\Run: [vbc1570519057] C:\Documents and Settings\Eigenaar\Local Settings\Temp\280945533.exe O4 - HKCU\..\Run: [vbc510271942] C:\Documents and Settings\Eigenaar\Local Settings\Temp\796643385.exe O4 - HKCU\..\Run: [vbc1979143139] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1973374628.exe O4 - HKCU\..\Run: [vbc1182697898] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2084655848.exe O4 - HKCU\..\Run: [vbc1927990452] C:\Documents and Settings\Eigenaar\Local Settings\Temp\223736770.exe O4 - HKCU\..\Run: [vbc1765496179] C:\Documents and Settings\Eigenaar\Local Settings\Temp\606806932.exe O4 - HKCU\..\Run: [vbc1395905051] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1023805580.exe O4 - HKCU\..\Run: [vbc1833387593] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1167377095.exe O4 - HKCU\..\Run: [vbc1020560345] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2028353766.exe O4 - HKCU\..\Run: [vbc55061111] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1979150877.exe O4 - HKCU\..\Run: [vbc2064628390] C:\Documents and Settings\Eigenaar\Local Settings\Temp\561578058.exe O4 - HKCU\..\Run: [vbc771109202] C:\Documents and Settings\Eigenaar\Local Settings\Temp\147980028.exe O4 - HKCU\..\Run: [vbc100858379] C:\Documents and Settings\Eigenaar\Local Settings\Temp\189723825.exe O4 - HKCU\..\Run: [vbc1619836755] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1110523802.exe O4 - HKCU\..\Run: [vbc1967861477] C:\Documents and Settings\Eigenaar\Local Settings\Temp\631310266.exe O4 - HKCU\..\Run: [vbc555558107] C:\Documents and Settings\Eigenaar\Local Settings\Temp\41075000.exe O4 - HKCU\..\Run: [vbc722414696] C:\Documents and Settings\Eigenaar\Local Settings\Temp\478590523.exe O4 - HKCU\..\Run: [vbc124904578] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1539716802.exe O4 - HKCU\..\Run: [vbc347633813] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1875880299.exe O4 - HKCU\..\Run: [vbc562405581] C:\Documents and Settings\Eigenaar\Local Settings\Temp\479722850.exe O4 - HKCU\..\Run: [vbc390823457] C:\Documents and Settings\Eigenaar\Local Settings\Temp\929916921.exe O4 - HKCU\..\Run: [vbc372082090] C:\Documents and Settings\Eigenaar\Local Settings\Temp\656691230.exe O4 - HKCU\..\Run: [vbc707408742] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1616324933.exe O4 - HKCU\..\Run: [vbc2042813338] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1700493749.exe O4 - HKCU\..\Run: [vbc457986266] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2139521729.exe O4 - HKCU\..\Run: [vbc861670088] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1564851165.exe O4 - HKCU\..\Run: [vbc2111761433] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1468198040.exe O4 - HKCU\..\Run: [vbc681772049] C:\Documents and Settings\Eigenaar\Local Settings\Temp\827192395.exe O4 - HKCU\..\Run: [vbc213578226] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2009209667.exe O4 - HKCU\..\Run: [vbc676310805] C:\Documents and Settings\Eigenaar\Local Settings\Temp\887123043.exe O4 - HKCU\..\Run: [vbc2091379466] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1306130374.exe O4 - HKCU\..\Run: [vbc1405151241] C:\Documents and Settings\Eigenaar\Local Settings\Temp\752914268.exe O4 - HKCU\..\Run: [vbc1002102434] C:\Documents and Settings\Eigenaar\Local Settings\Temp\900019294.exe O4 - HKCU\..\Run: [vbc917322729] C:\Documents and Settings\Eigenaar\Local Settings\Temp\896604422.exe O4 - HKCU\..\Run: [vbc720914503] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1392086522.exe O4 - HKCU\..\Run: [vbc615535643] C:\Documents and Settings\Eigenaar\Local Settings\Temp\342978580.exe O4 - HKCU\..\Run: [vbc833687458] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1805944475.exe O4 - HKCU\..\Run: [vbc1234463327] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1884376009.exe O4 - HKCU\..\Run: [vbc1363280320] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1390571556.exe O4 - HKCU\..\Run: [vbc2026959853] C:\Documents and Settings\Eigenaar\Local Settings\Temp\2018483793.exe O4 - HKCU\..\Run: [vbc975216105] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1492867807.exe O4 - HKCU\..\Run: [vbc1494768918] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1072151581.exe O4 - HKCU\..\Run: [vbc576478874] C:\Documents and Settings\Eigenaar\Local Settings\Temp\63490310.exe O4 - HKCU\..\Run: [vbc1397711074] C:\Documents and Settings\Eigenaar\Local Settings\Temp\959066471.exe O4 - HKCU\..\Run: [vbc939396727] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1056894661.exe O4 - HKCU\..\Run: [vbc1146080217] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1975788143.exe O4 - HKCU\..\Run: [vbc273683134] C:\Documents and Settings\Eigenaar\Local Settings\Temp\375559732.exe O4 - HKCU\..\Run: [vbc449832729] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1075162931.exe O4 - HKCU\..\Run: [vbc144589114] C:\Documents and Settings\Eigenaar\Local Settings\Temp\457321773.exe O4 - HKCU\..\Run: [vbc1224825673] C:\Documents and Settings\Eigenaar\Local Settings\Temp\283533553.exe O4 - HKCU\..\Run: [vbc2085256060] C:\Documents and Settings\Eigenaar\Local Settings\Temp\271931877.exe O4 - HKCU\..\Run: [vbc170100575] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1287139816.exe O4 - HKCU\..\Run: [vbc573629799] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1005614383.exe O4 - HKCU\..\Run: [vbc1042610005] C:\Documents and Settings\Eigenaar\Local Settings\Temp\718561185.exe O4 - HKCU\..\Run: [vbc959705840] C:\Documents and Settings\Eigenaar\Local Settings\Temp\179281102.exe O4 - HKCU\..\Run: [WinUpdtr] C:\Documents and Settings\Eigenaar\Application Data\WinUpdtr\718561185.exe O4 - HKCU\..\Run: [vbc1516537000] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1122141872.exe O4 - HKCU\..\Run: [vbc1313410217] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1658582548.exe O4 - HKCU\..\Run: [vbc109755253] C:\Documents and Settings\Eigenaar\Local Settings\Temp\907074605.exe O4 - HKCU\..\Run: [vbc486416136] C:\Documents and Settings\Eigenaar\Local Settings\Temp\1928861752.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Dropbox.lnk = C:\Documents and Settings\Eigenaar\Application Data\Dropbox\bin\Dropbox.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000 O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1292099857546 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1357471007078 O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe ==== Empty IE Cache ====================== C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\Eigenaar\Local Settings\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\Eigenaar\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\DOCUME~1\Eigenaar\LOCALS~1\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\Documents and Settings\Eigenaar\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on wo 30-10-2013 at 22:13:51,29 ====================== hopelijk heb je hier wat aan. alvast bedankt de paashaas - - - Updated - - - hoi . het logje heb ik klaar , maar op onverklaarbare wijze interpreteerd de computer snel reageren in wilt u het progamma verlaten, en even later was het logje weg. ik probeer het nog wel een keer. de paashaas

hallo luitjes sinds enige tijd is als ik mijn computer opstart mijn cpu gebruik erg hoog, zo'n 50 % ongeveer. maar als ik het bestand 18249011191.exe verwijder uit processen in taakbeheer, daalt het verbruik weer naar zo'n 1%. Maar als ik de computer weer opstart is dat bestandje weer terug,soms bestaat het ook uit andere getallen, en is het cpu verbruik weer 50%. Volgens mij is het cpu verbruik van mijn computer zo hoog door dat bestand, een virus volgens mij. Echter het lukt mij niet om dat bestand uit mijn computer te krijgen. Ik heb het ook al met malware bytes geprobeerd maar het blijft terugkomen. Weet iemand een oplossing ? paashaas