Ga naar inhoud

Polr

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    7

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door Polr

  1. Polr
    Dank voor je hulp. De computer start al een stuk sneller op en ik krijg minder foutmeldingen. Polr
  2. Polr
    Hallo Jion, Hieronder de resultaaten van de laatstgenoemde opdrachten: Ja HKCU:Run CCleaner Monitoring Piriform Ltd Rijk en Ineke "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR Nee HKCU:Run CTSyncU.exe Alle gebruikers "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe" Ja HKCU:Run ehTray.exe Microsoft Corporation Rijk en Ineke C:\Windows\ehome\ehTray.exe Ja HKCU:Run Google Update Google Inc. Rijk en Ineke "C:\Users\Rijk en Ineke\AppData\Local\Google\Update\GoogleUpdate.exe" /c Ja HKCU:Run MobileDocuments Apple Inc. Rijk en Ineke C:\Program Files\Common Files\Apple\Internet Services\ubd.exe Nee HKCU:Run MyTomTomSA.exe TomTom Alle gebruikers "C:\Program Files\MyTomTom 3\MyTomTomSA.exe" Ja HKCU:Run Sidebar Microsoft Corporation Rijk en Ineke C:\Program Files\Windows Sidebar\sidebar.exe /autoRun Nee HKCU:Run TomTomHOME.exe TomTom Alle gebruikers "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" Ja HKCU:Run WMPNSCFG Microsoft Corporation Rijk en Ineke C:\Program Files\Windows Media Player\WMPNSCFG.exe Ja HKLM:Run Adobe ARM Adobe Systems Incorporated Alle gebruikers "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" Nee HKLM:Run AppleSyncNotifier Apple Inc. Alle gebruikers C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe Ja HKLM:Run APSDaemon Apple Inc. Alle gebruikers "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" Ja HKLM:Run AVG_TRAY AVG Technologies CZ, s.r.o. Alle gebruikers "C:\Program Files\AVG\AVG2012\avgtray.exe" Ja HKLM:Run BCSSync Microsoft Corporation Alle gebruikers "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices Nee HKLM:Run EEventManager SEIKO EPSON CORPORATION Alle gebruikers C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe Ja HKLM:Run HotKeysCmds Intel Corporation Alle gebruikers C:\Windows\system32\hkcmd.exe Nee HKLM:Run HP Health Check Scheduler Hewlett-Packard Alle gebruikers c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe Nee HKLM:Run HP Software Update Hewlett-Packard Co. Alle gebruikers C:\Program Files\HP\HP Software Update\HPWuSchd2.exe Nee HKLM:Run hpsysdrv Hewlett-Packard Company Alle gebruikers c:\hp\support\hpsysdrv.exe Ja HKLM:Run IgfxTray Intel Corporation Alle gebruikers C:\Windows\system32\igfxtray.exe Ja HKLM:Run iTunesHelper Apple Inc. Alle gebruikers "C:\Program Files\iTunes\iTunesHelper.exe" Nee HKLM:Run KBD Alle gebruikers C:\HP\KBD\KbdStub.EXE Ja HKLM:Run LogitechQuickCamRibbon Logitech Inc Alle gebruikers "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide Nee HKLM:Run OsdMaestro OsdMaestro Alle gebruikers "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" Ja HKLM:Run Persistence Intel Corporation Alle gebruikers C:\Windows\system32\igfxpers.exe Ja HKLM:Run QuickTime Task Apple Inc. Alle gebruikers "C:\Program Files\QuickTime\QTTask.exe" -atboottime Ja HKLM:Run RtHDVCpl Realtek Semiconductor Alle gebruikers RtHDVCpl.exe Ja HKLM:Run SunJavaUpdateReg Sun Microsystems, Inc. Alle gebruikers "C:\Windows\system32\jureg.exe" Ja HKLM:Run SunJavaUpdateSched Oracle Corporation Alle gebruikers "C:\Program Files\Common Files\Java\Java Update\jusched.exe" Ja HKLM:Run TkBellExe RealNetworks, Inc. Alle gebruikers "c:\program files\real\realplayer\Update\realsched.exe" -osboot Ja HKLM:Run Windows Defender Microsoft Corporation Alle gebruikers %ProgramFiles%\Windows Defender\MSASCui.exe -hide Ja HKLM:Run Windows Mobile-based device management Microsoft Corporation Alle gebruikers %windir%\WindowsMobile\wmdSync.exe Ja HKLM:RunOnce Launcher soft thinks Alle gebruikers %WINDIR%\SMINST\launcher.exe Ja Startup User Dropbox.lnk Dropbox, Inc. Rijk en Ineke C:\Users\Rijk en Ineke\AppData\Roaming\Dropbox\bin\Dropbox.exe ---------------------------------------------------------------------------------------------------------------------------------- Tabblad Internet Explorer: Nee Extension Gekoppelde notities van OneNote Microsoft Corporation Rijk en Ineke C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll Nee Extension HP Clipboek Hewlett-Packard Co. Rijk en Ineke C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll Nee Extension HP Slim selecteren Hewlett-Packard Co. Rijk en Ineke C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll Nee Extension Verzenden naar OneNote Microsoft Corporation Rijk en Ineke C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll Ja Helper Groove GFS Browser Helper Microsoft Corporation Rijk en Ineke C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL Ja Helper HP Print Clips Hewlett-Packard Co. Rijk en Ineke C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll Ja Helper Java Plug-In 2 SSV Helper Oracle Corporation Rijk en Ineke C:\Program Files\Java\jre7\bin\jp2ssv.dll Ja Helper Java Plug-In SSV Helper Oracle Corporation Rijk en Ineke C:\Program Files\Java\jre7\bin\ssv.dll Nee Helper Office Document Cache Handler Microsoft Corporation Rijk en Ineke C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL Nee Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader Rijk en Ineke C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll ---------------------------------------------------------------------------------------------------------------------------------------- Tabblad Google Chrome: Ja App Gmail 7 Rijk en Ineke Ineke C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 Ja App Google Drive 6.3 Rijk en Ineke Ineke C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 Ja App Google Zoeken 0.0.0.20 Rijk en Ineke Ineke C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 Ja App Weather Europe 4.2 Rijk en Ineke Ineke C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kadgobdfbdigmegffjkflccgkdnjpine\4.2_0 Ja App YouTube 4.2.6 Rijk en Ineke Ineke C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 Ja Extension Ask Toolbar 7.15.27.55142 Rijk en Ineke Standaardprofiel C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo\7.15.27.55142_0 Nee Extension AVG Safe Search 12.0.0.2210 Rijk en Ineke Standaardprofiel C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2210_0 Nee Extension AVG Secure Search 17.1.2.1 Rijk en Ineke Standaardprofiel C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.1.2.1_0 Ja Extension Chrome In-App Payments service 0.0.4.11 Rijk en Ineke Standaardprofiel C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0 Ja Extension Delta Toolbar 1.5.2 Rijk en Ineke Standaardprofiel C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.2_0 Ja Extension Google Documenten 0.5 Rijk en Ineke Ineke C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 Ja Extension Google Wallet 0.0.6.0 Rijk en Ineke Ineke C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1 Nee Extension RealDownloader 1.3.3 Rijk en Ineke Standaardprofiel C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.3_0 Nee Extension RealDownloader 1.3.3 Rijk en Ineke Ineke C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.3_0 --------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Tabblad Geplande taken: Ja Task Adobe Flash Player Updater Adobe Systems Incorporated Alle gebruikers C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Ja Task CCleanerSkipUAC Piriform Ltd Rijk en Ineke "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0) Ja Task CreateChoiceProcessTask Microsoft Corporation Rijk en Ineke C:\Windows\System32\browserchoice.exe /launch Ja Task GoogleUpdateTaskMachineCore Google Inc. Alle gebruikers C:\Program Files\Google\Update\GoogleUpdate.exe /c Ja Task GoogleUpdateTaskMachineUA Google Inc. Alle gebruikers C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler Ja Task GoogleUpdateTaskUserS-1-5-21-2940832217-195839467-2300631566-1000Core Google Inc. Rijk en Ineke C:\Users\Rijk en Ineke\AppData\Local\Google\Update\GoogleUpdate.exe /c Ja Task GoogleUpdateTaskUserS-1-5-21-2940832217-195839467-2300631566-1000UA Google Inc. Rijk en Ineke C:\Users\Rijk en Ineke\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler Ja Task HP Health Check Hewlett-Packard Rijk en Ineke "c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" /Scan Ja Task JavaUpdateAdministrator Sun Microsystems, Inc. Alle gebruikers C:\Windows\system32\jusched.exe Ja Task JavaUpdateRijk en Ineke Sun Microsystems, Inc. Rijk en Ineke C:\Windows\system32\jusched.exe Ja Task RealPlayerRealUpgradeLogonTaskS-1-5-21-2940832217-195839467-2300631566-1000 RealNetworks, Inc. Rijk en Ineke C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /logoncheck Ja Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-2940832217-195839467-2300631566-1000 RealNetworks, Inc. Rijk en Ineke C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck Ja Task WinZipDriverUpdater_UPDATES WinZip Computing, S.L. (WinZip Computing) Rijk en Ineke C:\Program Files\WinZip Driver Updater\winzipdu.exe -updatecheck Ja Task WinZipDriverUpdaterRunAtStartup WinZip Computing, S.L. (WinZip Computing) Alle gebruikers C:\Program Files\WinZip Driver Updater\winzipdu.exe -rem Ja Task {6FB40A3D-0924-44C5-B7D0-AC40E7E5B394} Microsoft Corporation Rijk en Ineke C:\Windows\system32\pcalua.exe -a "C:\Users\Rijk en Ineke\Documents\firstentsetup2008\setup.exe" -d "C:\Users\Rijk en Ineke\Documents\firstentsetup2008" Ja Task {ABC9FB44-AA79-411B-A4A5-D2446CDABECC} Microsoft Corporation Rijk en Ineke C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\ Ja Task {B3993D64-B4DC-4205-808A-CD336B8042A2} Microsoft Corporation Rijk en Ineke C:\Windows\system32\pcalua.exe -a "J:\Program Files\Outlook Express\setup50.exe" -d "J:\Program Files\Outlook Express" Ja Task {B555CE23-7AFE-4E84-B6FB-34AC032EFD4C} Skype Technologies S.A. Alle gebruikers C:\Program Files\Skype\Phone\Skype.exe Ja Task {BADDA894-AA77-4478-B871-2B1DC13E8E9E} Microsoft Corporation Rijk en Ineke C:\Windows\system32\pcalua.exe -a C:\Windows\iun6002.exe -c "C:\Bridge Master 4\irunin.ini" Ja Task {D02B80D1-91BA-4B4F-9022-6DF6FA623F2B} Microsoft Corporation Rijk en Ineke C:\Windows\system32\pcalua.exe -a E:\what_watch_1.7_build_67_setup.exe -d E:\ --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Tabblad Context menu Ja Directory DropboxExt Dropbox, Inc. Rijk en Ineke C:\Users\Rijk en Ineke\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll Ja File AVG Shell Extension AVG Technologies CZ, s.r.o. Alle gebruikers C:\Program Files\AVG\AVG2012\avgse.dll Ja File CTWPDMediaExplorer Creative Technology Ltd Alle gebruikers C:\Program Files\Creative\Shared Files\CtWpdCtx.dll Ja File DropboxExt Dropbox, Inc. Rijk en Ineke C:\Users\Rijk en Ineke\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll Ja File MBAMShlExt Malwarebytes Corporation Alle gebruikers C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll Ja File PhotoStreamsExt Apple Inc. Alle gebruikers C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.dll Ja Folder AVG Shell Extension AVG Technologies CZ, s.r.o. Alle gebruikers C:\Program Files\AVG\AVG2012\avgse.dll Ja Folder CTWPDMediaExplorer Creative Technology Ltd Alle gebruikers C:\Program Files\Creative\Shared Files\CtWpdCtx.dll Ja Folder MBAMShlExt Malwarebytes Corporation Alle gebruikers C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
  3. Polr
    Hallo Jion, Hieronder de logs van de resultaten na de bovengenoemde scans: # AdwCleaner v3.018 - Reportcreated 11/02/2014 at 12:12:11 # Updated 28/01/2014 by Xplode # Operating System : WindowsVista Home Premium Service Pack 2 (32 bits) # Username : Rijk en Ineke -PCTHUIS # Running from : C:\Users\Rijk enIneke\AppData\Local\Microsoft\Windows\Temporary InternetFiles\Content.IE5\9TMS8ZX8\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\Users\Rijk enIneke\AppData\Roaming\Systweak Folder Deleted : C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted :HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla [#] Key Deleted :HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater [#] Key Deleted :HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Schedule\TaskCache\Tasks\{B2A7F0D0-9C8A-49B7-8171-711EB180F4CE} [#] Key Deleted :HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Schedule\TaskCache\Plain\{B2A7F0D0-9C8A-49B7-8171-711EB180F4CE} [#] Key Deleted :HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar [#] Key Deleted :HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Schedule\TaskCache\Tasks\{CB341BA1-91B7-42BE-97C4-B3645A8A9CBB} [#] Key Deleted :HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Schedule\TaskCache\Plain\{CB341BA1-91B7-42BE-97C4-B3645A8A9CBB} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} Key Deleted :HKLM\SOFTWARE\Classes\AppID\escort.DLL Key Deleted :HKLM\SOFTWARE\Classes\AppID\escortApp.DLL Key Deleted :HKLM\SOFTWARE\Classes\AppID\escortEng.DLL Key Deleted :HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL Key Deleted :HKLM\SOFTWARE\Classes\AppID\esrv.EXE Key Deleted :HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL Key Deleted :HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Key Deleted :HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL Key Deleted :HKLM\SOFTWARE\Classes\AskSBar.ToolbarPlugin Key Deleted :HKLM\SOFTWARE\Classes\AskSBar.ToolbarPlugin.1 Key Deleted :HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI Key Deleted :HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1 Key Deleted :HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj Key Deleted :HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1 Key Deleted :HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler Key Deleted :HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1 Key Deleted :HKLM\SOFTWARE\Classes\delta.deltaappCore Key Deleted :HKLM\SOFTWARE\Classes\delta.deltaappCore.1 Key Deleted :HKLM\SOFTWARE\Classes\delta.deltadskBnd Key Deleted :HKLM\SOFTWARE\Classes\delta.deltadskBnd.1 Key Deleted :HKLM\SOFTWARE\Classes\delta.deltaHlpr Key Deleted :HKLM\SOFTWARE\Classes\delta.deltaHlpr.1 Key Deleted :HKLM\SOFTWARE\Classes\escort.escortIEPane Key Deleted :HKLM\SOFTWARE\Classes\escort.escortIEPane.1 Key Deleted :HKLM\SOFTWARE\Classes\esrv.deltaESrvc Key Deleted : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1 Key Deleted :HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd Key Deleted :HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1 Key Deleted :HKLM\SOFTWARE\Classes\IMsiDe1egate.Application.1 Key Deleted :HKLM\SOFTWARE\Classes\Prod.cap Key Deleted :HKLM\SOFTWARE\Classes\protocols\handler\viprotocol Key Deleted :HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi Key Deleted :HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.DynamicBarButton Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.DynamicBarButton.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.FeedManager Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.FeedManager.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLMenu Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLMenu.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLPanel Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLPanel.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.MultipleButton Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.MultipleButton.1 Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.PseudoTransparentPlugin Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.PseudoTransparentPlugin.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.Radio Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.Radio.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.RadioSettings Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.RadioSettings.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ScriptButton Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ScriptButton.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SettingsPlugin Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SettingsPlugin.1 Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncher Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncher.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ThirdPartyInstaller Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ThirdPartyInstaller.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.UrlAlertButton Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.UrlAlertButton.1 Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.XMLSessionPlugin Key Deleted :HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.XMLSessionPlugin.1 Key Deleted :HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE Key Deleted :HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1 Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVGSiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin Key Deleted :HKLM\SOFTWARE\MozillaPlugins\@MapsGalaxy_39.com/Plugin Key Deleted :HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} Key Deleted :HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2} Key Deleted :HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D} Key Deleted :HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874} Key Deleted :HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} Key Deleted :HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{2A1260C1-2964-453F-B0BA-FA429472EB5F} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{363D5C92-10DC-4287-93E5-1832EECC48EC} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{3B41BE90-F731-4137-AFF3-2CA951E7F0D9} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{4128C64D-F0DD-4811-9405-D22294E8151F} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{5354D921-3F52-47C5-938D-77A2FB6DEFE7} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{66292684-B2C2-4C7C-B3D2-BF446E30744C} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{69407823-3494-4400-8D49-612549E8F4EE} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{6BFF4BCB-7A73-45A7-AC4C-389A34E1D1EF} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{71144427-1368-4D18-8DC9-2AE3CC4C4F83} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{8FCA5302-6D6D-4645-BF99-D43CF76CE474} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{99E1F6FD-2E94-4CF6-8344-1BA63CD3BD9B} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{B15FD82E-85BC-430D-90CB-65DB1B030510} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DD385519-22E7-4BE2-8A8D-35C66DF4858E} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{ED345812-2722-4DCA-9976-D01832DB44EE} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544} Key Deleted :HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{17B10E59-09E1-4C39-A738-6774D7AB7778} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{1AD2049E-E483-4425-8555-8E0775ACB631} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{2D73F2D0-2FAB-458E-977D-2F9050E0ED60} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{3E9469AF-E866-4476-B767-810630F1F6E7} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{716E443D-7CAA-44F1-866B-F45D00E712CC} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7FC87AC5-FA93-476E-A32C-A941229DED0B} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4} Key Deleted :HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{2D3826A1-F3E8-45D6-94B5-C26D8EC0073B} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{3EE17DD1-E28B-4AED-A3B2-9C29CB2C19D6} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{886F93AD-3CBB-4424-8442-A7340243540F} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{AA289DBC-59B6-40A5-AC7D-C90DF850289C} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{CA723163-6FAD-43D4-8B93-0D8C52BD9974} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F0D4B230-DA4B-4DAF-81E4-DFEE4931A4AA} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{F1F328EB-F5A5-432B-A54C-05F3EF5B0BD8} Key Deleted :HKLM\SOFTWARE\Classes\TypeLib\{FB0E8A09-F08C-44CF-9E15-97ADAC016248} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FE8DBB09-C3D3-4477-80CB-D38914B94BB8} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser HelperObjects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8F0B76E1-4E46-427B-B55B-B90593468AC6} Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5354D921-3F52-47C5-938D-77A2FB6DEFE7} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{71144427-1368-4D18-8DC9-2AE3CC4C4F83} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F0B76E1-4E46-427B-B55B-B90593468AC6} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{99E1F6FD-2E94-4CF6-8344-1BA63CD3BD9B} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ED345812-2722-4DCA-9976-D01832DB44EE} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted :HKLM\SOFTWARE\Microsoft\Internet Explorer\LowRights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85} Key Deleted :HKLM\SOFTWARE\Microsoft\Internet Explorer\LowRights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Key Deleted :HKLM\SOFTWARE\Microsoft\Internet Explorer\LowRights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted :HKLM\SOFTWARE\Microsoft\Internet Explorer\LowRights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} Value Deleted :HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser[{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] Value Deleted :HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks[{93A3111F-4F74-4ED8-895E-D9708497629E}] Key Deleted : HKCU\Software\APN Key Deleted :HKCU\Software\Ask.com Key Deleted : HKCU\Software\AVGSecure Search Key Deleted :HKCU\Software\BabSolution Key Deleted : HKCU\Software\Delta Key Deleted :HKCU\Software\Softonic Key Deleted :HKCU\Software\systweak Key Deleted :HKCU\Software\YahooPartnerToolbar Key Deleted :HKCU\Software\AppDataLow\AskBarDis Key Deleted :HKCU\Software\AppDataLow\AskToolbarInfo Key Deleted :HKCU\Software\AppDataLow\Software\AskToolbar Key Deleted :HKCU\Software\AppDataLow\Software\MapsGalaxy_39 Key Deleted : HKLM\Software\APN Key Deleted :HKLM\Software\AskToolbar Key Deleted : HKLM\Software\AVGSecure Search Key Deleted : HKLM\Software\AVGSecurity Toolbar Key Deleted : HKLM\Software\Delta Key Deleted :HKLM\Software\MapsGalaxy_39 Key Deleted :HKLM\Software\systweak Key Deleted : HKLM\Software\TarmaInstaller Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38} Key Deleted :HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VideoDownloadConverter_4zbarUninstall Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\AppManagement\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\AppManagement\ARPCache\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38} Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AskSBarUninstall Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVGSecure Search Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DeltaChrome Toolbar Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\AppManagement\ARPCache\MapsGalaxy_39bar Uninstall Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\RegCleanPro_is1 Key Deleted :HKCU\Software\Microsoft\Windows\CurrentVersion\AppManagement\ARPCache\VideoDownloadConverter_4zbar Uninstall Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852 Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888 Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF Key Deleted :HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF Key Deleted :HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF Key Deleted :HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9 ***** [ Browsers ] ***** -\\ Internet Explorerv9.0.8112.16526 -\\ Google Chrome v32.0.1700.107 [ File : C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\User Data\Default\preferences ] Deleted : icon_url Deleted : homepage Deleted : search_url Deleted : keyword Deleted :urls_to_restore_on_startup ************************* AdwCleaner[R0].txt - [21603octets] - [11/02/2014 12:10:51] AdwCleaner[s0].txt - [21837octets] - [11/02/2014 12:12:11] ########## EOF -C:\AdwCleaner\AdwCleaner[s0].txt - [21898 octets] ########## De log uit MalwareBytes Anti Malware luidt als volgt: Malwarebytes Anti-Malware(-evaluatieversie-) 1.75.0.1300 www.malwarebytes.org Databaseversie: v2014.02.11.07 Windows Vista Service Pack 2 x86NTFS Internet Explorer 9.0.8112.16421 Rijk en Ineke :: PCTHUIS[administrator] Bescherming: Ingeschakeld 11-2-2014 17:29:25 mbam-log-2014-02-11(17-29-25).txt Scan type: Snelle scan Ingeschakelde scan opties:Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra |Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scan opties: P2P Objecten gescand: 235240 Verstreken tijd: 11minuut/minuten, 7 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objectengedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objectengedetecteerd) Registersleutels gedetecteerd: 1 HKLM\SOFTWARE\SpeedcheckerLimited\PC Speed Up (PUP.Optional.PCSpeedUp.A) -> Succesvol in quarantainegeplaatst en verwijderd. Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objectengedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objectengedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objectengedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objectengedetecteerd) (einde)
  4. Polr
    Hoi Jion, Het programma zoek.exe heeft er 24 uur over gedaan om een log op te stellen. Maar hier is íe dan. Gr. Polr Zoek.exe v5.0.0.0 Updated07-February-2014 Tool run by Rijk en Ineke on zo09-02-2014 at 19:49:41,39. Microsoft® Windows Vista™ HomePremium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode InternetAccess Detected Launched: C:\Users\Rijk enIneke\Pictures\zoek.exe [scan all users] [script inserted] ==== Older Logs====================== C:\zoek-results2014-02-09-142446.log 30858 bytes ==== CreatingSample_10-02-2014_1152.zip ====================== Copied file C:\Users\Rijk enIneke\family_tree_builder_p.exe to sample\family_tree_builder_p.exe sample\family_tree_builder_p.exerenamed to 21EA6E610A42E6170AA3F646EE714A57 C:\Users\Public\Desktop\sample_10-02-2014_1152.zipcreated successfully ==== Deleting CLSID Registry Keys====================== HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\SearchScopes\{8E10960F-C303-4143-A045-F286F1423D56} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\SearchScopes\{BC975B47-6DFE-43E6-BF5A-D2C890136DC2} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} deletedsuccessfully ==== Deleting CLSID RegistryValues ====================== ==== Deleting Services====================== ==== Deleting Files \ Folders====================== C:\ProgramFiles\MyPC Backup notfound C:\Users\RijkenIneke\AppData\Local\SearchProtect not found C:\Windows\system32\tasks\ScheduledUpdatefor Ask Toolbar not found C:\Program Files\Ask.com notfound C:\Users\RijkenIneke\AppData\Local\APN not found C:\Windows\system32\tasks\EPUpdaterdeleted C:\Users\Rijk enIneke\AppData\Roaming\BabSolution deleted C:\Program Files\WebCake deleted C:\ProgramData\AVG Secure Searchdeleted C:\Program Files\AskSBar deleted C:\Program Files\Delta deleted C:\Users\Rijk enIneke\AppData\Roaming\Delta deleted C:\Program Files\DVDVideoSoftTBdeleted C:\Users\Rijk enIneke\appdata\locallow\DVDVideoSoftTB deleted C:\Program Files\MapsGalaxy_39deleted C:\Program Files\RegClean Prodeleted C:\ProgramData\Microsoft\Windows\StartMenu\Programs\RegClean Pro deleted C:\ProgramFiles\VideoDownloadConverter_4z deleted C:\Users\Rijk enIneke\appdata\locallow\AskSBar deleted C:\Users\Rijk en Ineke\AppData\Local\MapsGalaxy_39deleted C:\Users\Rijk enIneke\appdata\locallow\MapsGalaxy_39 deleted C:\Users\Rijk enIneke\AppData\Local\VideoDownloadConverter_4z deleted C:\Users\Rijk enIneke\appdata\locallow\VideoDownloadConverter_4z deleted C:\Program Files\Family Toolbardeleted C:\Program Files\MyPC Backupdeleted C:\Program Files\Systweak deleted C:\Program Files\AVG SecureSearch deleted C:\Program Files\Common Files\AVGSecure Search deleted C:\Users\Rijk enIneke\AppData\Roaming\ZoomBrowser EX deleted C:\Users\Rijk enIneke\AppData\Roaming\DBATL2008.ini deleted C:\Users\Rijk enIneke\AppData\Roaming\Betcat deleted C:\Users\Rijk enIneke\AppData\Roaming\DVDVideoSoftIEHelpers deleted C:\Users\Rijk enIneke\AppData\Roaming\WebCake deleted C:\Users\Rijk enIneke\AppData\Roaming\Babylon deleted C:\Users\Rijk enIneke\AppData\Roaming\Systweak deleted C:\ProgramData\Ask deleted C:\ProgramData\AVG SecurityToolbar deleted C:\ProgramData\Tarma Installerdeleted C:\Users\Rijk enIneke\AppData\Local\APN deleted C:\Users\Rijk enIneke\AppData\Local\SearchProtect deleted C:\Users\Rijk enIneke\AppData\Local\AVG Secure Search deleted C:\Users\Rijk enIneke\AppData\LocalLow\AVG Security Toolbar deleted C:\Users\Rijk enIneke\AppData\LocalLow\AVG Secure Search deleted C:\Users\Rijk enIneke\AppData\LocalLow\IAC deleted C:\Users\Rijk enIneke\AppData\LocalLow\AskToolbar deleted C:\Users\Rijk enIneke\AppData\LocalLow\PriceGong deleted C:\Users\Rijk enIneke\AppData\LocalLow\Conduit deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVGSecure Search deleted C:\Windows\SYSTEM32\TASKS\ScheduledUpdate for Ask Toolbar deleted C:\END deleted C:\Windows\system32\roboot.exedeleted C:\Windows\System32\SearchProtectdeleted C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}deleted C:\Users\Rijk enIneke\family_tree_builder_p.exe deleted "C:\Users\Rijk enIneke\AppData\Roaming\PDFConverterApp" deleted ==== Firefox Extensions Registry====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}"="C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext"[08-10-2013 12:55] ==== Chrome Look====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions aaaaojmikegpiepcfdkkjaplodkpfmlo- C:\Users\Rijk en Ineke\AppData\Local\APN\GoogleCRXs\apnorjtoolbar.crx[] eooncjejnppfjjklapaamhcdmjbilmde- C:\Users\Rijk en Ineke\AppData\Roaming\BabSolution\CR\Delta.crx[] fjoijdanhaiflhibkljeklcghcmmfffh- C:\Program Files\WebCake\WebCakeLayers.crx[] idhngdhcfkoamngbedgpaokgjbnpdiji-C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[14-08-201314:24] jmfkcklnlgedgbglfkkgedjfmejoahla- C:\Program Files\AVG\AVG2012\Chrome\safesearch.crx[26-07-2012 02:23] ndibdjnfmopecpmkdieinmbadjfpblof- C:\ProgramData\AVG Secure Search\ChromeExt\17.3.0.49\avg.crx[] Ask Toolbar - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo Delta Toolbar - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde RealDownloader - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji AVG Safe Search - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla AVG Secure Search - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof Google Wallet Service - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Ask Toolbar - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo Google Docs - Rijk en Ineke\AppData\Local\Google\Chrome\UserData\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Delta Toolbar - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\eooncjejnppfjjklapaamhcdmjbilmde RealDownloader - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji Weather Europe - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\kadgobdfbdigmegffjkflccgkdnjpine AVG Security Toolbar - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof Google Wallet - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix====================== C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo deleted successfully C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo deleted successfully C:\Users\Rijk en Ineke\AppData\Local\Google\Chrome\UserData\Default\LocalStorage\chrome-extension_aaaaojmikegpiepcfdkkjaplodkpfmlo_0.localstoragedeleted successfully C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\User Data\Default\LocalStorage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstoragedeleted successfully C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\User Data\Default\LocalStorage\chrome-extension_ndibdjnfmopecpmkdieinmbadjfpblof_0.localstoragedeleted successfully ==== Set IE to Default====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\InternetExplorer\Main] "Start Page"="https://www.google.nl/?gfe_rd=cr&ei=F-G6Uv2KEcmP8gPtx4DwCA" "Search Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\InternetExplorer\Main] "Start Page"="http://search.myheritage.com" "Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=NL_NL&c=74&bd=Presario&pf=desktop" [HKEY_CURRENT_USER\Software\Microsoft\InternetExplorer\SearchUrl] @="http://www.google.com/search?q=%s" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\AboutURLs] "Tabs"="http://isearch.avg.com/tab?cid={5F45A1AF-024F-4E35-A92D-F8D3D3552FD0}&mid=888a8885310847d689c3d15cc5eeef87-acf8b6166e2749e12b5a0931ba17caf5fc8295aa〈=nl&ds=AVG&pr=fr&d=2011-10-2617:39:41&v=9.0.0.22&sap=nt" [HKEY_CURRENT_USER\Software\Microsoft\InternetExplorer\Search] "SearchAssistant"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" New Values: [HKEY_CURRENT_USER\Software\Microsoft\InternetExplorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="https://www.google.nl/?gfe_rd=cr&ei=F-G6Uv2KEcmP8gPtx4DwCA" [HKEY_LOCAL_MACHINE\Software\Microsoft\InternetExplorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\Software\Microsoft\InternetExplorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\AboutURLs] "Tabs"="res://ieframe.dll/tabswelcome.htm" [HKEY_CURRENT_USER\Software\Microsoft\InternetExplorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" ==== All HKCU SearchScopes====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\InternetExplorer\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A}Unknown Url="Not_Found" {6A1806CD-94D4-4689-BA73-E35EA1EA9990}Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {b0441a0e-a49a-4e16-afc1-74ecced1921f}Unknown Url="Not_Found" {BE28C22E-F666-424d-B5FD-125C4AFEE34E}Zoeken Url="http://search.myheritage.com?orig=ds&q={searchTerms}" {EF52213B-12F0-4CFD-9282-C1DE8FEDFD58}Kelkoo Url="http://nl.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913935" ==== Deleting CLSID Registry Keys====================== HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f} deletedsuccessfully ==== Deleting CLSID RegistryValues ====================== HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\avg@toolbardeleted successfully HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\4zffxtbr@VideoDownloadConverter_4z.comdeleted successfully HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\39ffxtbr@MapsGalaxy_39.comdeleted successfully ==== Deleting Registry Keys====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlodeleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmdedeleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffhdeleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblofdeleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\RegCleanPro_is1 deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\MapsGalaxy_39barUninstall deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\DeltaChrome Toolbar deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\deltadeleted successfully HKEY_LOCAL_MACHINE\software\microsoft\sharedtools\msconfig\startupreg\LightScribe Control Panel deleted successfully ==== Empty IE Cache====================== C:\Users\Default\AppData\Local\Microsoft\Windows\TemporaryInternet Files\Content.IE5 emptied successfully C:\Users\Rijk enIneke\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptiedsuccessfully C:\Users\Rijk enIneke\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptiedsuccessfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\TemporaryInternet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\TemporaryInternet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\TemporaryInternet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\TemporaryInternet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\TemporaryInternet Files\Content.IE5 emptied successfully C:\Users\Rijk enIneke\AppData\Local\Microsoft\Windows\Temporary InternetFiles\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache====================== No FireFox Profiles found ==== Empty Chrome Cache====================== C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptiedsuccessfully ==== Empty All Flash Cache====================== Flash Cache Emptied Successfully ==== Empty All Java Cache====================== Java Cache cleared successfully ==== C:\zoek_backup content====================== C:\zoek_backup (files=5789folders=1526 1648371474 bytes) ==== Empty Temp Folders====================== C:\Users\Default\AppData\Local\Tempemptied successfully C:\Users\DefaultUser\AppData\Local\Temp emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Tempemptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Tempemptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Tempemptied successfully C:\Users\Rijk enIneke\AppData\Local\Temp will be emptiedat reboot C:\Windows\Temp will be emptiedat reboot ==== After Reboot====================== ==== Empty Temp Folders====================== C:\Windows\Temp successfullyemptied C:\Users\RIJKEN~1\AppData\Local\Tempsuccessfully emptied ==== Empty Recycle Bin====================== C:\$RECYCLE.BIN successfullyemptied ==== Deleting Files / Folders====================== "C:\Users\Rijk enIneke\AppData\Local\Microsoft\Windows\Temporary InternetFiles\Content.IE5\index.dat" not deleted ==== EOF on ma 10-02-2014 at22:03:12,40 ======================
  5. Polr
    Hoi Jion, Ik heb jouw instructies uitgevoerd. Hieronder de inhoud van het enorme logbestand dat zoek.exe samenstelde. Ik hoop dat je er iets mee kunt om mij te helpen. Gr. Polr Zoek.exe v5.0.0.0 Updated07-February-2014 Tool run by Rijk en Ineke on zo09-02-2014 at 13:27:56,43. Microsoft® Windows Vista™ HomePremium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode InternetAccess Detected Launched: C:\Users\Rijk enIneke\Pictures\zoek.exe [scan all users] [script inserted] ==== System Restore Info====================== 9-2-2014 13:30:04 Zoek.exe SystemRestore Point Created Succesfully. ==== Empty Folders Check====================== C:\Program Files\Wolf deletedsuccessfully C:\ProgramData\Babylon deletedsuccessfully C:\ProgramData\Bluetooth deletedsuccessfully C:\ProgramData\HPSSUPPLY deletedsuccessfully C:\ProgramData\Oracle deletedsuccessfully C:\ProgramData\PhotoStitchdeleted successfully C:\ProgramData\ZoomBrowserdeleted successfully C:\Users\Rijk enIneke\AppData\Roaming\GetRightToGo deleted successfully C:\Users\Rijk enIneke\AppData\Roaming\PerformerSoft deleted successfully C:\Users\Rijk enIneke\AppData\Roaming\The Complete Genealogy Reporter - FTB deletedsuccessfully C:\Users\Rijk enIneke\AppData\Local\NokiaAccount deleted successfully C:\Users\Rijk enIneke\AppData\Local\PackageAware deleted successfully ==== Deleting CLSID Registry Keys====================== HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0C37B053-FD68-456a-82E1-D788EE342E6F}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0C37B053-FD68-456a-82E1-D788EE342E6F}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1e91a655-bb4b-4693-a05e-2edebc4c9d89}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1e91a655-bb4b-4693-a05e-2edebc4c9d89}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{312f84fb-8970-4fd3-bddb-7012eac4afc9}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{312f84fb-8970-4fd3-bddb-7012eac4afc9}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{71c1d63a-c944-428a-a5bd-ba513190e5d2}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{71c1d63a-c944-428a-a5bd-ba513190e5d2}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c547c6c2-561b-4169-a2a5-20ba771ca93b}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{c547c6c2-561b-4169-a2a5-20ba771ca93b}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{48586425-6bb7-4f51-8dc6-38c88e3ebb58}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{48586425-6bb7-4f51-8dc6-38c88e3ebb58}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{364ea597-e728-4ce4-bb4a-ed846ef47970}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{364ea597-e728-4ce4-bb4a-ed846ef47970}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}deleted successfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deletedsuccessfully HKEY_CLASSES_ROOT\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}deleted successfully HKEY_CLASSES_ROOT\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e}deleted successfully HKEY_CLASSES_ROOT\CLSID\{26842a09-ffa8-4e2c-ae12-0c80f01c3295}deleted successfully HKEY_CLASSES_ROOT\CLSID\{0C37B053-FD68-456a-82E1-D788EE342E6F}deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BrowserHelper Objects\{0C37B053-FD68-456a-82E1-D788EE342E6F} deleted successfully HKEY_CLASSES_ROOT\CLSID\{1e91a655-bb4b-4693-a05e-2edebc4c9d89}deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BrowserHelper Objects\{1e91a655-bb4b-4693-a05e-2edebc4c9d89} deleted successfully HKEY_CLASSES_ROOT\CLSID\{312f84fb-8970-4fd3-bddb-7012eac4afc9}deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BrowserHelper Objects\{312f84fb-8970-4fd3-bddb-7012eac4afc9} deleted successfully HKEY_CLASSES_ROOT\CLSID\{71c1d63a-c944-428a-a5bd-ba513190e5d2}deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BrowserHelper Objects\{71c1d63a-c944-428a-a5bd-ba513190e5d2} deleted successfully HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BrowserHelper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_CLASSES_ROOT\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BrowserHelper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully HKEY_CLASSES_ROOT\CLSID\{c547c6c2-561b-4169-a2a5-20ba771ca93b}deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BrowserHelper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b} deleted successfully HKEY_CLASSES_ROOT\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BrowserHelper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully HKEY_CLASSES_ROOT\CLSID\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}deleted successfully HKEY_CLASSES_ROOT\CLSID\{48586425-6bb7-4f51-8dc6-38c88e3ebb58}deleted successfully HKEY_CLASSES_ROOT\CLSID\{364ea597-e728-4ce4-bb4a-ed846ef47970}deleted successfully HKEY_CLASSES_ROOT\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3}deleted successfully HKEY_CLASSES_ROOT\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}deleted successfully ==== Deleting CLSID Registry Values====================== HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\URLSearchHooks\{00000000-6E41-4FD3-8538-502F5495E5FC} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\URLSearchHooks\{93a3111f-4f74-4ed8-895e-d9708497629e} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\URLSearchHooks\{26842a09-ffa8-4e2c-ae12-0c80f01c3295} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\Toolbar\WebBrowser\{D4027C7F-154A-4066-A1AD-4243D8127440} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\Toolbar\WebBrowser\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\Toolbar\WebBrowser\{48586425-6bb7-4f51-8dc6-38c88e3ebb58} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\Toolbar\WebBrowser\{364ea597-e728-4ce4-bb4a-ed846ef47970} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\Toolbar\WebBrowser\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\URLSearchHooks\{93a3111f-4f74-4ed8-895e-d9708497629e} deletedsuccessfully HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\InternetExplorer\URLSearchHooks\{26842a09-ffa8-4e2c-ae12-0c80f01c3295} deletedsuccessfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\Toolbar\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\Toolbar\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\Toolbar\{48586425-6bb7-4f51-8dc6-38c88e3ebb58} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\Toolbar\{364ea597-e728-4ce4-bb4a-ed846ef47970} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\Toolbar\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\Toolbar\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully ==== Deleting Services====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MapsGalaxy_39Servicedeleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\MapsGalaxy_39Servicedeleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\VideoDownloadConverter_4zServicedeleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\VideoDownloadConverter_4zServicedeleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater17.3.0deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\vToolbarUpdater17.3.0deleted successfully ==== Registry Fix Code====================== Windows Registry Editor Version5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "VideoDownloadConverterSearch Scope Monitor"=- "VideoDownloadConverter_4zBrowser Plugin Loader"=- "vProt"=- "MapsGalaxy Search Scope Monitor"=- "MapsGalaxy_39 BrowserPlugin Loader"=- [-HKEY_LOCAL_MACHINE\software\microsoft\sharedtools\msconfig\startupreg\RegistryBooster] [-HKEY_LOCAL_MACHINE\software\microsoft\sharedtools\msconfig\startupreg\ROC_roc_dec12] [-HKEY_LOCAL_MACHINE\software\microsoft\sharedtools\msconfig\startupreg\vProt] ==== Deleting Files \ Folders====================== C:\Users\Rijk enIneke\AppData\Roaming\PerformerSoft not found C:\Program Files\SearchProtectdeleted C:\Program Files\Speed Test 127deleted "C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job"deleted "C:\Windows\tasks\NortonInternet Security - Volledige systeemscan uitvoeren - Rijk en Ineke.job"deleted "C:\Windows\tasks\NortonSecurity Scan for Rijk en Ineke.job" deleted "C:\Windows\tasks\RegCleanPro_DEFAULT.job" deleted "C:\Windows\tasks\RegCleanPro_UPDATES.job" deleted "C:\Windows\tasks\RegistryBooster.job"deleted ==== Files Recently Created /Modified ====================== ====== C:\Windows ==== ======C:\Users\RIJKEN~1\AppData\Local\Temp ==== 2014-02-06 10:55:09 FBF1CE5A3D017271CF979A3DFF872BFB 26112 ----atw- C:\Users\Rijk enIneke\AppData\Local\Temp\{1873C742-9A61-4EDA-A06B-AA03FA61E094}\GoogleUpdateHelper.msi 2014-02-06 10:55:09 CA0A340ABCF0C14A09691CBC90186AB4 51080 ----atw- C:\Users\Rijk enIneke\AppData\Local\Temp\{1873C742-9A61-4EDA-A06B-AA03FA61E094}\GoogleUpdateBroker.exe 2014-02-06 10:55:09 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Users\Rijk enIneke\AppData\Local\Temp\{1873C742-9A61-4EDA-A06B-AA03FA61E094}\GoogleUpdateSetup.exe 2014-02-06 10:55:09 A7495E342A2EE0160812AC856C11F6CF 847752 ----atw- C:\Users\Rijken Ineke\AppData\Local\Temp\{1873C742-9A61-4EDA-A06B-AA03FA61E094}\goopdate.dll 2014-02-06 10:55:09 9CCBA5E2489E603BB1578D1D541252A8 273800 ----atw- C:\Users\Rijk enIneke\AppData\Local\Temp\{1873C742-9A61-4EDA-A06B-AA03FA61E094}\GoogleCrashHandler64.exe 2014-02-06 10:55:09 600B1A4BCC0823A96DC7B86F005ADBB8 51080 ----atw- C:\Users\Rijk enIneke\AppData\Local\Temp\{1873C742-9A61-4EDA-A06B-AA03FA61E094}\GoogleUpdateOnDemand.exe 2014-02-06 10:55:09 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Rijk enIneke\AppData\Local\Temp\{1873C742-9A61-4EDA-A06B-AA03FA61E094}\GoogleUpdate.exe 2014-02-06 10:55:09 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Users\Rijk enIneke\AppData\Local\Temp\{1873C742-9A61-4EDA-A06B-AA03FA61E094}\GoogleCrashHandler.exe ====== Java Cache ===== 2014-02-08 13:04:21 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Rijk en Ineke\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-4207e367 2014-02-08 13:04:20 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Rijk enIneke\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-5bb1f038 ====== C:\Windows\system32 ===== 2014-02-08 13:03:06 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Windows\System32\javaws.exe 2014-02-08 13:02:55 FD80D0AE205EC54D1A204DDBD6B766DA 94632 ----a-w- C:\Windows\System32\WindowsAccessBridge.dll 2014-02-08 13:02:55 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Windows\System32\javaw.exe 2014-02-08 13:02:55 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Windows\System32\java.exe 2014-02-08 12:26:11 7C428C7AE120278409B4B00E8A629F1C 90948 ----a-w- C:\Windows\System32\cc_20140208_132556.reg ======C:\Windows\system32\drivers ===== ====== C:\Windows\Tasks ====== 2014-02-07 08:33:01 A86CFBC49EDDFF77714C67566A524119 3342 ----a-w- C:\Windows\system32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2940832217-195839467-2300631566-1000 ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-02-08 17:02:57 -------- d-----w- C:\ProgramFiles\trend micro 2014-02-02 10:03:17 -------- d-----w- C:\ProgramFiles\MyPC Backup ======= C: ===== ====== C:\Users\Rijk enIneke\AppData\Roaming ====== 2014-02-02 10:05:29 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Rijk enIneke\AppData\Roaming\PDFConverterApp 2014-02-02 10:02:14 -------- d-----w- C:\Users\Rijken Ineke\AppData\Local\SearchProtect ====== C:\Users\Rijk en Ineke====== 2014-02-08 17:02:06 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Rijk enIneke\Desktop\RSIT.exe 2014-02-08 12:59:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\StartMenu\Programs\Java ====== C: exe-files == 2014-02-07 09:36:29 6A8A2E262F26B69861B579AEA1159CCD 177639 ------r- C:\ProgramFiles\Belastingdienst\Aangifte inkomstenbelasting\2013\ib2013u.exe === C: other files == 2014-02-08 18:00:45 53EAFBF3F7F3E3D2BA20AA9D84416295 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2940832217-195839467-2300631566-1000\$I22LHZ3.com ==== Startup Registry Enabled====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exeoobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe/detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exeoobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe/detectMem" [HKEY_USERS\S-1-5-21-2940832217-195839467-2300631566-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\ProgramFiles\Windows Sidebar\sidebar.exe /autoRun" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "MobileDocuments"="C:\ProgramFiles\Common Files\Apple\Internet Services\ubd.exe" "GoogleUpdate"="C:\Users\Rijk enIneke\AppData\Local\Google\Update\GoogleUpdate.exe /c" "WMPNSCFG"="C:\ProgramFiles\Windows Media Player\WMPNSCFG.exe" "CCleanerMonitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "RtHDVCpl"="RtHDVCpl.exe" "SunJavaUpdateReg"="C:\Windows\system32\jureg.exe" "LogitechQuickCamRibbon"="C:\ProgramFiles\Logitech\Logitech WebCam Software\LWS.exe /hide" "BCSSync"="C:\ProgramFiles\Microsoft Office\Office14\BCSSync.exe /DelayServices" "AVG_TRAY"="C:\ProgramFiles\AVG\AVG2012\avgtray.exe" "AdobeARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "iTunesHelper"="C:\ProgramFiles\iTunes\iTunesHelper.exe" "APSDaemon"="C:\ProgramFiles\Common Files\Apple\Apple Application Support\APSDaemon.exe" "QuickTimeTask"="C:\Program Files\QuickTime\QTTask.exe -atboottime" "TkBellExe"="c:\programfiles\real\realplayer\Update\realsched.exe -osboot" "SunJavaUpdateSched"="C:\ProgramFiles\Common Files\Java\Java Update\jusched.exe" "WindowsDefender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" "Windows Mobile-based devicemanagement"="%windir%\WindowsMobile\wmdSync.exe " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Launcher"="%WINDIR%\SMINST\launcher.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\ProgramFiles\Windows Sidebar\sidebar.exe /autoRun" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "MobileDocuments"="C:\ProgramFiles\Common Files\Apple\Internet Services\ubd.exe" "Google Update"="C:\Users\Rijken Ineke\AppData\Local\Google\Update\GoogleUpdate.exe /c" "WMPNSCFG"="C:\ProgramFiles\Windows Media Player\WMPNSCFG.exe" "CCleanerMonitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" ==== Startup Registry Disabled====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\AppleSyncNotifier] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AppleSyncNotifier" "hkey"="HKLM" "command"="C:\\ProgramFiles\\Common Files\\Apple\\Mobile Device Support\\AppleSyncNotifier.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\APSDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="APSDaemon" "hkey"="HKLM" "command"="\"C:\\ProgramFiles\\Common Files\\Apple\\Apple ApplicationSupport\\APSDaemon.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\CTSyncU.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CTSyncU.exe" "hkey"="HKCU" "command"="\"C:\\ProgramFiles\\Creative\\Sync Manager Unicode\\CTSyncU.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\EEventManager] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="EEventManager" "hkey"="HKLM" "command"="C:\\ProgramFiles\\EPSON\\Creativity Suite\\Event Manager\\EEventManager.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\HP Health Check Scheduler] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HP HealthCheck Scheduler" "hkey"="HKLM" "command"="c:\\ProgramFiles\\Hewlett-Packard\\HP Health Check\\HPHC_Scheduler.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\HP Software Update] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HPSoftware Update" "hkey"="HKLM" "command"="C:\\ProgramFiles\\HP\\HP Software Update\\HPWuSchd2.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\hpsysdrv] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="hpsysdrv" "hkey"="HKLM" "command"="c:\\hp\\support\\hpsysdrv.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\iTunesHelper] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="iTunesHelper" "hkey"="HKLM" "command"="\"C:\\ProgramFiles\\iTunes\\iTunesHelper.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\KBD] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="KBD" "hkey"="HKLM" "command"="C:\\HP\\KBD\\KbdStub.EXE" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\LightScribe Control Panel] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="LightScribeControl Panel" "hkey"="HKCU" "command"="C:\\ProgramFiles\\Common Files\\LightScribe\\LightScribeControlPanel.exe -hidden" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\MyTomTomSA.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MyTomTomSA.exe" "hkey"="HKCU" "command"="\"C:\\ProgramFiles\\MyTomTom 3\\MyTomTomSA.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\OsdMaestro] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="OsdMaestro" "hkey"="HKLM" "command"="\"C:\\ProgramFiles\\Hewlett-Packard\\On-Screen OSD Indicator\\OSD.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\QuickTime Task] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="QuickTimeTask" "hkey"="HKLM" "command"="\"C:\\ProgramFiles\\QuickTime\\QTTask.exe\" -atboottime" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupreg\TomTomHOME.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="TomTomHOME.exe" "hkey"="HKCU" "command"="\"C:\\ProgramFiles\\TomTom HOME 2\\TomTomHOMERunner.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\Apple Mobile Device] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\BlueSoleil Hid Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\Bonjour Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\gupdate1cad9a219324c18] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\gupdatem] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\gusvc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\HP Health Check Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\iPod Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\LightScribeService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\NAUpdate] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\RoxMediaDB9] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\ServiceLayer] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\Start BT in service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\stllssvr] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\TomTomHOMEService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\Services\vToolbarUpdater10.2.0] ==== Startup Folders====================== 2013-11-24 14:18:17 1004 ----a-w- C:\Users\Rijk enIneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ==== Task Scheduler Jobs====================== C:\Windows\tasks\Adobe FlashPlayer Updater.job --a------C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [05-02-201413:46] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job--a------ C:\Program Files\Google\Update\GoogleUpdate.exe [11-04-2010 19:09] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job--a------ C:\Program Files\Google\Update\GoogleUpdate.exe [11-04-2010 19:09] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2940832217-195839467-2300631566-1000Core.job--a------ C:\Users\Rijk en Ineke\AppData\Local\Google\Update\GoogleUpdate.exe[06-02-2013 09:53] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2940832217-195839467-2300631566-1000UA.job--a------ C:\Users\Rijk en Ineke\AppData\Local\Google\Update\GoogleUpdate.exe[06-02-2013 09:53] ==== Other Scheduled Tasks====================== "C:\Windows\system32\tasks\AdobeFlash Player Updater"[C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC"["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\CreateChoiceProcessTask"[C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\EPUpdater"[C:\Users\RIJKEN~1\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore"[C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA"[C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2940832217-195839467-2300631566-1000Core"[C:\Users\Rijk en Ineke\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2940832217-195839467-2300631566-1000UA"[C:\Users\Rijk en Ineke\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\HPHealth Check" ["c:\Program Files\Hewlett-Packard\HP HealthCheck\HPHC_Scheduler.exe"] "C:\Windows\system32\tasks\JavaUpdateAdministrator"[C:\Windows\system32\jusched.exe] "C:\Windows\system32\tasks\JavaUpdateRijken Ineke" [C:\Windows\system32\jusched.exe] "C:\Windows\system32\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2940832217-195839467-2300631566-1000"[C:\Program Files\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\system32\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2940832217-195839467-2300631566-1000"[C:\Program Files\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\system32\tasks\ScheduledUpdate for Ask Toolbar" [C:\Program Files\Ask.com\UpdateTask.exe] "C:\Windows\system32\tasks\{B555CE23-7AFE-4E84-B6FB-34AC032EFD4C}"[C:\Program Files\Skype\Phone\Skype.exe] "C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate"[C:\Program Files\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask"[%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}"="C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext"[08-10-2013 12:55] ==== Chrome Look====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions aaaaojmikegpiepcfdkkjaplodkpfmlo- C:\Users\Rijk enIneke\AppData\Local\APN\GoogleCRXs\apnorjtoolbar.crx[08-02-2013 14:51] eooncjejnppfjjklapaamhcdmjbilmde- C:\Users\Rijk en Ineke\AppData\Roaming\BabSolution\CR\Delta.crx[23-05-201311:15] fjoijdanhaiflhibkljeklcghcmmfffh- C:\Program Files\WebCake\WebCakeLayers.crx[21-06-2013 01:08] idhngdhcfkoamngbedgpaokgjbnpdiji- C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[14-08-201314:24] jmfkcklnlgedgbglfkkgedjfmejoahla- C:\Program Files\AVG\AVG2012\Chrome\safesearch.crx[26-07-2012 02:23] ndibdjnfmopecpmkdieinmbadjfpblof- C:\ProgramData\AVG Secure Search\ChromeExt\17.3.0.49\avg.crx[09-01-201410:37] Ask Toolbar - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo Delta Toolbar - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde RealDownloader - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji AVG Safe Search - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla AVG Secure Search - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof Google Wallet Service - Rijk enIneke\AppData\Local\Google\Chrome\UserData\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Ask Toolbar - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo Google Docs - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Rijk en Ineke\AppData\Local\Google\Chrome\UserData\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Delta Toolbar - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\eooncjejnppfjjklapaamhcdmjbilmde RealDownloader - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji Weather Europe - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\kadgobdfbdigmegffjkflccgkdnjpine AVG Security Toolbar - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof Google Wallet - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Rijk enIneke\AppData\Local\Google\Chrome\User Data\Profile1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== C:\zoek_backup content====================== C:\zoek_backup (files=66folders=18 9199585 bytes) ==== EOF on zo 09-02-2014 at15:24:46,06 ======================
  6. Polr
    Beste iEscape en andere leden, Hierbij het log dat ik volgens de bovenstaande instructies heb laten aanmaken door RSIT32: Logfile of random's system information tool 1.09 (written by random/random) Run by Rijk en Ineke at 2014-02-08 18:02:57 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 84 GB (28%) free of 298 GB Total RAM: 2039 MB (51% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:03:48, on 8-2-2014 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16526) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\RtHDVCpl.exe C:\Windows\WindowsMobile\wmdSync.exe C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe C:\Program Files\AVG\AVG2012\avgtray.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Program Files\MapsGalaxy_39\bar\1.bin\39brmon.exe C:\Program Files\Real\RealPlayer\Update\realsched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Users\Rijk en Ineke\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Windows\system32\schtasks.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\CCleaner\CCleaner.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\Marktplaats Zoekassistent\Marktplaats.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\windows defender\MSASCui.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_44_ActiveX.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\SearchFilterHost.exe C:\Users\Rijk en Ineke\Desktop\RSIT.exe C:\Program Files\trend micro\Rijk en Ineke.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.nl/?gfe_rd=cr&ei=F-G6Uv2KEcmP8gPtx4DwCA R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyHeritage.com Search R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - (no file) R3 - URLSearchHook: (no name) - {93a3111f-4f74-4ed8-895e-d9708497629e} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll R3 - URLSearchHook: (no name) - {26842a09-ffa8-4e2c-ae12-0c80f01c3295} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrcAs.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: MHTBPos00 - {0C37B053-FD68-456a-82E1-D788EE342E6F} - C:\Program Files\Family Toolbar\tbu09631\tbcore3.dll O2 - BHO: Toolbar BHO - {1e91a655-bb4b-4693-a05e-2edebc4c9d89} - C:\PROGRA~1\MAPSGA~2\bar\1.bin\39bar.dll O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Toolbar BHO - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbar.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll O2 - BHO: Search Assistant BHO - {71c1d63a-c944-428a-a5bd-ba513190e5d2} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrcAs.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL O2 - BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.21.5\bh\delta.dll O2 - BHO: Search Assistant BHO - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) O3 - Toolbar: Family Toolbar - {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - C:\Program Files\Family Toolbar\tbu09631\tbcore3.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) O3 - Toolbar: VideoDownloadConverter - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll O3 - Toolbar: MapsGalaxy - {364ea597-e728-4ce4-bb4a-ed846ef47970} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39bar.dll O3 - Toolbar: Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.21.5\deltaTlbr.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [sunJavaUpdateReg] "C:\Windows\system32\jureg.exe" O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [VideoDownloadConverter Search Scope Monitor] "C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h O4 - HKLM\..\Run: [VideoDownloadConverter_4z Browser Plugin Loader] C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbrmon.exe O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [MapsGalaxy Search Scope Monitor] "C:\PROGRA~1\MAPSGA~2\bar\1.bin\39srchmn.exe" /m=2 /w /h O4 - HKLM\..\Run: [MapsGalaxy_39 Browser Plugin Loader] C:\PROGRA~1\MAPSGA~2\bar\1.bin\39brmon.exe O4 - HKLM\..\Run: [TkBellExe] "c:\program files\real\realplayer\Update\realsched.exe" -osboot O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files\Common Files\Apple\Internet Services\ubd.exe O4 - HKCU\..\Run: [Google Update] "C:\Users\Rijk en Ineke\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = Rijk en Ineke\AppData\Roaming\Dropbox\bin\Dropbox.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: HP Clipboek - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Slim selecteren - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{9DA6A4E2-141E-42CD-B831-956198C3693F}: NameServer = 8.8.8.8 O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.3.0\ViProtocol.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe O23 - Service: Google Updateservice (gupdate1cad9a219324c18) (gupdate1cad9a219324c18) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: MapsGalaxyService (MapsGalaxy_39Service) - COMPANYVERS_NAME - C:\PROGRA~1\MAPSGA~2\bar\1.bin\39barsvc.exe O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: VideoDownloadConverterService (VideoDownloadConverter_4zService) - COMPANYVERS_NAME - C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbarsvc.exe O23 - Service: vToolbarUpdater17.3.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe -- End of file - 12815 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2940832217-195839467-2300631566-1000Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2940832217-195839467-2300631566-1000UA.job C:\Windows\tasks\Norton Internet Security - Volledige systeemscan uitvoeren - Rijk en Ineke.job C:\Windows\tasks\Norton Security Scan for Rijk en Ineke.job C:\Windows\tasks\RegClean Pro_DEFAULT.job C:\Windows\tasks\RegClean Pro_UPDATES.job C:\Windows\tasks\RegistryBooster.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}] HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C37B053-FD68-456a-82E1-D788EE342E6F}] MHTBPos00 Class - C:\Program Files\Family Toolbar\tbu09631\tbcore3.dll [2009-05-07 2642432] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1e91a655-bb4b-4693-a05e-2edebc4c9d89}] Toolbar BHO - C:\PROGRA~1\MAPSGA~2\bar\1.bin\39bar.dll [2013-02-04 707728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14 542376] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312f84fb-8970-4fd3-bddb-7012eac4afc9}] Toolbar BHO - C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbar.dll [2013-01-08 707728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] AVG Safe Search - C:\Program Files\AVG\AVG2012\avgssie.dll [2012-10-15 1417336] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{71c1d63a-c944-428a-a5bd-ba513190e5d2}] Search Assistant BHO - C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrcAs.dll [2013-02-04 62864] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL [2013-03-08 4171464] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] AVG Security Toolbar - C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll [2014-01-09 3349528] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 562904] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] delta Helper Object - C:\Program Files\Delta\delta\1.8.21.5\bh\delta.dll [2013-05-20 295832] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}] Search Assistant BHO - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll [2013-01-08 62864] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] Ask Toolbar [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - Family Toolbar - C:\Program Files\Family Toolbar\tbu09631\tbcore3.dll [2009-05-07 2642432] {95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll [2014-01-09 3349528] {D4027C7F-154A-4066-A1AD-4243D8127440} - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - VideoDownloadConverter - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll [2013-01-08 707728] {364ea597-e728-4ce4-bb4a-ed846ef47970} - MapsGalaxy - C:\Program Files\MapsGalaxy_39\bar\1.bin\39bar.dll [2013-02-04 707728] {82E1477C-B154-48D3-9891-33D83C26BCD3} - Delta Toolbar - C:\Program Files\Delta\delta\1.8.21.5\deltaTlbr.dll [2013-05-20 284056] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-05-29 142104] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-05-29 154392] "Persistence"=C:\Windows\system32\igfxpers.exe [2007-05-29 138008] "RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-01-15 4874240] "SunJavaUpdateReg"=C:\Windows\system32\jureg.exe [2007-04-07 54936] "Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdSync.exe [2006-11-02 215552] "LogitechQuickCamRibbon"=C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2009-10-14 2793304] "BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520] "AVG_TRAY"=C:\Program Files\AVG\AVG2012\avgtray.exe [2012-11-19 2598520] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2013-11-02 152392] "APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2013-05-01 421888] "VideoDownloadConverter Search Scope Monitor"=C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe [2013-01-08 42536] "VideoDownloadConverter_4z Browser Plugin Loader"=C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbrmon.exe [2013-01-08 30096] "vProt"=C:\Program Files\AVG Secure Search\vprot.exe [2014-02-05 2552856] "MapsGalaxy Search Scope Monitor"=C:\PROGRA~1\MAPSGA~2\bar\1.bin\39srchmn.exe [2013-02-04 42536] "MapsGalaxy_39 Browser Plugin Loader"=C:\PROGRA~1\MAPSGA~2\bar\1.bin\39brmon.exe [2013-02-04 30096] "TkBellExe"=c:\program files\real\realplayer\Update\realsched.exe [2013-10-08 295512] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Launcher"=C:\Windows\SMINST\launcher.exe [2007-04-03 44168] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920] "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952] "MobileDocuments"=C:\Program Files\Common Files\Apple\Internet Services\ubd.exe [2012-02-23 59240] "Google Update"=C:\Users\Rijk en Ineke\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-06 116648] "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240] "CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-01-21 4455704] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [2011-10-06 59240] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSyncU.exe] C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe [2007-05-30 868352] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EEventManager] C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe [2006-03-17 102400] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2007-05-24 71176] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv] c:\hp\support\hpsysdrv.exe [2007-04-18 65536] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe [2013-11-02 152392] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KBD] C:\HP\KBD\KbdStub.EXE [2006-12-08 65536] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyTomTomSA.exe] C:\Program Files\MyTomTom 3\MyTomTomSA.exe [2011-11-14 435672] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OsdMaestro] C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe [2007-02-15 118784] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files\QuickTime\QTTask.exe [2013-05-01 421888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryBooster] C:\Program Files\Uniblue\RegistryBooster\launcher.exe delay 20000 [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_roc_dec12] C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe /PROMPT /CMPID=roc_dec12 [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2013-07-02 248208] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt] C:\Program Files\AVG Secure Search\vprot.exe [2014-02-05 2552856] C:\Users\Rijk en Ineke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Dropbox.lnk - C:\Users\Rijk en Ineke\AppData\Roaming\Dropbox\bin\Dropbox.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2007-05-17 200704] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL [2013-03-08 4171464] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=157 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=lvcodec2.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "MSVideo"=vfwwdm32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi2"=wdmaud.drv "mixer1"=wdmaud.drv "aux2"=wdmaud.drv "wave2"=wdmaud.drv "midi1"=wdmaud.drv "mixer2"=wdmaud.drv "aux1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-02-08 18:02:57 ----D---- C:\rsit 2014-02-08 18:02:57 ----D---- C:\Program Files\trend micro 2014-02-08 14:03:51 ----D---- C:\ProgramData\Oracle 2014-02-08 14:03:06 ----A---- C:\Windows\system32\javaws.exe 2014-02-08 14:02:55 ----A---- C:\Windows\system32\WindowsAccessBridge.dll 2014-02-08 14:02:55 ----A---- C:\Windows\system32\javaw.exe 2014-02-08 14:02:55 ----A---- C:\Windows\system32\java.exe 2014-02-06 11:21:21 ----D---- C:\Program Files\CCleaner 2014-02-03 09:08:20 ----D---- C:\Windows\system32\SearchProtect 2014-02-02 11:03:17 ----D---- C:\Program Files\MyPC Backup 2014-02-02 11:02:35 ----D---- C:\Program Files\Speed Test 127 2014-02-02 11:02:29 ----D---- C:\Users\Rijk en Ineke\AppData\Roaming\PerformerSoft 2014-02-02 11:02:14 ----D---- C:\Program Files\SearchProtect ======List of files/folders modified in the last 1 month====== 2014-02-08 18:03:34 ----D---- C:\Windows\Temp 2014-02-08 18:02:57 ----D---- C:\Program Files 2014-02-08 14:03:51 ----HD---- C:\ProgramData 2014-02-08 14:03:27 ----SHD---- C:\Windows\Installer 2014-02-08 14:03:06 ----D---- C:\Windows\System32 2014-02-08 14:02:55 ----D---- C:\Program Files\Java 2014-02-08 13:58:54 ----SHD---- C:\System Volume Information 2014-02-08 13:41:31 ----D---- C:\ProgramData\Google 2014-02-08 13:41:31 ----D---- C:\Program Files\Google 2014-02-08 13:40:08 ----D---- C:\Windows\Prefetch 2014-02-08 13:21:04 ----D---- C:\Windows\system32\wbem 2014-02-08 12:32:35 ----D---- C:\Users\Rijk en Ineke\AppData\Roaming\Dropbox 2014-02-08 12:00:32 ----D---- C:\Users\Rijk en Ineke\AppData\Roaming\Belastingdienst 2014-02-08 10:16:51 ----D---- C:\Windows\system32\drivers\AVG 2014-02-08 10:11:12 ----D---- C:\Windows\system32\Tasks 2014-02-08 10:09:52 ----D---- C:\Windows\SMINST 2014-02-06 15:08:50 ----D---- C:\Windows 2014-02-06 13:33:55 ----D---- C:\Windows\inf 2014-02-06 11:36:10 ----D---- C:\Windows\Panther 2014-02-06 11:36:09 ----D---- C:\Windows\Logs 2014-02-06 11:36:09 ----D---- C:\Windows\Debug 2014-02-05 20:18:02 ----D---- C:\Windows\system32\drivers 2014-02-05 20:04:10 ----D---- C:\Users\Rijk en Ineke\AppData\Roaming\Betcat 2014-02-05 17:37:50 ----D---- C:\Program Files\Common Files\Symantec Shared 2014-02-05 13:46:18 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2014-02-05 13:17:53 ----D---- C:\Program Files\AVG Secure Search 2014-02-05 13:16:06 ----D---- C:\Windows\Tasks 2014-02-05 13:16:06 ----D---- C:\Windows\system32\Msdtc 2014-02-05 13:13:44 ----D---- C:\Windows\system32\config 2014-02-05 13:12:55 ----D---- C:\Windows\system32\spool 2014-02-05 13:12:54 ----D---- C:\Windows\system32\CodeIntegrity 2014-02-05 13:12:54 ----D---- C:\Windows\system32\catroot2 2014-02-05 13:12:40 ----D---- C:\Program Files\Common Files\AVG Secure Search 2014-02-05 13:12:37 ----D---- C:\Windows\registration 2014-02-02 11:04:57 ----D---- C:\Windows\winsxs 2014-01-16 11:21:02 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-01-16 09:59:46 ----N---- C:\Windows\system32\MpSigStub.exe 2014-01-15 19:52:12 ----D---- C:\Windows\system32\MRT 2014-01-15 19:38:59 ----A---- C:\Windows\system32\mrt.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2012-04-19 24896] R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2012-01-31 31952] R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2008-11-20 43872] R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2012-11-08 250080] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2011-12-23 41040] R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2013-04-11 302368] R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2013-11-11 37664] R3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2012-12-10 142176] R3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\avgidsfilterx.sys [2011-12-23 24144] R3 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2011-12-23 17232] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-05-17 1767936] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-01-15 2047576] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2009-10-07 25752] R3 LVRS;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs.sys [2009-10-07 266008] R3 LVUVC;Logitech Webcam 200(UVC); C:\Windows\system32\DRIVERS\lvuvc.sys [2009-10-07 6756632] R3 Ps2;PS2; C:\Windows\system32\DRIVERS\PS2.sys [2005-12-12 19072] R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-03-05 76288] R3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-07-12 73344] R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560] R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136] S0 BTHidEnum;Bluetooth HID Enumerator; C:\Windows\System32\Drivers\vbtenum.sys [] S0 BTHidMgr;Bluetooth HID Manager Service; C:\Windows\System32\Drivers\BTHidMgr.sys [] S3 BlueletAudio;Bluetooth Audio Service; C:\Windows\system32\DRIVERS\blueletaudio.sys [] S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\Windows\system32\DRIVERS\BlueletSCOAudio.sys [] S3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys [] S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\Windows\System32\Drivers\btcusb.sys [] S3 Dot4;Microsoft IEEE-1284.4-stuurprogramma; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584] S3 Dot4Print;Stuurprogramma voor printerklasse voor IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384] S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632] S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520] S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-05-17 1767936] S3 lvpopflt;Logitech POP Suppression Filter; C:\Windows\system32\DRIVERS\lvpopflt.sys [2009-10-07 114712] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016] S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2010-02-26 18176] S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2010-02-26 22528] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816] S3 pfc;Padus ASPI Shell; C:\Windows\system32\drivers\pfc.sys [2003-09-19 21248] S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2008-01-19 8192] S3 SymIMMP;SymIMMP; C:\Windows\system32\DRIVERS\SymIM.sys [] S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-02-26 8192] S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2012-12-13 45056] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328] S3 usbser;Nokia USB Serial Port; C:\Windows\system32\DRIVERS\usbser.sys [2013-08-29 27648] S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-02-26 8192] S3 usbvideo;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016] S3 VComm;Virtual Serial port driver; C:\Windows\system32\DRIVERS\VComm.sys [] S3 VcommMgr;Bluetooth VComm Manager Service; C:\Windows\System32\Drivers\VcommMgr.sys [] S3 winusb;WinUSB Service; C:\Windows\system32\DRIVERS\winusb.sys [2009-04-11 31616] S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe [2013-10-16 5175856] R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288] R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504] R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2008-01-19 21504] R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 154136] R2 MapsGalaxy_39Service;MapsGalaxyService; C:\PROGRA~1\MAPSGA~2\bar\1.bin\39barsvc.exe [2013-02-04 42504] R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-19 21504] R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-08-14 39056] R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2013-07-02 93072] R2 uagqecsvc;Microsoft Forefront UAG Quarantine Enforcement Client; C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe [2010-04-09 149904] R2 VideoDownloadConverter_4zService;VideoDownloadConverterService; C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbarsvc.exe [2013-01-08 42504] R2 vToolbarUpdater17.3.0;vToolbarUpdater17.3.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe [2014-01-09 1771544] R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-19 21504] R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 553288] R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate1cad9a219324c18;Google Updateservice (gupdate1cad9a219324c18); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-11 133104] S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504] S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05 257928] S3 DMService;Microsoft Forefront UAG Endpoint Component Manager; C:\Windows\DOWNLO~1\DMService.exe [2010-06-13 468368] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-11 133104] S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-02-10 138168] S3 IDriverT;InstallDriver Table Manager; c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-03-08 30798512] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856] S4 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504] S4 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2007-05-24 61440] S4 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2011-03-04 584488] S4 RoxMediaDB9;RoxMediaDB9; c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2007-05-11 887544] S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936] S4 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-05-03 74656] -----------------EOF-----------------
  7. Polr
    Mijn computer (Compaq) start heel langzaam op. Ik heb meerdere problemen, zoals: - niet kunnen doorlinken vanuit mails in Outlook en Gmail; - verwijderen software lukt niet omdat eerst alle Google-chrome vensters gesloten moeten worden. Ik zie geen geopende vensters; - ik krijg meldingen dat google chrome mijn internetbrowser niet meer ondersteunt wegens een verouderde versie; - ook het verwijderen van Google Chrome en de Ask-toolbar lukt niet a.g.v. het tweede aandachtsstreepje Ik heb het idee dat Google Chrome de veroorzaker is van mijn problemen. Ook zou ik graag het opstarten willen versnellen. Kunt u mij hierbij helpen? Polr
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.