Ga naar inhoud

acam

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    8

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door acam

  1. acam
    ik kreeg op firefox zojuist de melding dat het volgnde script loopt: https://ads1.msads.net/adbar/products/v2.1/adbar.js:1 heeft dit iets met het probleem te maken?
  2. acam
    voor alle zekerheid hier het logje na schoonmaken en reboot# AdwCleaner v3.302 - Rapport aangemaakt 03/08/2014 op 12:54:33 # Laatste Update 30/07/2014 door Xplode # Besturingssysteem : Windows Vista Home Premium Service Pack 2 (32 bits) # Gebruikersnaam : van iersel - GATTOPARDO # Gestart vanuit : C:\Users\van iersel\Documents\Documents\adwcleaner_3.302(1).exe # Optie : Verwijderen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** Map Verwijderd : C:\ProgramData\~0 ***** [ Taken ] ***** ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** ***** [ Browsers ] ***** -\\ Internet Explorer v9.0.8112.16526 -\\ Mozilla Firefox v31.0 (x86 en-US) [ Bestand : C:\Users\van iersel\AppData\Roaming\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271\prefs.js ] -\\ Google Chrome v36.0.1985.125 [ Bestand : C:\Users\van iersel\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [2329 octets] - [05/01/2014 22:40:47] AdwCleaner[R1].txt - [1080 octets] - [24/01/2014 19:33:20] AdwCleaner[R2].txt - [1201 octets] - [01/02/2014 12:27:39] AdwCleaner[R3].txt - [1306 octets] - [06/02/2014 22:21:18] AdwCleaner[R4].txt - [3942 octets] - [11/06/2014 14:41:08] AdwCleaner[R5].txt - [1941 octets] - [27/07/2014 14:09:40] AdwCleaner[R6].txt - [1810 octets] - [03/08/2014 12:35:40] AdwCleaner[s0].txt - [2444 octets] - [05/01/2014 22:43:18] AdwCleaner[s1].txt - [1142 octets] - [24/01/2014 19:35:27] AdwCleaner[s2].txt - [1263 octets] - [01/02/2014 12:46:50] AdwCleaner[s3].txt - [777 octets] - [06/02/2014 22:26:30] AdwCleaner[s4].txt - [4078 octets] - [11/06/2014 14:44:11] AdwCleaner[s5].txt - [2013 octets] - [27/07/2014 14:15:06] AdwCleaner[s6].txt - [1712 octets] - [03/08/2014 12:54:33] ########## EOF - C:\AdwCleaner\AdwCleaner[s6].txt - [1772 octets] ##########
  3. acam
    # AdwCleaner v3.302 - Rapport aangemaakt 03/08/2014 op 12:35:40 # Laatste Update 30/07/2014 door Xplode # Besturingssysteem : Windows Vista Home Premium Service Pack 2 (32 bits) # Gebruikersnaam : van iersel - GATTOPARDO # Gestart vanuit : C:\Users\van iersel\Documents\Documents\adwcleaner_3.302(1).exe # Optie : Scannen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** Map Gevonden : C:\ProgramData\~0 ***** [ Taken ] ***** Taak Gevonden : FoxTab ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** ***** [ Browsers ] ***** -\\ Internet Explorer v9.0.8112.16526 -\\ Mozilla Firefox v31.0 (x86 en-US) [ Bestand : C:\Users\van iersel\AppData\Roaming\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271\prefs.js ] -\\ Google Chrome v36.0.1985.125 [ Bestand : C:\Users\van iersel\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [2329 octets] - [05/01/2014 22:40:47] AdwCleaner[R1].txt - [1080 octets] - [24/01/2014 19:33:20] AdwCleaner[R2].txt - [1201 octets] - [01/02/2014 12:27:39] AdwCleaner[R3].txt - [1306 octets] - [06/02/2014 22:21:18] AdwCleaner[R4].txt - [3942 octets] - [11/06/2014 14:41:08] AdwCleaner[R5].txt - [1941 octets] - [27/07/2014 14:09:40] AdwCleaner[R6].txt - [1311 octets] - [03/08/2014 12:35:40] AdwCleaner[s0].txt - [2444 octets] - [05/01/2014 22:43:18] AdwCleaner[s1].txt - [1142 octets] - [24/01/2014 19:35:27] AdwCleaner[s2].txt - [1263 octets] - [01/02/2014 12:46:50] AdwCleaner[s3].txt - [777 octets] - [06/02/2014 22:26:30] AdwCleaner[s4].txt - [4078 octets] - [11/06/2014 14:44:11] AdwCleaner[s5].txt - [2013 octets] - [27/07/2014 14:15:06] ########## EOF - C:\AdwCleaner\AdwCleaner[R6].txt - [1730 octets] ##########
  4. acam
    Zoek.exe v5.0.0.0 Updated 31-07-2014 Tool run by van iersel on vr 01-08-2014 at 18:42:47,85. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\van iersel\Documents\Documents\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2014-07-28-201933.log 25430 bytes ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Internet Explorer\SearchScopes\{747AD008-637F-4046-835F-3DE5D48CF9D7} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== 32 Bit HP CIO Components Installer 3M Products Update version 2012-05 for Microsoft Office 2010 7-Zip 9.20 Aangifte inkomstenbelasting 2007 Aangifte inkomstenbelasting 2008 Aangifte inkomstenbelasting 2008 voor ondernemers Aangifte inkomstenbelasting 2010 Aangifte inkomstenbelasting 2011 Aangifte inkomstenbelasting 2012 Aangifte inkomstenbelasting 2013 ABBYY FineReader 6.0 Sprint Acrobat.com Adobe AIR Adobe Anchor Service CS3 Adobe Asset Services CS3 Adobe Bridge CS3 Adobe Bridge Start Meeting Adobe Camera Raw 4.0 Adobe CMaps Adobe Color - Photoshop Specific Adobe Color Common Settings Adobe Color EU Extra Settings Adobe Color JA Extra Settings Adobe Color NA Recommended Settings Adobe Default Language CS3 Adobe Device Central CS3 Adobe Digital Editions 2.0 Adobe Download Manager Adobe ExtendScript Toolkit 2 Adobe Flash Player 14 ActiveX Adobe Flash Player 14 Plugin Adobe Fonts All Adobe Help Viewer CS3 Adobe Linguistics CS3 Adobe Media Player Adobe PDF Library Files Adobe Photoshop CS3 Adobe Reader X (10.1.10) Adobe Setup Adobe Stock Photos CS3 Adobe Type Support Adobe Update Manager CS3 Adobe Version Cue CS3 Client Adobe WinSoft Linguistics Plugin Adobe XMP Panels CS3 Apple Application Support Apple Mobile Device Support Apple Software Update Atheros AR5007 Wireless LAN - USB B110 Bonjour Brother MFL-Pro Suite DCP-J752DW BufferChm CANON iMAGE GATEWAY Task for ZoomBrowser EX Canon Internet Library for ZoomBrowser EX Canon MOV Decoder Canon MOV Encoder Canon MovieEdit Task for ZoomBrowser EX Canon Utilities CameraWindow Canon Utilities CameraWindow DC Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX Canon Utilities MyCamera Canon Utilities MyCamera DC Canon Utilities PhotoStitch Canon Utilities RemoteCapture Task for ZoomBrowser EX Canon Utilities ZoomBrowser EX Canon ZoomBrowser EX Memory Card Utility Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Common Catalyst Control Center Graphics Previews Vista Catalyst Control Center Localization Dutch ccc-core-static ccc-utility CCC Help Dutch CCleaner Compatibiliteitspakket voor het 2007 Microsoft Office system Compatibility Pack for the 2007 Office system Consumentenbond InformBar voor Internet Explorer Corel Paint Shop Pro X CorelDRAW Essential Edition 3 CorelDRAW Graphics Suite X4 - Capture CorelDRAW Graphics Suite X4 - Content CorelDRAW Graphics Suite X4 - Draw CorelDRAW Graphics Suite X4 - Filters CorelDRAW Graphics Suite X4 - FontNav CorelDRAW Graphics SUite X4 - ICA CorelDRAW Graphics Suite X4 - IPM CorelDRAW Graphics Suite X4 - Lang NL CorelDRAW Graphics Suite X4 - PP CorelDRAW Graphics Suite X4 - VBA CorelDRAW Graphics Suite X4 CorelDRAW® Graphics Suite X4 - Windows Shell Extension CorelDRAW® Graphics Suite X4 D3DX10 Data Lifeguard Diagnostic for Windows 1.24 Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition EMCO Malware Destroyer 6 EmoDio Emsisoft Anti-Malware FileASSASSIN FileZilla Client 3.8.1 Firebird SQL Server - MAGIX Edition Glary Utilities 5.4 Google Afmelden voor advertentiecookie Google Chrome Google Desktop Google Drive Google Earth Google Update Helper Hauppauge MCE XP/Vista Software Encoder (2.0.25102) HD Tune Pro 5.50 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) HPAppStudio HPPhotoGadget HPSSupply IE7Pro Image Resizer Powertoy Clone for Windows InterVideo WinDVD 8 iTunes Junk Mail filter update KPN Assistent LightScribe System Software 1.10.13.1 LUMIX RAW Codec 1.0 Macromedia Dreamweaver MX 2004 Macromedia Extension Manager Macromedia Fireworks MX 2004 Macromedia Flash MX 2004 Macromedia FreeHand MXa MAGIX Film op DVD 7 7.0.3.0 (NL) MAGIX Foto Manager 2008 5.0.3.354 (NL) MAGIX Goya burnR 1.3.1.3 (NL) MAGIX Screenshare 4.3.6.1987 (NL) Malwarebytes Anti-Malware versie 2.0.2.1012 Mesh Runtime Messenger Companion Microsoft .NET Framework 3.5 Language Pack SP1 - nld Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (NLD) Microsoft Application Error Reporting Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office File Validation Add-In Microsoft Office FrontPage 2003 Microsoft Office Home and Student 2010 Microsoft Office Live Add-in 1.5 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook Connector Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Editie 2003 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Single Image 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft SQL Server Compact 3.5 SP2 ENU Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Mozilla Firefox 30.0 (x86 en-US) Mozilla Maintenance Service Mozilla Thunderbird 24.6.0 (x86 nl) MSVCRT MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB941833) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP2 Parser and SDK MSXML 4.0 SP3 Parser MSXML 4.0 SP3 Parser (KB2758694) neroxml Network Nikon Message Center Nikon RAW Codec Nuance PaperPort 12 Nuance PDF Viewer Plus OGA Notifier 2.0.0048.0 Paint.NET v3.5.11 PaperPort Image Printer Paragon Backup & RecoveryT 2011 (Advanced) Free PDF Settings PHOTOfunSTUDIO 6.2 HD Edition Picasa 3 Picture Control Utility PS_AIO_07_B110_SW_Min QuickTransfer Rapport Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista Realtek High Definition Audio Driver Recuva Revo Uninstaller 1.95 Scan Scansoft PDF Professional Secunia PSI (3.0.0.7009) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft Office 2010 (KB2553284) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2760781) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2767915) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Segoe UI Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition SES Driver Shared C Run-time for x86 SILKYPIX Developer Studio 3.1 SE Skins Skype Click to Call SkypeT 6.3 SmartWebPrinting Spelling Dictionaries Support For Adobe Reader 9 Spybot - Search & Destroy SpywareBlaster 5.0 Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL Time Stopper TomTom HOME TomTom HOME Visual Studio Merge Modules Toolbox Total Commander (Remove or Repair) Trusteer Eindpuntbeveiliging Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition Update Manager USB Wireless Keyboard Driver Van Dale Grote woordenboeken Engels VCRedistSetup ViewNX Vista Audio Pack Visual Basic for Applications ® Core - Dutch Visual Basic for Applications ® Core - English Visual Basic for Applications ® Core Visual C++ 2008 x86 Runtime - (v9.0.30729) Visual C++ 2008 x86 Runtime - v9.0.30729.01 VSO Image Resizer 3.0.1.76 WD Quick View WD SmartWare WD SmartWare Installer WebReg Western Digital USB 3.0 Host Controller Driver Windows-stuurprogrammapakket - eMPIA Technology Inc, (emAudio) MEDIA (08/31/2007 5.7.0831.0) Windows 7 Upgrade Advisor Windows Installer Clean Up Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen Windows Live Mesh Windows Live Messenger Windows Live Messenger Companion Core Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live Sync Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Windows Media Player Firefox Plugin WinRescue Vista Wuala Wuala CBFS Wuala OverlayIcons ==== Running Processes ====================== C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\Ati2evxx.exe C:\Windows\system32\SLsvc.exe C:\Windows\system32\Ati2evxx.exe C:\Program Files\Emsisoft Anti-Malware\a2service.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe C:\Windows\system32\CISVC.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Program Files\Glary Utilities 5\Integrator.exe C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe C:\Program Files\Secunia\PSI\sua.exe C:\Program Files\tomtomnieuw\TomTomHOMEService.exe C:\Windows\system32\UI0Detect.exe C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\System32\WUDFHost.exe C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Microsoft IntelliPoint\ipoint.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\iPod\bin\iPodService.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\wbem\unsecapp.exe C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2wizard.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Brother\Brother Help\BrotherHelp.exe C:\Program Files\Browny02\BrYNSvc.exe C:\Program Files\ControlCenter4\BrCtrlCntr.exe C:\Program Files\ControlCenter4\BrCcUxSys.exe C:\Program Files\Nuance\PaperPort\pptd40nt.exe C:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe C:\Program Files\Secunia\PSI\psi_tray.exe C:\Windows\system32\wuauclt.exe C:\Users\van iersel\Documents\Documents\zoek.exe C:\Windows\system32\conime.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\taskmgr.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k bthsvcs C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Users\van iersel\AppData\Roaming\ZoomBrowser EX deleted C:\Users\van iersel\AppData\Roaming\ShiftN.ini deleted C:\Users\van iersel\AppData\Roaming\temp.ini deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 deleted C:\Users\van iersel\Searches deleted C:\Users\van iersel\AppData\LocalLow\ADSRemoval deleted C:\Windows\wininit.ini deleted C:\Users\van iersel\dfsetup104.exe deleted C:\Users\van iersel\IE8-WindowsVista-x86-NLD.exe deleted C:\Users\van iersel\PureText.exe deleted C:\Users\van iersel\setup_Kruidvat_fotoservice.exe deleted "C:\Users\van iersel\AppData\Roaming\Static Library" deleted "C:\ProgramData\String Ensemble" deleted "C:\ProgramData\TEMP" deleted ==== System Specs ====================== Windows: Windows Vista Home Premium Edition Service Pack 2 (Build 6002) Memory (RAM): 2046 MB CPU Info: AMD Athlon 64 X2 Dual Core Processor 5200+ CPU Speed: 2558,2 MHz Sound Card: Luidsprekers (Realtek High Defi | Apparaat voor digitale uitvoer | Display Adapters: ATI Radeon HD 2600 PRO | ATI Radeon HD 2600 PRO | RDPDD Chained DD | RDP Encoder Mirror Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1024 X 768 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller CD / DVD Drives: 2x (D: | E: | ) D: Optiarc DVD RW AD-7191S | E: TOSHIBA DVD/HD SD-H802A Ports: COM1 LPT1 Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 241,7GB | F: 106,1GB | G: 106,2GB Hard Disks - Free: C: 93,1GB | F: 10,8GB | G: 59,7GB Manufacturer *: Phoenix Technologies, LTD BIOS Info: AT/AT COMPATIBLE | 02/04/08 | TGAOEM - 42302e31 Time Zone: West-Europa (standaardtijd) Motherboard *: ASUSTeK Computer INC. M2A-VM HDMI Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: ESET NOD32 Antivirus 7.0 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: Spybot - Search and Destroy disabled (Outdated) Anti-Spyware: ESET NOD32 Antivirus 7.0 disabled (Outdated) Internet Explorer Version: 9.0.8112.16421 Mozilla Firefox version: 30.0 (x86 en-US) Google Chrome version: 36.0.1985.125 Adobe Reader version: 10.1.10.18 Flash Player version: 14.0.0.145 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-07-28 09:46:41 3BD7FC1DD97F9B4271CA88C5D3EAAE53 249838830 ----a-w- C:\Windows\MEMORY.DMP ====== C:\Users\VANIER~1\AppData\Local\Temp ==== 2014-07-27 19:28:44 406B6A2F01D5F7D39A94E0C19E8D1DA4 37944 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\nsak.sys 2014-07-27 19:28:43 A496F1DFC34EEDF8FD34F7739A184787 1767720 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\NSE_W32.DLL 2014-07-27 19:28:43 6CFFA27F0256C43E853375C5749C576A 217272 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\statslib.dll 2014-07-27 19:27:59 A8235D366029C2F1FCDAD5481122C16B 427368 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\ncl.dll 2014-07-27 19:27:59 2AB5CC762B0AF715DAE408CFB20C59BB 530712 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\ncm3.dll 2014-07-27 18:24:09 406B6A2F01D5F7D39A94E0C19E8D1DA4 37944 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\nsak.sys 2014-07-27 18:24:08 A496F1DFC34EEDF8FD34F7739A184787 1767720 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\NSE_W32.DLL 2014-07-27 18:24:08 6CFFA27F0256C43E853375C5749C576A 217272 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\statslib.dll 2014-07-27 18:22:48 A8235D366029C2F1FCDAD5481122C16B 427368 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\ncl.dll 2014-07-27 18:22:48 2AB5CC762B0AF715DAE408CFB20C59BB 530712 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\ncm3.dll 2014-07-27 15:57:37 DAC43BD33E1B5794F02B6C909845F384 36352 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\x64\wmi64.exe 2014-07-27 15:57:36 D554F6B51A0EEC6E78B9778C65F3BE47 31424 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\ushata.dll 2014-07-27 15:57:36 B5A992A036116061750DDF083BD2BD73 852160 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\updater.dll 2014-07-27 15:57:16 58AF6D1A8A43E91B70542D73CF1F5131 98496 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\prremote.dll 2014-07-27 15:57:15 F09A564C63ED8A059A9EE0F63871C091 172224 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\prloader.dll 2014-07-27 15:57:14 A5F16EE2F52072230969E437AC12F978 557248 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\msvcp80.dll 2014-07-27 15:57:14 4A0406AF98A5A881D607E19D33962786 635072 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\msvcr80.dll 2014-07-27 15:57:13 4C74880A2682C6902468E0D7DBBB029A 487616 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\msvcm80.dll 2014-07-27 15:57:12 E1B9E729502A0F0B8714394DD5DFE761 18112 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\memmng.dll 2014-07-27 15:57:12 2D9B4793B614073C0DEDC3EE033610AC 19328 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\kldw.exe 2014-07-27 15:57:11 D48B256B3E99347B4795414DABD09D1D 94400 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\fssync.dll 2014-07-27 15:57:10 6148A0773EB03035119384CBE35A38FE 135360 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\diffs.dll 2014-07-27 15:57:10 5D1B5C206B7AC0461962DBF43A7EE495 1093808 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\dbghelp.dll 2014-07-27 15:57:09 B27D76751A9878DA5D76A3DAE5C5DD89 17088 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\clldr.dll 2014-07-27 15:54:01 A4E6C7E79AA4D313A3936D2D00E87EC8 2115264 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\avzkrnl.dll 2014-07-27 15:52:40 00E4D2AB7FF210B6EC2B497A2C7D161A 457520 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\9528799.exe 2014-07-27 15:48:09 C7D4F357C482DD37E2B05F34093B7B0C 615728 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win64\2\600\9528799drv.sys 2014-07-27 15:48:09 2434D3BC1C4876D53BFBCF4AD1A2D2E3 180528 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\helper64.exe 2014-07-27 15:48:08 B86A9608C9E07CAF205D44D53182E5F5 616752 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win64\2\501\9528799drv.sys 2014-07-27 15:48:07 795EC29BA21F1D948FD6FD740C00B599 458336 ------w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win64\1\kl1.sys 2014-07-27 15:48:06 AF04D0CE7939324E9A605B159295706C 570160 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win32\2\600\9528799drv.sys 2014-07-27 15:48:05 5D92A03045A6A98708975B3D77B39A36 565552 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win32\2\501\9528799drv.sys 2014-07-27 15:48:04 871C226234A48C24DFE7478F36C0050C 135776 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win32\1\51280745.sys 2014-07-27 15:47:48 9DE53344DA73B22CD37D8A307741C69D 147103680 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\9528799rar.exe 2014-07-27 15:47:45 70098BF9832ABDCFC8486E23E84F3DA8 820080 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\9528799.exe ====== Java Cache ===== ====== C:\Windows\system32 ===== 2014-07-24 07:46:23 2628B4077A3DAB70B60AC50B8AC9A415 8192 ----a-w- C:\Windows\System32\WDPABKP.dat ====== C:\Windows\system32\drivers ===== 2014-07-28 11:26:28 12E71DA845D76665B56753AD149E32B3 110296 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-07-28 11:26:00 8683C1B450F4B3872839308D836E0F92 23256 ----a-w- C:\Windows\System32\drivers\mbam.sys 2014-07-28 11:26:00 799613BA73D25641402AA81B6403EFF8 51928 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-07-28 11:26:00 1AA835E8A0B8EDF3D676B4ED4BF5EF07 74456 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2014-07-27 15:48:04 871C226234A48C24DFE7478F36C0050C 135776 ----a-w- C:\Windows\System32\drivers\51280745.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-07-28 11:29:52 -------- d-----w- C:\Program Files\FileASSASSIN 2014-07-28 06:52:08 -------- d-----w- C:\Program Files\KPN 2014-07-08 14:24:26 -------- d-----w- C:\Program Files\iPod 2014-07-08 14:24:19 -------- d-----w- C:\Program Files\iTunes 2014-07-08 12:11:59 -------- d-----w- C:\Program Files\Bonjour 2014-07-08 12:01:40 -------- d-----w- C:\Program Files\Apple Software Update 2014-07-08 11:56:15 -------- d-----w- C:\Program Files\Common Files\Apple ======= C: ===== ====== C:\Users\van iersel\AppData\Roaming ====== 2014-08-01 15:37:01 -------- d-----w- C:\Users\van iersel\AppData\Local\KPN 2014-07-27 18:22:18 -------- d-----w- C:\Users\van iersel\AppData\Local\Norman Malware Cleaner ====== C:\Users\van iersel ====== 2014-07-28 13:15:15 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\van iersel\Downloads\RSIT.exe 2014-07-28 11:29:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileASSASSIN 2014-07-28 09:39:15 3C7707013DEEA5ED7F68A29A007A7D57 321848 ----a-w- C:\Users\van iersel\Downloads\mbam-clean-2.1.1.1001.exe 2014-07-28 06:52:50 -------- dc-h--w- C:\ProgramData\{65645173-D674-42EE-9CA4-E050D7BF480F} 2014-07-28 06:49:30 788AF35B6CF836DD14B737E8F8F2C574 82947248 ----a-w- C:\Users\van iersel\Downloads\setup_kpn_assistent (1).exe 2014-07-28 06:41:41 788AF35B6CF836DD14B737E8F8F2C574 82947248 ----a-w- C:\Users\van iersel\Downloads\setup_kpn_assistent.exe 2014-07-27 20:24:34 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (7).exe 2014-07-27 20:24:05 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (6).exe 2014-07-27 18:02:00 5A10D178B48EB4AC51B1FC1F61D2E0CD 348195264 ----a-w- C:\Users\van iersel\Downloads\Norman_Malware_Cleaner.exe 2014-07-27 17:05:29 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (5).exe 2014-07-27 17:05:00 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (4).exe 2014-07-27 16:44:35 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (3).exe 2014-07-27 16:39:18 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (2).exe 2014-07-27 16:38:54 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (1).exe 2014-07-27 16:25:07 6060B035E967BCDBA7070153522CAACF 148868920 ----a-w- C:\Users\van iersel\Downloads\setup_11.0.3.7.x01_2014_07_27_15_57 (1).exe 2014-07-27 16:22:32 F12FE98405679BDAD148C491D98E5166 38824552 ----a-w- C:\Users\van iersel\Downloads\FileFormatConverters (2).exe 2014-07-27 16:22:32 A416FCEACC08E8458E01E8422A7D0A2A 28694720 ----a-w- C:\Users\van iersel\Downloads\Windows-KB890830-V5.14 (1).exe 2014-07-27 16:10:59 F12FE98405679BDAD148C491D98E5166 38824552 ----a-w- C:\Users\van iersel\Downloads\FileFormatConverters (1).exe 2014-07-27 16:10:59 A416FCEACC08E8458E01E8422A7D0A2A 28694720 ----a-w- C:\Users\van iersel\Downloads\Windows-KB890830-V5.14.exe 2014-07-27 14:33:54 AB6EE305F8244999BD6D48C2D61D23E6 189320 ----a-w- C:\Users\van iersel\Downloads\kss12.0.1.881de_en_es_fr_it_ja_ko_pl_pt_ru_zh_6227.exe 2014-07-27 14:33:00 6060B035E967BCDBA7070153522CAACF 148868920 ----a-w- C:\Users\van iersel\Downloads\setup_11.0.3.7.x01_2014_07_27_15_57.exe 2014-07-27 13:12:46 BA0779E3B99F372413C350232DFD92EE 7747104 ----a-w- C:\Users\van iersel\Downloads\mbam-rules.exe 2014-07-27 13:12:36 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\van iersel\Downloads\adwcleaner_3.216 (1).exe 2014-07-27 12:09:16 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\van iersel\Downloads\adwcleaner_3.216.exe 2014-07-27 11:42:05 AD259EB7710431CDC30FF4093AF3FAE2 14094456 ----a-w- C:\Users\van iersel\Downloads\Glary_Utilities_v5.4.0.11.exe 2014-07-08 14:24:19 -------- d-----w- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 ====== C: exe-files == 2014-07-28 11:29:52 0D4D1BA51BF0C1480AEAAF79E0EBE995 69223 ----a-w- C:\Program Files\FileASSASSIN\uninst.exe 2014-07-28 06:52:36 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG123g\DeviceInst.exe 2014-07-28 06:52:36 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG123g\DevInst.exe 2014-07-28 06:52:35 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\DeviceInst.exe 2014-07-28 06:52:35 82862B768A80880A2F22C44C96C20596 544736 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST122g\DPInst.exe 2014-07-28 06:52:35 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\DevInst.exe 2014-07-28 06:52:34 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\TG123g\DeviceInst.exe 2014-07-28 06:52:34 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\TG123g\DevInst.exe 2014-07-28 06:52:32 82862B768A80880A2F22C44C96C20596 544736 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST122g\DPInst.exe 2014-07-28 06:52:31 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\DeviceInst.exe 2014-07-28 06:52:31 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\DevInst.exe 2014-07-28 06:52:28 43276FCED673D6E582473B8F3F6A7278 385110 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\PRISMSVR.exe 2014-07-28 06:52:27 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\DeviceInst.exe 2014-07-28 06:52:27 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\DevInst.exe 2014-07-28 06:52:27 189C45918CFF2ED9A45AFBE5A955906D 377856 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WIN64\PRISMSVR.exe 2014-07-28 06:52:26 6E28823F4E56F3D492DD4B6A0A3751E1 52736 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WIN64\installInf.exe 2014-07-28 06:52:26 43276FCED673D6E582473B8F3F6A7278 385110 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\PRISMSVR.exe 2014-07-28 06:52:25 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\DeviceInst.exe 2014-07-28 06:52:25 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\DevInst.exe 2014-07-28 06:52:25 189C45918CFF2ED9A45AFBE5A955906D 377856 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WIN64\PRISMSVR.exe 2014-07-28 06:52:24 6E28823F4E56F3D492DD4B6A0A3751E1 52736 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WIN64\installInf.exe 2014-07-28 06:52:21 1FD6A2C5F4794F35F86F1400B33B5F81 37272728 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\KPN_WNA.exe 2014-07-28 06:52:14 9D30D5BF3E5AE346927852A90565986B 25097624 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\KPN_IA.exe 2014-07-28 06:52:11 68B6CD67C8D9171D6CE70B532BFC83CD 1749880 ------w- C:\Program Files\KPN\KPN Assistent\M2Updater.exe 2014-07-28 06:52:08 C569A94A80EAA945975D9EADDE222125 40873088 ------w- C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe 2014-07-28 06:52:08 B572A46F4354F8D900C2266B2E33EC30 42496 ------w- C:\Program Files\KPN\KPN Assistent\KKA.exe === C: other files == 2014-07-28 06:52:36 710A4420F8E4A2AEE0D3259D00F5CDF2 289792 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG123g\rtl8187B.sys 2014-07-28 06:52:36 0797877413D3225700D94488F06273A8 541800 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG122n\rtl8192su.sys 2014-07-28 06:52:35 73C18A2C69DFAB351FF0D6C0E69474B6 870400 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\athrusb.sys 2014-07-28 06:52:35 4BC451A93DB4915569C97FDAB020E6E7 1037312 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\athrxusb.sys 2014-07-28 06:52:35 206CE7DF21B29332B66E8D0DFCAD643F 30 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST122g\Uninstall.bat 2014-07-28 06:52:35 15E6A5A0650B500F63F33C5C0FD021ED 217600 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST122g\SiS163u.sys 2014-07-28 06:52:34 710A4420F8E4A2AEE0D3259D00F5CDF2 289792 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\TG123g\rtl8187B.sys 2014-07-28 06:52:33 0797877413D3225700D94488F06273A8 541800 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\TG122n\rtl8192su.sys 2014-07-28 06:52:32 206CE7DF21B29332B66E8D0DFCAD643F 30 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST122g\Uninstall.bat 2014-07-28 06:52:32 15E6A5A0650B500F63F33C5C0FD021ED 217600 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST122g\SiS163u.sys 2014-07-28 06:52:29 4BC451A93DB4915569C97FDAB020E6E7 1037312 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\athrxusb.sys 2014-07-28 06:52:28 73C18A2C69DFAB351FF0D6C0E69474B6 870400 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\athrusb.sys 2014-07-28 06:52:27 7A5341D3D77D54FFA4E743FC6EE91ACA 364001 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\PRISMA02.sys 2014-07-28 06:52:27 3B3B9321E764D415F2D05AD50417FC68 357472 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WINXP\PRISMA02.sys 2014-07-28 06:52:26 7A5341D3D77D54FFA4E743FC6EE91ACA 364001 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\PRISMA02.sys 2014-07-28 06:52:26 0E849BCC9C717770EF0A5D7F1EC35EAD 460544 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WIN64\PRISMA02.sys 2014-07-28 06:52:25 3B3B9321E764D415F2D05AD50417FC68 357472 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WINXP\PRISMA02.sys 2014-07-28 06:52:25 0E849BCC9C717770EF0A5D7F1EC35EAD 460544 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WIN64\PRISMA02.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Windows\CurrentVersion\Run] "GUDelayStartup"="C:\Program Files\Glary Utilities 5\StartupManager.exe -delayrun" "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" "IntelliPoint"="c:\Program Files\Microsoft IntelliPoint\ipoint.exe" "egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe /hide /waitservice" "SDTray"="C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "KPN Assistent"="C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe /auto" "emsisoft anti-malware"="C:\Program Files\Emsisoft Anti-Malware\a2guard.exe /d=60" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GUDelayStartup"="C:\Program Files\Glary Utilities 5\StartupManager.exe -delayrun" "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\progra~1\\google\\google~4\\goec62~1.dll " ==== Startup Folders ====================== 2014-07-27 15:57:40 808 ----a-w- C:\Users\van iersel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_51280745.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-07-2014 21:16] C:\Windows\tasks\Check for updates (Spybot - Search & Destroy).job --a------ [undetermined Task] C:\Windows\tasks\GlaryInitialize 5.job --a------ [undetermined Task] C:\Windows\tasks\GlaryInitialize.job --a------ [undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [19-03-2010 11:37] C:\Windows\tasks\Refresh immunization (Spybot - Search & Destroy).job --a------ C:\Program Files\Spybot - Search Destroy 2\SDImmunize.exe [] C:\Windows\tasks\Scan the system (Spybot - Search & Destroy).job --a------ C:\Program Files\Spybot - Search Destroy 2\SDScan.exe [] C:\Windows\tasks\SmartDefrag.job --a------ C:\Program Files\IObit\Smart Defrag\IObit SmartDefrag.exe [] C:\Windows\tasks\User_Feed_Synchronization-{842611C1-8F92-4041-BDFE-CBD99EE5923D}.job --ah----- C:\Windows\system32\msfeedssync.exe [16-03-2011 12:50] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\Check for updates (Spybot - Search & Destroy)" [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] "C:\Windows\system32\tasks\GlaryInitialize" [C:\Program Files\Glary Utilities\initialize.exe] "C:\Windows\system32\tasks\GlaryInitialize 5" [C:\Program Files\Glary Utilities 5\Initialize.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUser" [C:\Users\van iersel\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GU5SkipUAC" [C:\Program Files\Glary Utilities 5\Integrator.exe] "C:\Windows\system32\tasks\Refresh immunization (Spybot - Search & Destroy)" [C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe] "C:\Windows\system32\tasks\Scan the system (Spybot - Search & Destroy)" [C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe] "C:\Windows\system32\tasks\SmartDefrag" [C:\Program Files\IObit\Smart Defrag\IObit SmartDefrag.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{842611C1-8F92-4041-BDFE-CBD99EE5923D}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{B979B6EE-95D4-49E7-9392-99C5939E1F91}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [28-02-2014 15:43] ==== Firefox Extensions ====================== AppDir: C:\Program Files\Mozilla Firefox - Undetermined - %AppDir%\extensions\{129b29a3-f554-444b-aa12-8ead59836cc8} - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\van iersel\AppData\Roaming\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271 4390CCD3790F8D9C427C0C29590C62D7 - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash FB5621842FDABF9F8359775573498FBC - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll - Google Update 893BF7D2261C56C24F813405D9D018E0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In 1E5E8C84DE796A01D1D46E3A660690F1 - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat F055C91A961601B8D50EF2976145AEE6 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat B5371D2C9017EEE216B5361D600B3543 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector 5B4DA1113F240C3F06FFF9D52761528B - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa 5B92CB0A3EEE50F6B9AE036B4F9B0F0C - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll - Google Earth Plugin AB87C54CA19675880B0CAE65B8AF140C - C:\Windows\system32\npdeployJava1.dll - Java Deployment Toolkit 7.0.70.11 C517E5EA7CEE783F3681F62D2A362E5B - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery 24E990B1E6D55428001843CF7217DD81 - C:\Program Files\Microsoft\Office Live\npOLW.dll - Microsoft Office Live Plug-in for Firefox / Microsoft Office Live Plug-in for Firefox 8BA469072B5A692B659F856C7E97A230 - C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll - NPCIG.dll 625D0A824F513CE1CABB8861E97F2142 - C:\Program Files\Google\Picasa3\npPicasa2.dll - Picasa AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation 99F97C9FE748C37528C338A423577FCB - C:\Users\van iersel\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin 8DA2ED6B04EA33F2EAE8BA883F903729 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight DFCAB29E8FD38F95650CC1E203E8D318 - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fheoggkfdfchfphceeifdbepaooicaho - No path found[] Google Docs - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf Consumentenbond InformBar - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbcomninkjloljbaklalcpcnacnognje YouTube - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Calendar - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn SiteAdvisor - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho http //ns.nl/reisplanner-v2/index.shtml?langu - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcfdgelgjihaljccpfgepccfoobflekl Google Wallet - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://altatuscia.nl" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://altatuscia.nl" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{A2EFD4E9-0080-4B75-AB5D-16837516BAE7}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found" {A2EFD4E9-0080-4B75-AB5D-16837516BAE7} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}&rlz=1I7IRFC_nl" {c1d89ae7-449d-4929-b24b-fded04adbe06} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Internet Explorer\SearchScopes\{c1d89ae7-449d-4929-b24b-fded04adbe06} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully ==== HijackThis Entries ====================== C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe R3 - Default URLSearchHook is missing F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,C:\Program Files\Soluto\soluto.exe /userinit,, O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll O2 - BHO: Consumentenbond InformBar - {5A355B83-4C09-4D4C-B798-FCAB42ED8C63} - C:\Program Files\InformBar\InformBar.dll O2 - BHO: Afmelden voor advertentiecookie - {8E425EB4-ADBD-4816-B1E8-49BB9DECF034} - C:\Program Files\Google\Advertising Cookie Opt-out\opt_out.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Office14\URLREDIR.DLL O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [intelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe" O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [sDTray] "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [KPN Assistent] C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe /auto O4 - HKLM\..\Run: [emsisoft anti-malware] "C:\Program Files\Emsisoft Anti-Malware\a2guard.exe" /d=60 O4 - HKCU\..\Run: [GUDelayStartup] "C:\Program Files\Glary Utilities 5\StartupManager.exe" -delayrun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: _uninst_51280745.lnk = C:\Users\van iersel\AppData\Local\Temp\_uninst_51280745.bat O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\van iersel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm O9 - Extra button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll O9 - Extra 'Tools' menuitem: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\OFFICE11\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: http://*.mcafee.com O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: c:\progra~1\google\google~4\goec62~1.dll O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing) O21 - SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll O23 - Service: Emsisoft Protection Service (a2AntiMalware) - Emsisoft GmbH - C:\Program Files\Emsisoft Anti-Malware\a2service.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files\Browny02\BrYNSvc.exe O23 - Service: dlcc_device - - C:\Windows\system32\dlcccoms.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: PDFProFiltSrvPP - Nuance Communications, Inc. - C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\tomtomnieuw\TomTomHOMEService.exe O23 - Service: UPnPService - Magix AG - C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\van iersel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\van iersel\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\van iersel\Favorites\Documents\altatuscia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\van iersel\Favorites\Documents\altatuscia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\van iersel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\van iersel\AppData\Local\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\Users\van iersel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=59 folders=14 15927128 bytes) ==== Empty Temp Folders ====================== C:\Users\Gast\AppData\Local\Temp emptied successfully C:\Users\van iersel\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\VANIER~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\van iersel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted ==== EOF on vr 01-08-2014 at 20:51:55,42 ======================
  5. acam
    het is toch nog gelukt via firefox om een log te produceren: Zoek.exe v5.0.0.0 Updated 28-07-2014 Tool run by van iersel on ma 28-07-2014 at 21:26:39,32. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\VANIER~1\AppData\Local\Temp\zoek\zoek.scr [scan all users] [script inserted] ==== System Restore Info ====================== 28-7-2014 21:45:35 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\Convar deleted successfully C:\Program Files\Dell PC Fax deleted successfully C:\Program Files\G Data deleted successfully C:\Program Files\Oracle deleted successfully C:\Program Files\TomTom DesktopSuite deleted successfully C:\Program Files\VideoLAN deleted successfully C:\Users\van iersel\AppData\Roaming\CameraWindowDC deleted successfully C:\Users\van iersel\AppData\Roaming\HpUpdate deleted successfully C:\Users\van iersel\AppData\Roaming\IrfanView deleted successfully C:\Users\van iersel\AppData\Roaming\McAfee deleted successfully C:\Users\van iersel\AppData\Roaming\Opera deleted successfully C:\Users\van iersel\AppData\Roaming\PeerNetworking deleted successfully C:\Users\van iersel\AppData\Roaming\Soluto deleted successfully C:\Users\van iersel\AppData\Roaming\Spotify deleted successfully C:\Users\van iersel\AppData\Roaming\svBuilder deleted successfully C:\Users\van iersel\AppData\Local\albelli photo book creator Extra deleted successfully C:\Users\van iersel\AppData\Local\CutePDF Writer deleted successfully C:\Users\van iersel\AppData\Local\Hema Album Software Advanced deleted successfully C:\Users\van iersel\AppData\Local\KPN deleted successfully C:\Users\van iersel\AppData\Local\MailStore Home deleted successfully C:\Users\van iersel\AppData\Local\Opera deleted successfully C:\Users\van iersel\AppData\Local\Secunia PSI deleted successfully C:\Users\van iersel\AppData\Local\Spotify deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-501\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-501\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-501\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-501\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Internet Explorer\Explorer Bars\{555D4D79-4BD2-4094-A395-CFC534424A05} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully HKEY_CLASSES_ROOT\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{555D4D79-4BD2-4094-A395-CFC534424A05} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{4ED1F68A-5463-4931-9384-8FFF5ED91D92} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{81559C35-8464-49F7-BB0E-07A383BEF910} deleted successfully ==== FireFox Fix ====================== ProfilePath: C:\Users\Gast\AppData\Roaming\Thunderbird\Profiles\7g111ren.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_28-07-2014_2203_.backup ProfilePath: C:\Users\VANIER~1\AppData\Roaming\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271 user.js not found ---- Lines {4ED1F68A-5463-4931-9384-8FFF5ED91D92} modified from prefs.js ---- user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}\":{\"descriptor\":\"C:\\\\ ---- FireFox user.js and prefs.js backups ---- prefs_28-07-2014_2203_.backup ProfilePath: C:\Users\VANIER~1\AppData\Roaming\Thunderbird\Profiles\0umcwpzx.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_28-07-2014_2203_.backup ProfilePath: C:\Users\VANIER~1\AppData\Roaming\Thunderbird\Profiles\xweu8423.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_28-07-2014_2203_.backup ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MVT] ==== Deleting Files \ Folders ====================== C:\Program Files\McAfee deleted C:\Windows\system32\appdata deleted "C:\Windows\tasks\vtscheduletask.job" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-07-28 09:46:41 3BD7FC1DD97F9B4271CA88C5D3EAAE53 249838830 ----a-w- C:\Windows\MEMORY.DMP ====== C:\Users\VANIER~1\AppData\Local\Temp ==== 2014-07-27 19:28:44 406B6A2F01D5F7D39A94E0C19E8D1DA4 37944 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\nsak.sys 2014-07-27 19:28:43 A496F1DFC34EEDF8FD34F7739A184787 1767720 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\NSE_W32.DLL 2014-07-27 19:28:43 6CFFA27F0256C43E853375C5749C576A 217272 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\statslib.dll 2014-07-27 19:27:59 A8235D366029C2F1FCDAD5481122C16B 427368 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\ncl.dll 2014-07-27 19:27:59 2AB5CC762B0AF715DAE408CFB20C59BB 530712 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\ncm3.dll 2014-07-27 18:24:09 406B6A2F01D5F7D39A94E0C19E8D1DA4 37944 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\nsak.sys 2014-07-27 18:24:08 A496F1DFC34EEDF8FD34F7739A184787 1767720 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\NSE_W32.DLL 2014-07-27 18:24:08 6CFFA27F0256C43E853375C5749C576A 217272 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\statslib.dll 2014-07-27 18:22:48 A8235D366029C2F1FCDAD5481122C16B 427368 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\ncl.dll 2014-07-27 18:22:48 2AB5CC762B0AF715DAE408CFB20C59BB 530712 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\ncm3.dll 2014-07-27 15:57:37 DAC43BD33E1B5794F02B6C909845F384 36352 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\x64\wmi64.exe 2014-07-27 15:57:36 D554F6B51A0EEC6E78B9778C65F3BE47 31424 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\ushata.dll 2014-07-27 15:57:36 B5A992A036116061750DDF083BD2BD73 852160 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\updater.dll 2014-07-27 15:57:16 58AF6D1A8A43E91B70542D73CF1F5131 98496 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\prremote.dll 2014-07-27 15:57:15 F09A564C63ED8A059A9EE0F63871C091 172224 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\prloader.dll 2014-07-27 15:57:14 A5F16EE2F52072230969E437AC12F978 557248 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\msvcp80.dll 2014-07-27 15:57:14 4A0406AF98A5A881D607E19D33962786 635072 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\msvcr80.dll 2014-07-27 15:57:13 4C74880A2682C6902468E0D7DBBB029A 487616 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\msvcm80.dll 2014-07-27 15:57:12 E1B9E729502A0F0B8714394DD5DFE761 18112 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\memmng.dll 2014-07-27 15:57:12 2D9B4793B614073C0DEDC3EE033610AC 19328 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\kldw.exe 2014-07-27 15:57:11 D48B256B3E99347B4795414DABD09D1D 94400 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\fssync.dll 2014-07-27 15:57:10 6148A0773EB03035119384CBE35A38FE 135360 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\diffs.dll 2014-07-27 15:57:10 5D1B5C206B7AC0461962DBF43A7EE495 1093808 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\dbghelp.dll 2014-07-27 15:57:09 B27D76751A9878DA5D76A3DAE5C5DD89 17088 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\clldr.dll 2014-07-27 15:54:01 A4E6C7E79AA4D313A3936D2D00E87EC8 2115264 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\avzkrnl.dll 2014-07-27 15:52:40 00E4D2AB7FF210B6EC2B497A2C7D161A 457520 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\9528799.exe 2014-07-27 15:48:09 C7D4F357C482DD37E2B05F34093B7B0C 615728 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win64\2\600\9528799drv.sys 2014-07-27 15:48:09 2434D3BC1C4876D53BFBCF4AD1A2D2E3 180528 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\helper64.exe 2014-07-27 15:48:08 B86A9608C9E07CAF205D44D53182E5F5 616752 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win64\2\501\9528799drv.sys 2014-07-27 15:48:07 795EC29BA21F1D948FD6FD740C00B599 458336 ------w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win64\1\kl1.sys 2014-07-27 15:48:06 AF04D0CE7939324E9A605B159295706C 570160 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win32\2\600\9528799drv.sys 2014-07-27 15:48:05 5D92A03045A6A98708975B3D77B39A36 565552 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win32\2\501\9528799drv.sys 2014-07-27 15:48:04 871C226234A48C24DFE7478F36C0050C 135776 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win32\1\51280745.sys 2014-07-27 15:47:48 9DE53344DA73B22CD37D8A307741C69D 147103680 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\9528799rar.exe 2014-07-27 15:47:45 70098BF9832ABDCFC8486E23E84F3DA8 820080 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\9528799.exe ====== Java Cache ===== ====== C:\Windows\system32 ===== 2014-07-24 07:46:23 4A35D432200186F8F11F4840E35FD924 8192 ----a-w- C:\Windows\System32\WDPABKP.dat ====== C:\Windows\system32\drivers ===== 2014-07-28 11:26:28 12E71DA845D76665B56753AD149E32B3 110296 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-07-28 11:26:00 8683C1B450F4B3872839308D836E0F92 23256 ----a-w- C:\Windows\System32\drivers\mbam.sys 2014-07-28 11:26:00 799613BA73D25641402AA81B6403EFF8 51928 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-07-28 11:26:00 1AA835E8A0B8EDF3D676B4ED4BF5EF07 74456 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2014-07-27 15:48:04 871C226234A48C24DFE7478F36C0050C 135776 ----a-w- C:\Windows\System32\drivers\51280745.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-07-28 11:29:52 -------- d-----w- C:\Program Files\FileASSASSIN 2014-07-28 06:52:08 -------- d-----w- C:\Program Files\KPN 2014-07-08 14:24:26 -------- d-----w- C:\Program Files\iPod 2014-07-08 14:24:19 -------- d-----w- C:\Program Files\iTunes 2014-07-08 12:11:59 -------- d-----w- C:\Program Files\Bonjour 2014-07-08 12:01:40 -------- d-----w- C:\Program Files\Apple Software Update 2014-07-08 11:56:15 -------- d-----w- C:\Program Files\Common Files\Apple ======= C: ===== ====== C:\Users\van iersel\AppData\Roaming ====== 2014-07-27 18:22:18 -------- d-----w- C:\Users\van iersel\AppData\Local\Norman Malware Cleaner ====== C:\Users\van iersel ====== 2014-07-28 13:15:15 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\van iersel\Downloads\RSIT.exe 2014-07-28 11:29:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileASSASSIN 2014-07-28 09:39:15 3C7707013DEEA5ED7F68A29A007A7D57 321848 ----a-w- C:\Users\van iersel\Downloads\mbam-clean-2.1.1.1001.exe 2014-07-28 06:52:50 -------- dc-h--w- C:\ProgramData\{65645173-D674-42EE-9CA4-E050D7BF480F} 2014-07-28 06:49:30 788AF35B6CF836DD14B737E8F8F2C574 82947248 ----a-w- C:\Users\van iersel\Downloads\setup_kpn_assistent (1).exe 2014-07-28 06:41:41 788AF35B6CF836DD14B737E8F8F2C574 82947248 ----a-w- C:\Users\van iersel\Downloads\setup_kpn_assistent.exe 2014-07-27 20:24:34 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (7).exe 2014-07-27 20:24:05 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (6).exe 2014-07-27 18:02:00 5A10D178B48EB4AC51B1FC1F61D2E0CD 348195264 ----a-w- C:\Users\van iersel\Downloads\Norman_Malware_Cleaner.exe 2014-07-27 17:05:29 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (5).exe 2014-07-27 17:05:00 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (4).exe 2014-07-27 16:44:35 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (3).exe 2014-07-27 16:39:18 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (2).exe 2014-07-27 16:38:54 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (1).exe 2014-07-27 16:25:07 6060B035E967BCDBA7070153522CAACF 148868920 ----a-w- C:\Users\van iersel\Downloads\setup_11.0.3.7.x01_2014_07_27_15_57 (1).exe 2014-07-27 16:22:32 F12FE98405679BDAD148C491D98E5166 38824552 ----a-w- C:\Users\van iersel\Downloads\FileFormatConverters (2).exe 2014-07-27 16:22:32 A416FCEACC08E8458E01E8422A7D0A2A 28694720 ----a-w- C:\Users\van iersel\Downloads\Windows-KB890830-V5.14 (1).exe 2014-07-27 16:10:59 F12FE98405679BDAD148C491D98E5166 38824552 ----a-w- C:\Users\van iersel\Downloads\FileFormatConverters (1).exe 2014-07-27 14:33:54 AB6EE305F8244999BD6D48C2D61D23E6 189320 ----a-w- C:\Users\van iersel\Downloads\kss12.0.1.881de_en_es_fr_it_ja_ko_pl_pt_ru_zh_6227.exe 2014-07-27 14:33:00 6060B035E967BCDBA7070153522CAACF 148868920 ----a-w- C:\Users\van iersel\Downloads\setup_11.0.3.7.x01_2014_07_27_15_57.exe 2014-07-27 13:12:46 BA0779E3B99F372413C350232DFD92EE 7747104 ----a-w- C:\Users\van iersel\Downloads\mbam-rules.exe 2014-07-27 13:12:36 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\van iersel\Downloads\adwcleaner_3.216 (1).exe 2014-07-27 12:09:16 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\van iersel\Downloads\adwcleaner_3.216.exe 2014-07-27 11:42:05 AD259EB7710431CDC30FF4093AF3FAE2 14094456 ----a-w- C:\Users\van iersel\Downloads\Glary_Utilities_v5.4.0.11.exe 2014-07-17 01:47:44 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012.exe 2014-07-08 14:24:19 -------- d-----w- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 ====== C: exe-files == === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Windows\CurrentVersion\Run] "GUDelayStartup"="C:\Program Files\Glary Utilities 5\StartupManager.exe -delayrun" "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" [HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-501\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" "IntelliPoint"="c:\Program Files\Microsoft IntelliPoint\ipoint.exe" "egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe /hide /waitservice" "SDTray"="C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "KPN Assistent"="C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe /auto" "emsisoft anti-malware"="C:\Program Files\Emsisoft Anti-Malware\a2guard.exe /d=60" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GUDelayStartup"="C:\Program Files\Glary Utilities 5\StartupManager.exe -delayrun" "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\progra~1\\google\\google~4\\goec62~1.dll " ==== Startup Folders ====================== 2014-07-27 15:57:40 808 ----a-w- C:\Users\van iersel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_51280745.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-07-2014 21:16] C:\Windows\tasks\Check for updates (Spybot - Search & Destroy).job --a------ C:jOKFR s3:C:\Program FilC:s\Spybot - SC:arch DC:stroy 2\SDUpdatC:.C:xC:autoupdatC: silC:nt autoclosC: backgroundSpybot - SC:arch DC:stroy 2zThis task will rC:gularly chC:ck for softwarC: updatC:s and install any availablC: updatC:s to C:nsurC: you arC: wC:ll-protC:ctC:d.0 [] C:\Windows\tasks\GlaryInitialize 5.job --a------ C:\Program Files\Glary Utilities 5\Initialize.exe [21-07-2014 05:00] C:\Windows\tasks\GlaryInitialize.job --a------ C:\Program Files\Glary Utilities\initialize.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [19-03-2010 11:37] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [19-03-2010 11:37] C:\Windows\tasks\Refresh immunization (Spybot - Search & Destroy).job --a------ C:\Program Files\Spybot - Search Destroy 2\SDImmunize.exe [] C:\Windows\tasks\Scan the system (Spybot - Search & Destroy).job --a------ C:\Program Files\Spybot - Search Destroy 2\SDScan.exe [] C:\Windows\tasks\SmartDefrag.job --a------ C:\Program Files\IObit\Smart Defrag\IObit SmartDefrag.exe [] C:\Windows\tasks\User_Feed_Synchronization-{842611C1-8F92-4041-BDFE-CBD99EE5923D}.job --ah----- C:\Windows\system32\msfeedssync.exe [16-03-2011 12:50] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\Check for updates (Spybot - Search & Destroy)" [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] "C:\Windows\system32\tasks\GlaryInitialize" [C:\Program Files\Glary Utilities\initialize.exe] "C:\Windows\system32\tasks\GlaryInitialize 5" [C:\Program Files\Glary Utilities 5\Initialize.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUser" [C:\Users\van iersel\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GU5SkipUAC" [C:\Program Files\Glary Utilities 5\Integrator.exe] "C:\Windows\system32\tasks\Refresh immunization (Spybot - Search & Destroy)" [C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe] "C:\Windows\system32\tasks\Scan the system (Spybot - Search & Destroy)" [C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe] "C:\Windows\system32\tasks\SmartDefrag" [C:\Program Files\IObit\Smart Defrag\IObit SmartDefrag.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{842611C1-8F92-4041-BDFE-CBD99EE5923D}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{B979B6EE-95D4-49E7-9392-99C5939E1F91}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [28-02-2014 15:43] ==== Firefox Extensions ====================== ProfilePath: C:\Users\VANIER~1\AppData\Roaming\Thunderbird\Profiles\0umcwpzx.default - McAfee Anti-Spam Thunderbird Extension - %ProfilePath%\extensions\msktbird@mcafee.com - Remember Mismatched Domains - %ProfilePath%\extensions\{c8961d25-7d90-4c7e-893b-400a5c882920} - Instrument Test - %ProfilePath%\extensions\tbtestpilot@labs.mozilla.com.xpi - CompactHeader - %ProfilePath%\extensions\{58D4392A-842E-11DE-B51A-C7B855D89593}.xpi - DictionarySearch - %ProfilePath%\extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372}.xpi AppDir: C:\Program Files\Mozilla Firefox - Undetermined - %AppDir%\extensions\{129b29a3-f554-444b-aa12-8ead59836cc8} - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\van iersel\AppData\Roaming\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271 4390CCD3790F8D9C427C0C29590C62D7 - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash FB5621842FDABF9F8359775573498FBC - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll - Google Update 893BF7D2261C56C24F813405D9D018E0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In 1E5E8C84DE796A01D1D46E3A660690F1 - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat F055C91A961601B8D50EF2976145AEE6 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat B5371D2C9017EEE216B5361D600B3543 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector 5B4DA1113F240C3F06FFF9D52761528B - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa 5B92CB0A3EEE50F6B9AE036B4F9B0F0C - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll - Google Earth Plugin AB87C54CA19675880B0CAE65B8AF140C - C:\Windows\system32\npdeployJava1.dll - Java Deployment Toolkit 7.0.70.11 C517E5EA7CEE783F3681F62D2A362E5B - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery 24E990B1E6D55428001843CF7217DD81 - C:\Program Files\Microsoft\Office Live\npOLW.dll - Microsoft Office Live Plug-in for Firefox / Microsoft Office Live Plug-in for Firefox 8BA469072B5A692B659F856C7E97A230 - C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll - NPCIG.dll 625D0A824F513CE1CABB8861E97F2142 - C:\Program Files\Google\Picasa3\npPicasa2.dll - Picasa AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation 99F97C9FE748C37528C338A423577FCB - C:\Users\van iersel\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin 8DA2ED6B04EA33F2EAE8BA883F903729 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight DFCAB29E8FD38F95650CC1E203E8D318 - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fheoggkfdfchfphceeifdbepaooicaho - No path found[] Google Docs - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf Consumentenbond InformBar - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbcomninkjloljbaklalcpcnacnognje YouTube - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Calendar - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn SiteAdvisor - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho http //ns.nl/reisplanner-v2/index.shtml?langu - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcfdgelgjihaljccpfgepccfoobflekl Google Wallet - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== C:\zoek_backup content ====================== C:\zoek_backup (files=7 folders=6 112804 bytes) ==== EOF on ma 28-07-2014 at 22:19:33,29 ======================
  6. acam
    het gaar al meteen mis: het downloaden van zoek.exe mislukt omdat het geen geldig Win32 bestand zou zijn.
  7. acam
    dLogfile of random's system information tool 1.10 (written by random/random)Run by van iersel at 2014-07-28 15:15:59 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 103 GB (42%) free of 248 GB Total RAM: 2046 MB (21% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:17:37, on 28-7-2014 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16526) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Glary Utilities 5\Integrator.exe C:\Program Files\Microsoft IntelliPoint\ipoint.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Brother\Brother Help\BrotherHelp.exe C:\Windows\System32\mobsync.exe C:\Program Files\Browny02\Brother\BrStMonW.exe C:\Program Files\ControlCenter4\BrCtrlCntr.exe C:\Program Files\ControlCenter4\BrCcUxSys.exe C:\Program Files\Nuance\PaperPort\pptd40nt.exe C:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe C:\Program Files\Secunia\PSI\psi_tray.exe C:\Windows\system32\taskeng.exe C:\Program Files\Emsisoft Anti-Malware\a2wizard.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\van iersel\Downloads\RSIT.exe C:\Program Files\trend micro\van iersel.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Vakantiehuis centrum Itali?, Lazio, Bolsena, San Lorenzo Nuovo, Toscane, meer, watersport, cultuur, natuur, Umbri? R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - Default URLSearchHook is missing F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,C:\Program Files\Soluto\soluto.exe /userinit,, O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll O2 - BHO: Consumentenbond InformBar - {5A355B83-4C09-4D4C-B798-FCAB42ED8C63} - C:\Program Files\InformBar\InformBar.dll O2 - BHO: Afmelden voor advertentiecookie - {8E425EB4-ADBD-4816-B1E8-49BB9DECF034} - C:\Program Files\Google\Advertising Cookie Opt-out\opt_out.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Office14\URLREDIR.DLL O3 - Toolbar: (no name) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - (no file) O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [intelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe" O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [sDTray] "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [KPN Assistent] C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe /auto O4 - HKLM\..\Run: [emsisoft anti-malware] "C:\Program Files\Emsisoft Anti-Malware\a2guard.exe" /d=60 O4 - HKCU\..\Run: [GUDelayStartup] "C:\Program Files\Glary Utilities 5\StartupManager.exe" -delayrun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User '?') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User '?') O4 - HKUS\S-1-5-21-1272023406-3516950109-4133430306-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [GUDelayStartup] "C:\Program Files\Glary Utilities 5\StartupManager.exe" -delayrun (User '?') O4 - S-1-5-21-1272023406-3516950109-4133430306-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 Startup: _uninst_51280745.lnk = C:\Users\van iersel\AppData\Local\Temp\_uninst_51280745.bat (User '?') O4 - Startup: _uninst_51280745.lnk = C:\Users\van iersel\AppData\Local\Temp\_uninst_51280745.bat O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\van iersel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm O9 - Extra button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll O9 - Extra 'Tools' menuitem: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\OFFICE11\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: http://*.mcafee.com O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: c:\progra~1\google\google~4\goec62~1.dll O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing) O21 - SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll O23 - Service: Emsisoft Protection Service (a2AntiMalware) - Emsisoft GmbH - C:\Program Files\Emsisoft Anti-Malware\a2service.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files\Browny02\BrYNSvc.exe O23 - Service: dlcc_device - - C:\Windows\system32\dlcccoms.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: PDFProFiltSrvPP - Nuance Communications, Inc. - C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\tomtomnieuw\TomTomHOMEService.exe O23 - Service: UPnPService - Magix AG - C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe -- End of file - 13690 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\Check for updates (Spybot - Search & Destroy).job - C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe /autoupdate /silent /autoclose /background C:\Windows\tasks\GlaryInitialize 5.job - C:\Program Files\Glary Utilities 5\Initialize.exe C:\Windows\tasks\GlaryInitialize.job - C:\Program Files\Glary Utilities\initialize.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\Refresh immunization (Spybot - Search & Destroy).job - C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe /immunize /silent /autoclose C:\Windows\tasks\Scan the system (Spybot - Search & Destroy).job - C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe /scan /cleanclose C:\Windows\tasks\SmartDefrag.job - C:\Program Files\IObit\Smart Defrag\IObit SmartDefrag.exe /Schedule C:\Windows\tasks\User_Feed_Synchronization-{842611C1-8F92-4041-BDFE-CBD99EE5923D}.job - C:\Windows\system32\msfeedssync.exe sync C:\Windows\tasks\vtscheduletask.job - C:\Program Files\McAfee\Supportability\MVT\MvtApp.exe /scheduletask =========Mozilla firefox========= ProfilePath - C:\Users\van iersel\AppData\Roaming\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271 prefs.js - "browser.startup.homepage" - "http://huis.altatuscia.nl/" "{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files\McAfee\SiteAdvisor "{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 14.0.0.145 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=] "Description"=iTunes Detector Plug-in "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0] "Description"= "Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/MycameraPlugin] "Description"=Canon MycameraPlugin "Path"=C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin] "Description"=Google Earth in your browser "Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa2,version=2.0.0] "Description"=Picasa2 plugin "Path"=C:\Program Files\Picasa2\npPicasa2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] "Description"=Picasa3 plugin "Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Windows\system32\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MVT] "Description"=McAfee Virtual Technician Plugin "Path"=C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~1\Office14\NPAUTHZ.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5] "Description"=Office Live Update v1.5 "Path"=C:\Program Files\Microsoft\Office Live\npOLW.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] "Description"=Microsoft SharePoint Plug-in for Firefox "Path"=C:\PROGRA~1\Office14\NPSPWRAP.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] "Description"=WLPG Install MIME type "Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109] "Description"=WLPG Install MIME type "Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513] "Description"=WLPG Install MIME type "Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308] "Description"=WLPG Install MIME type "Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5] "Description"=Windows Presentation Foundation plug-in for Mozilla browsers "Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1] "Description"=Yahoo! activeX Plug-in Bridge "Path"=C:\Program Files\Yahoo!\Common\npyaxmpb.dll C:\Program Files\Mozilla Firefox\extensions\ {129b29a3-f554-444b-aa12-8ead59836cc8} ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00011268-E188-40DF-A514-835FCD78B1BF}] IE7Pro BHO - C:\Program Files\IEPro\iepro.dll [2009-02-04 752744] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{551A852F-39A6-44A7-9C13-AFBEC9185A9D}] PlusIEEventHelper Class - C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06 249856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5A355B83-4C09-4D4C-B798-FCAB42ED8C63}] Consumentenbond InformBar - C:\Program Files\InformBar\InformBar.dll [2013-11-13 65704] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E425EB4-ADBD-4816-B1E8-49BB9DECF034}] Afmelden voor advertentiecookie - C:\Program Files\Google\Advertising Cookie Opt-out\opt_out.dll [2013-01-11 309200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}] Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08 393600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\Office14\URLREDIR.DLL [2013-03-06 562904] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184] "IntelliPoint"=c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 1797008] "egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2013-09-12 5110672] "SDTray"=C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2014-05-26 152392] "KPN Assistent"=C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe [2014-05-06 40873088] "emsisoft anti-malware"=C:\Program Files\Emsisoft Anti-Malware\a2guard.exe [2014-07-09 4841824] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GUDelayStartup"=C:\Program Files\Glary Utilities 5\StartupManager.exe [2014-07-21 37152] "ISUSPM"=C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2006-09-10 218032] C:\Users\van iersel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup _uninst_51280745.lnk - C:\Users\van iersel\AppData\Local\Temp\_uninst_51280745.bat [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\progra~1\google\google~4\goec62~1.dll " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SDWinLogon] SDWinLogon.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll [2012-04-09 158224] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler] Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll [2012-04-09 158224] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{88485281-8b4b-4f8d-9ede-82e29a064277}"=C:\PROGRA~1\MarkAny\CONTEN~1\MACSMA~1.DLL [2004-11-23 192512] "{81559C35-8464-49F7-BB0E-07A383BEF910}"= [] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CleanHlp] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CleanHlp.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro36] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro36.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MSIServer] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SolutoService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "LogonHoursAction"=2 "DontDisplayLogonHoursWarnings"=1 "DisableTaskMgr"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 "SoftwareSASGeneration"=0 "DisableTaskMgr"=0 "EnableSecureUIAPath"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"=0 "NoRun"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\Program Files\IEPro\MiniDM.exe"="C:\Program Files\IEPro\MiniDM.exe:*:Enabled:MiniDM" "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access" "C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service" "C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater" "C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "vidc.DIVX"=DivX.dll "msacm.lameacm"=LameACM.acm "wave3"=wdmaud.drv "midi2"=wdmaud.drv "mixer3"=wdmaud.drv "aux2"=wdmaud.drv "wave8"=wdmaud.drv "midi7"=wdmaud.drv "mixer8"=wdmaud.drv "aux7"=wdmaud.drv "wave7"=wdmaud.drv "midi6"=wdmaud.drv "mixer7"=wdmaud.drv "aux6"=wdmaud.drv "wave6"=wdmaud.drv "midi5"=wdmaud.drv "mixer6"=wdmaud.drv "aux5"=wdmaud.drv "wave5"=wdmaud.drv "midi4"=wdmaud.drv "mixer5"=wdmaud.drv "aux4"=wdmaud.drv "wave4"=wdmaud.drv "midi3"=wdmaud.drv "mixer4"=wdmaud.drv "aux3"=wdmaud.drv "msacm.siren"=sirenacm.dll "VIDC.FFDS"=ff_vfw.dll "msacm.avis"=ff_acm.acm "midi9"=wdmaud.drv "wave9"=wdmaud.drv "midi8"=wdmaud.drv "mixer9"=wdmaud.drv "wave2"=wdmaud.drv "midi1"=wdmaud.drv "mixer2"=wdmaud.drv "aux1"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "mixer1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-07-28 15:15:59 ----D---- C:\rsit 2014-07-28 13:38:51 ----D---- C:\Program Files\Emsisoft Anti-Malware 2014-07-28 13:29:52 ----D---- C:\Program Files\FileASSASSIN 2014-07-28 13:26:28 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys 2014-07-28 13:26:00 ----D---- C:\ProgramData\Malwarebytes 2014-07-28 13:26:00 ----D---- C:\Program Files\Malwarebytes Anti-Malware 2014-07-28 13:26:00 ----A---- C:\Windows\system32\drivers\mwac.sys 2014-07-28 13:26:00 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys 2014-07-28 13:26:00 ----A---- C:\Windows\system32\drivers\mbam.sys 2014-07-28 08:52:50 ----HDC---- C:\ProgramData\{65645173-D674-42EE-9CA4-E050D7BF480F} 2014-07-28 08:52:08 ----D---- C:\Program Files\KPN 2014-07-27 18:14:40 ----D---- C:\8cc2c3f3ea0a7ab142a40583f9 2014-07-27 18:14:01 ----D---- C:\f4c3c6ce393e33f8ceda31daef 2014-07-27 17:48:04 ----A---- C:\Windows\system32\drivers\51280745.sys 2014-07-24 09:46:23 ----A---- C:\Windows\system32\WDPABKP.dat 2014-07-08 16:24:26 ----D---- C:\Program Files\iPod 2014-07-08 16:24:19 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-07-08 16:24:19 ----D---- C:\Program Files\iTunes 2014-07-08 14:11:59 ----D---- C:\Program Files\Bonjour 2014-07-08 14:02:45 ----ASH---- C:\hiberfil.sys 2014-07-08 14:01:40 ----D---- C:\Program Files\Apple Software Update 2014-07-08 13:56:15 ----D---- C:\Program Files\Common Files\Apple 2014-07-04 11:04:09 ----A---- C:\Windows\system32\sdnclean.exe ======List of files/folders modified in the last 1 month====== 2014-07-28 15:17:37 ----D---- C:\Program Files\Trend Micro 2014-07-28 15:16:32 ----D---- C:\Windows\Temp 2014-07-28 13:38:51 ----RD---- C:\Program Files 2014-07-28 13:26:28 ----D---- C:\Windows\system32\drivers 2014-07-28 13:26:00 ----HD---- C:\ProgramData 2014-07-28 11:49:26 ----D---- C:\Windows\System32 2014-07-28 11:48:11 ----D---- C:\Program Files\Glary Utilities 5 2014-07-28 11:46:49 ----D---- C:\Windows\Minidump 2014-07-28 11:46:41 ----D---- C:\Windows 2014-07-28 11:40:12 ----D---- C:\Temp 2014-07-28 11:38:12 ----D---- C:\Windows\inf 2014-07-28 10:32:35 ----D---- C:\Windows\Debug 2014-07-28 08:52:50 ----D---- C:\Program Files\Mozilla Firefox 2014-07-27 23:41:03 ----D---- C:\Windows\system32\drivers\etc 2014-07-27 21:06:17 ----D---- C:\downloads 2014-07-27 21:01:15 ----SHD---- C:\System Volume Information 2014-07-27 20:42:15 ----SHD---- C:\Windows\Installer 2014-07-27 20:33:25 ----SHD---- C:\Config.Msi 2014-07-27 15:10:26 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-07-27 14:16:07 ----D---- C:\AdwCleaner 2014-07-27 14:15:38 ----D---- C:\Users\van iersel\AppData\Roaming\IObit 2014-07-27 14:15:08 ----D---- C:\ProgramData\IObit 2014-07-27 14:11:04 ----D---- C:\ProgramData\Brother 2014-07-27 14:11:04 ----D---- C:\Program Files\Browny02 2014-07-27 13:58:07 ----D---- C:\Program Files\ControlCenter4 2014-07-27 13:43:33 ----D---- C:\Windows\system32\Tasks 2014-07-27 13:43:28 ----D---- C:\Windows\Tasks 2014-07-27 12:46:42 ----D---- C:\Program Files\Microsoft Silverlight 2014-07-23 18:03:52 ----D---- C:\Windows\Prefetch 2014-07-17 15:57:42 ----D---- C:\Windows\system32\catroot2 2014-07-14 09:34:04 ----D---- C:\Program Files\Common Files\Adobe AIR 2014-07-12 17:52:03 ----A---- C:\Windows\BRRBCOM.INI 2014-07-12 16:24:34 ----D---- C:\Windows\system32\MRT 2014-07-10 00:57:11 ----D---- C:\ProgramData\Microsoft Help 2014-07-10 00:56:49 ----D---- C:\Program Files\Office14 2014-07-09 21:16:23 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2014-07-08 14:30:44 ----D---- C:\Windows\system32\catroot 2014-07-08 13:56:16 ----D---- C:\ProgramData\Apple 2014-07-08 13:56:15 ----D---- C:\Program Files\Common Files 2014-07-08 09:47:53 ----D---- C:\Users\van iersel\AppData\Roaming\FileZilla 2014-07-08 09:17:32 ----D---- C:\Windows\Microsoft.NET 2014-07-07 23:33:17 ----D---- C:\Windows\AppPatch 2014-07-07 23:11:06 ----DC---- C:\Windows\system32\DRVSTORE 2014-07-07 22:53:25 ----D---- C:\Program Files\QuickTime 2014-07-04 11:06:45 ----D---- C:\Program Files\Spybot - Search & Destroy 2 2014-07-04 11:04:29 ----SD---- C:\ProgramData\Microsoft 2014-07-04 11:04:03 ----D---- C:\ProgramData\Spybot - Search & Destroy 2014-07-04 10:15:24 ----A---- C:\Windows\wininit.ini 2014-07-02 21:21:10 ----D---- C:\Program Files\Google 2014-07-02 20:54:22 ----D---- C:\ProgramData\Corel 2014-07-02 20:52:45 ----D---- C:\ProgramData\Borland 2014-07-02 20:42:40 ----D---- C:\Users\van iersel\AppData\Roaming\Opera 2014-07-02 20:35:49 ----D---- C:\ProgramData\SecTaskMan 2014-07-02 20:06:17 ----D---- C:\Users\van iersel\AppData\Roaming\TrueCrypt 2014-07-02 20:06:17 ----D---- C:\Program Files\TrueCrypt 2014-07-02 19:50:48 ----D---- C:\ProgramData\Google ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 51280745;51280745; C:\Windows\system32\DRIVERS\51280745.sys [2014-07-27 135776] R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2006-10-30 7680] R0 BootDefragDriver;BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [2014-06-16 16064] R0 hotcore3;hc3ServiceName; C:\Windows\system32\DRIVERS\hotcore3.sys [2011-01-21 57112] R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2010-03-19 45648] R0 RapportKELL;RapportKELL; C:\Windows\System32\Drivers\RapportKELL.sys [2014-05-03 123512] R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2013-12-24 18624] R1 A2DDA;A2 Direct Disk Access Support Driver; \??\C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys [2013-03-28 22056] R1 cbfs3;cbfs3; \??\C:\Windows\system32\drivers\cbfs3.sys [2012-04-09 299024] R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 188808] R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 134248] R1 GUBootStartup;GUBootStartup; \??\C:\Windows\System32\drivers\GUBootStartup.sys [2014-07-04 17088] R1 RapportCerberus_68261;RapportCerberus_68261; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_68261.sys [2014-06-09 358008] R1 RapportEI;RapportEI; \??\C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [2014-05-03 170968] R1 RapportPG;RapportPG; \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys [2014-05-03 249400] R1 Uim_IM;UIM Drive Backup Image Plugin; C:\Windows\System32\Drivers\Uim_IM.sys [2011-01-21 381032] R1 UimBus;Universal Image Mounter Controller; C:\Windows\system32\DRIVERS\UimBus.sys [2011-01-21 40824] R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2013-09-17 122376] R2 regi;regi; C:\Windows\system32\drivers\regi.sys [2007-04-17 11032] R2 RMCAST;RMCAST (Pgm)-protocolstuurprogramma; C:\Windows\system32\DRIVERS\RMCAST.sys [2009-04-11 113664] R3 a2acc;a2acc; \??\C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys [2014-05-12 58200] R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-12-04 3351040] R3 cleanhlp;cleanhlp; \??\C:\Program Files\Emsisoft Anti-Malware\cleanhlp32.sys [2013-12-04 50200] R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2010-07-01 44432] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840] R3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-10-02 1967576] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-05-12 23256] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-07-28 110296] R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-05-12 51928] R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2007-02-27 7680] R3 Ph3xIB32;Philips 713x VU PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136] R3 Point32;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point32.sys [2010-07-21 40848] R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2010-06-23 259176] R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-19 9216] S0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys [] S0 Soluto;Soluto; C:\Windows\system32\DRIVERS\Soluto.sys [2012-04-24 51144] S1 ctredr15.sys;ctredr15.sys; \??\C:\Windows\system32\drivers\ctredr15.sys [] S3 athrusb;Atheros Wireless LAN USB device driver; C:\Windows\system32\DRIVERS\athrusb.sys [2008-07-29 904192] S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528] S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208] S3 btwaudio;Bluetooth-audioapparaat; C:\Windows\system32\drivers\btwaudio.sys [2007-08-08 80936] S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2007-08-08 98608] S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2007-08-08 28464] S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2007-08-08 17712] S3 Dot4;Microsoft IEEE-1284.4-stuurprogramma; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584] S3 Dot4Print;Stuurprogramma voor printerklasse voor IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384] S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 39272] S3 HCW713x;Hauppauge 713x VU PCI TV Card; C:\Windows\system32\DRIVERS\HCW713x.sys [2007-03-26 827776] S3 hitmanpro3;Hitman Pro 3 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro3.sys [] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016] S3 NuidFltr;NUID filter driver; C:\Windows\system32\DRIVERS\NuidFltr.sys [2010-06-30 21520] S3 NVENETFD;NVIDIA nForce-netwerkcontroller; C:\Windows\system32\DRIVERS\nvm60x32.sys [2006-11-02 429056] S3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf_x86.sys [2013-04-18 16024] S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992] S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2013-03-18 45056] S3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328] S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2011-02-16 11520] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 a2AntiMalware;Emsisoft Protection Service; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [2014-07-09 4741384] R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336] R2 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-12-04 626688] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504] R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504] R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2008-01-19 11264] R2 dlcc_device;dlcc_device; C:\Windows\system32\dlcccoms.exe [2007-01-30 538096] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2013-09-12 1337752] R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504] R2 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632] R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-04 112152] R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720] R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472] R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120] R2 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000] R2 PDFProFiltSrvPP;PDFProFiltSrvPP; C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe [2011-08-02 145256] R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632] R2 RapportMgmtService;Rapport Management Service; C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [2014-05-03 1882392] R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408] R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928] R2 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-04-18 659992] R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\tomtomnieuw\TomTomHOMEService.exe [2013-08-27 93072] R2 WDBackup;WD Backup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [2013-11-02 1042808] R2 WDDriveService;WD Drive Manager; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [2013-11-02 270704] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R3 BrYNSvc;BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [2013-09-25 282112] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-05-26 553288] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-19 136176] S2 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-19 136176] S2 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-03-01 161384] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-01-09 654848] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840] S3 getPlusHelper;@C:\Program Files\NOS\bin\getPlus_Helper.dll,-101; C:\Windows\System32\svchost.exe [2008-01-19 21504] S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2013-11-10 30192] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-22 194032] S3 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2008-01-19 21504] S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-08-23 79136] S3 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200] S3 Macromedia Licensing Service;Macromedia Licensing Service; C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [2008-08-10 68096] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-25 119408] S3 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504] S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504] S3 ProtexisLicensing;ProtexisLicensing; C:\Windows\system32\PSIService.exe [2006-11-02 174656] S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-04-18 1227800] S3 UPnPService;UPnPService; C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [2006-12-14 544768] S3 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF----------------- ank voor de snelle reactie;hier het logje
  8. acam
    sinds kort lukt het me niet meer om programma 's als ccleaner, mabm, itunes te updaten. Ik krijg dan de melding önbekende netwerkfout " en van van Eset mijn virusscanner de melding de melding dat er een relatie zou zijn met de asK TOOLBAR. Mabm WERKT na een update HELEMAAL NIET MEER. Ik heb eset een scan laten maken; geen problemen gevonden. Ik heb de windows malware remover latn lopen; ook geen problemen. Ik heb van Mabm de Chameleon tool laten lopen; geen verbetering. Adwcleaner vindt niets. Heeft iemand enig idee wat er aan de hand is.?
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.