acam

3 augustus 2014

ik kreeg op firefox zojuist de melding dat het volgnde script loopt:

https://ads1.msads.net/adbar/products/v2.1/adbar.js:1

heeft dit iets met het probleem te maken?

3 augustus 2014

voor alle zekerheid hier het logje na schoonmaken en reboot# AdwCleaner v3.302 - Rapport aangemaakt 03/08/2014 op 12:54:33

# Laatste Update 30/07/2014 door Xplode

# Besturingssysteem : Windows Vista Home Premium Service Pack 2 (32 bits)

# Gebruikersnaam : van iersel - GATTOPARDO

# Gestart vanuit : C:\Users\van iersel\Documents\Documents\adwcleaner_3.302(1).exe

# Optie : Verwijderen

***** [ Services ] *****

***** [ Bestanden / Mappen ] *****

Map Verwijderd : C:\ProgramData\~0

***** [ Taken ] *****

***** [ Snelkoppelingen ] *****

***** [ Register ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16526

-\\ Mozilla Firefox v31.0 (x86 en-US)

[ Bestand : C:\Users\van iersel\AppData\Roaming\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271\prefs.js ]

-\\ Google Chrome v36.0.1985.125

[ Bestand : C:\Users\van iersel\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [2329 octets] - [05/01/2014 22:40:47]

AdwCleaner[R1].txt - [1080 octets] - [24/01/2014 19:33:20]

AdwCleaner[R2].txt - [1201 octets] - [01/02/2014 12:27:39]

AdwCleaner[R3].txt - [1306 octets] - [06/02/2014 22:21:18]

AdwCleaner[R4].txt - [3942 octets] - [11/06/2014 14:41:08]

AdwCleaner[R5].txt - [1941 octets] - [27/07/2014 14:09:40]

AdwCleaner[R6].txt - [1810 octets] - [03/08/2014 12:35:40]

AdwCleaner[s0].txt - [2444 octets] - [05/01/2014 22:43:18]

AdwCleaner[s1].txt - [1142 octets] - [24/01/2014 19:35:27]

AdwCleaner[s2].txt - [1263 octets] - [01/02/2014 12:46:50]

AdwCleaner[s3].txt - [777 octets] - [06/02/2014 22:26:30]

AdwCleaner[s4].txt - [4078 octets] - [11/06/2014 14:44:11]

AdwCleaner[s5].txt - [2013 octets] - [27/07/2014 14:15:06]

AdwCleaner[s6].txt - [1712 octets] - [03/08/2014 12:54:33]

########## EOF - C:\AdwCleaner\AdwCleaner[s6].txt - [1772 octets] ##########

3 augustus 2014

# AdwCleaner v3.302 - Rapport aangemaakt 03/08/2014 op 12:35:40

# Laatste Update 30/07/2014 door Xplode

# Besturingssysteem : Windows Vista Home Premium Service Pack 2 (32 bits)

# Gebruikersnaam : van iersel - GATTOPARDO

# Gestart vanuit : C:\Users\van iersel\Documents\Documents\adwcleaner_3.302(1).exe

# Optie : Scannen

***** [ Services ] *****

***** [ Bestanden / Mappen ] *****

Map Gevonden : C:\ProgramData\~0

***** [ Taken ] *****

Taak Gevonden : FoxTab

***** [ Snelkoppelingen ] *****

***** [ Register ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16526

-\\ Mozilla Firefox v31.0 (x86 en-US)

[ Bestand : C:\Users\van iersel\AppData\Roaming\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271\prefs.js ]

-\\ Google Chrome v36.0.1985.125

[ Bestand : C:\Users\van iersel\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [2329 octets] - [05/01/2014 22:40:47]

AdwCleaner[R1].txt - [1080 octets] - [24/01/2014 19:33:20]

AdwCleaner[R2].txt - [1201 octets] - [01/02/2014 12:27:39]

AdwCleaner[R3].txt - [1306 octets] - [06/02/2014 22:21:18]

AdwCleaner[R4].txt - [3942 octets] - [11/06/2014 14:41:08]

AdwCleaner[R5].txt - [1941 octets] - [27/07/2014 14:09:40]

AdwCleaner[R6].txt - [1311 octets] - [03/08/2014 12:35:40]

AdwCleaner[s0].txt - [2444 octets] - [05/01/2014 22:43:18]

AdwCleaner[s1].txt - [1142 octets] - [24/01/2014 19:35:27]

AdwCleaner[s2].txt - [1263 octets] - [01/02/2014 12:46:50]

AdwCleaner[s3].txt - [777 octets] - [06/02/2014 22:26:30]

AdwCleaner[s4].txt - [4078 octets] - [11/06/2014 14:44:11]

AdwCleaner[s5].txt - [2013 octets] - [27/07/2014 14:15:06]

########## EOF - C:\AdwCleaner\AdwCleaner[R6].txt - [1730 octets] ##########

1 augustus 2014

Zoek.exe v5.0.0.0 Updated 31-07-2014

Tool run by van iersel on vr 01-08-2014 at 18:42:47,85.

Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\van iersel\Documents\Documents\zoek.exe [scan all users] [script inserted]

==== Older Logs ======================

C:\zoek-results2014-07-28-201933.log 25430 bytes

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Internet Explorer\SearchScopes\{747AD008-637F-4046-835F-3DE5D48CF9D7} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Installed Programs ======================

32 Bit HP CIO Components Installer

3M Products Update version 2012-05 for Microsoft Office 2010

7-Zip 9.20

Aangifte inkomstenbelasting 2007

Aangifte inkomstenbelasting 2008

Aangifte inkomstenbelasting 2008 voor ondernemers

Aangifte inkomstenbelasting 2010

Aangifte inkomstenbelasting 2011

Aangifte inkomstenbelasting 2012

Aangifte inkomstenbelasting 2013

ABBYY FineReader 6.0 Sprint

Acrobat.com

Adobe AIR

Adobe Anchor Service CS3

Adobe Asset Services CS3

Adobe Bridge CS3

Adobe Bridge Start Meeting

Adobe Camera Raw 4.0

Adobe CMaps

Adobe Color - Photoshop Specific

Adobe Color Common Settings

Adobe Color EU Extra Settings

Adobe Color JA Extra Settings

Adobe Color NA Recommended Settings

Adobe Default Language CS3

Adobe Device Central CS3

Adobe Digital Editions 2.0

Adobe Download Manager

Adobe ExtendScript Toolkit 2

Adobe Flash Player 14 ActiveX

Adobe Flash Player 14 Plugin

Adobe Fonts All

Adobe Help Viewer CS3

Adobe Linguistics CS3

Adobe Media Player

Adobe PDF Library Files

Adobe Photoshop CS3

Adobe Reader X (10.1.10)

Adobe Setup

Adobe Stock Photos CS3

Adobe Type Support

Adobe Update Manager CS3

Adobe Version Cue CS3 Client

Adobe WinSoft Linguistics Plugin

Adobe XMP Panels CS3

Apple Application Support

Apple Mobile Device Support

Apple Software Update

Atheros AR5007 Wireless LAN - USB

B110

Bonjour

Brother MFL-Pro Suite DCP-J752DW

BufferChm

CANON iMAGE GATEWAY Task for ZoomBrowser EX

Canon Internet Library for ZoomBrowser EX

Canon MOV Decoder

Canon MOV Encoder

Canon MovieEdit Task for ZoomBrowser EX

Canon Utilities CameraWindow

Canon Utilities CameraWindow DC

Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX

Canon Utilities MyCamera

Canon Utilities MyCamera DC

Canon Utilities PhotoStitch

Canon Utilities RemoteCapture Task for ZoomBrowser EX

Canon Utilities ZoomBrowser EX

Canon ZoomBrowser EX Memory Card Utility

Catalyst Control Center Core Implementation

Catalyst Control Center Graphics Full Existing

Catalyst Control Center Graphics Full New

Catalyst Control Center Graphics Light

Catalyst Control Center Graphics Previews Common

Catalyst Control Center Graphics Previews Vista

Catalyst Control Center Localization Dutch

ccc-core-static

ccc-utility

CCC Help Dutch

CCleaner

Compatibiliteitspakket voor het 2007 Microsoft Office system

Compatibility Pack for the 2007 Office system

Consumentenbond InformBar voor Internet Explorer

Corel Paint Shop Pro X

CorelDRAW Essential Edition 3

CorelDRAW Graphics Suite X4 - Capture

CorelDRAW Graphics Suite X4 - Content

CorelDRAW Graphics Suite X4 - Draw

CorelDRAW Graphics Suite X4 - Filters

CorelDRAW Graphics Suite X4 - FontNav

CorelDRAW Graphics SUite X4 - ICA

CorelDRAW Graphics Suite X4 - IPM

CorelDRAW Graphics Suite X4 - Lang NL

CorelDRAW Graphics Suite X4 - PP

CorelDRAW Graphics Suite X4 - VBA

CorelDRAW Graphics Suite X4

CorelDRAW® Graphics Suite X4 - Windows Shell Extension

CorelDRAW® Graphics Suite X4

D3DX10

Data Lifeguard Diagnostic for Windows 1.24

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition

EMCO Malware Destroyer 6

EmoDio

Emsisoft Anti-Malware

FileASSASSIN

FileZilla Client 3.8.1

Firebird SQL Server - MAGIX Edition

Glary Utilities 5.4

Google Afmelden voor advertentiecookie

Google Chrome

Google Desktop

Google Drive

Google Earth

Google Update Helper

Hauppauge MCE XP/Vista Software Encoder (2.0.25102)

HD Tune Pro 5.50

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

HPAppStudio

HPPhotoGadget

HPSSupply

IE7Pro

Image Resizer Powertoy Clone for Windows

InterVideo WinDVD 8

iTunes

Junk Mail filter update

KPN Assistent

LightScribe System Software 1.10.13.1

LUMIX RAW Codec 1.0

Macromedia Dreamweaver MX 2004

Macromedia Extension Manager

Macromedia Fireworks MX 2004

Macromedia Flash MX 2004

Macromedia FreeHand MXa

MAGIX Film op DVD 7 7.0.3.0 (NL)

MAGIX Foto Manager 2008 5.0.3.354 (NL)

MAGIX Goya burnR 1.3.1.3 (NL)

MAGIX Screenshare 4.3.6.1987 (NL)

Malwarebytes Anti-Malware versie 2.0.2.1012

Mesh Runtime

Messenger Companion

Microsoft .NET Framework 3.5 Language Pack SP1 - nld

Microsoft .NET Framework 3.5 SP1

Microsoft .NET Framework 4.5.1

Microsoft .NET Framework 4.5.1 (NLD)

Microsoft Application Error Reporting

Microsoft Office Access MUI (Dutch) 2010

Microsoft Office Excel MUI (Dutch) 2010

Microsoft Office File Validation Add-In

Microsoft Office FrontPage 2003

Microsoft Office Home and Student 2010

Microsoft Office Live Add-in 1.5

Microsoft Office OneNote MUI (Dutch) 2010

Microsoft Office Outlook Connector

Microsoft Office Outlook MUI (Dutch) 2010

Microsoft Office PowerPoint MUI (Dutch) 2010

Microsoft Office Professional Editie 2003

Microsoft Office Proof (Dutch) 2010

Microsoft Office Proof (English) 2010

Microsoft Office Proof (French) 2010

Microsoft Office Proof (German) 2010

Microsoft Office Proofing (Dutch) 2010

Microsoft Office Publisher MUI (Dutch) 2010

Microsoft Office Shared MUI (Dutch) 2010

Microsoft Office Single Image 2010

Microsoft Office Word MUI (Dutch) 2010

Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft SQL Server Compact 3.5 SP2 ENU

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319

Mozilla Firefox 30.0 (x86 en-US)

Mozilla Maintenance Service

Mozilla Thunderbird 24.6.0 (x86 nl)

MSVCRT

MSXML 4.0 SP2 (KB936181)

MSXML 4.0 SP2 (KB941833)

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP2 Parser and SDK

MSXML 4.0 SP3 Parser

MSXML 4.0 SP3 Parser (KB2758694)

neroxml

Network

Nikon Message Center

Nikon RAW Codec

Nuance PaperPort 12

Nuance PDF Viewer Plus

OGA Notifier 2.0.0048.0

Paint.NET v3.5.11

PaperPort Image Printer

Paragon Backup & RecoveryT 2011 (Advanced) Free

PDF Settings

PHOTOfunSTUDIO 6.2 HD Edition

Picasa 3

Picture Control Utility

PS_AIO_07_B110_SW_Min

QuickTransfer

Rapport

Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista

Realtek High Definition Audio Driver

Recuva

Revo Uninstaller 1.95

Scan

Scansoft PDF Professional

Secunia PSI (3.0.0.7009)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)

Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)

Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)

Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)

Security Update for Microsoft Office 2010 (KB2553284) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2760781) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2767915) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition

Segoe UI

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition

SES Driver

Shared C Run-time for x86

SILKYPIX Developer Studio 3.1 SE

Skins

Skype Click to Call

SkypeT 6.3

SmartWebPrinting

Spelling Dictionaries Support For Adobe Reader 9

Spybot - Search & Destroy

SpywareBlaster 5.0

Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL

Time Stopper

TomTom HOME

TomTom HOME Visual Studio Merge Modules

Toolbox

Total Commander (Remove or Repair)

Trusteer Eindpuntbeveiliging

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition

Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition

Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition

Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition

Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition

Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition

Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition

Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition

Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition

Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition

Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition

Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition

Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition

Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition

Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition

Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition

Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition

Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition

Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition

Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition

Update Manager

USB Wireless Keyboard Driver

Van Dale Grote woordenboeken Engels

VCRedistSetup

ViewNX

Vista Audio Pack

Visual Basic for Applications ® Core - Dutch

Visual Basic for Applications ® Core - English

Visual Basic for Applications ® Core

Visual C++ 2008 x86 Runtime - (v9.0.30729)

Visual C++ 2008 x86 Runtime - v9.0.30729.01

VSO Image Resizer 3.0.1.76

WD Quick View

WD SmartWare

WD SmartWare Installer

WebReg

Western Digital USB 3.0 Host Controller Driver

Windows-stuurprogrammapakket - eMPIA Technology Inc, (emAudio) MEDIA (08/31/2007 5.7.0831.0)

Windows 7 Upgrade Advisor

Windows Installer Clean Up

Windows Live Communications Platform

Windows Live Essentials

Windows Live Family Safety

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Mail

Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen

Windows Live Mesh

Windows Live Messenger

Windows Live Messenger Companion Core

Windows Live MIME IFilter

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live Remote Client

Windows Live Remote Client Resources

Windows Live Remote Service

Windows Live Remote Service Resources

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live Sync

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

Windows Media Player Firefox Plugin

WinRescue Vista

Wuala

Wuala CBFS

Wuala OverlayIcons

==== Running Processes ======================

C:\Windows\System32\smss.exe

C:\Windows\system32\csrss.exe

C:\Windows\system32\wininit.exe

C:\Windows\system32\csrss.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\winlogon.exe

C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

C:\Windows\system32\Ati2evxx.exe

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\Ati2evxx.exe

C:\Program Files\Emsisoft Anti-Malware\a2service.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe

C:\Windows\system32\CISVC.EXE

C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe

C:\Program Files\Glary Utilities 5\Integrator.exe

C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe

c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe

C:\Program Files\Secunia\PSI\sua.exe

C:\Program Files\tomtomnieuw\TomTomHOMEService.exe

C:\Windows\system32\UI0Detect.exe

C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\System32\WUDFHost.exe

C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Microsoft IntelliPoint\ipoint.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe

C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2wizard.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files\Brother\Brother Help\BrotherHelp.exe

C:\Program Files\Browny02\BrYNSvc.exe

C:\Program Files\ControlCenter4\BrCtrlCntr.exe

C:\Program Files\ControlCenter4\BrCcUxSys.exe

C:\Program Files\Nuance\PaperPort\pptd40nt.exe

C:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe

C:\Program Files\Secunia\PSI\psi_tray.exe

C:\Windows\system32\wuauclt.exe

C:\Users\van iersel\Documents\Documents\zoek.exe

C:\Windows\system32\conime.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\taskmgr.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k bthsvcs

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\Users\van iersel\AppData\Roaming\ZoomBrowser EX deleted

C:\Users\van iersel\AppData\Roaming\ShiftN.ini deleted

C:\Users\van iersel\AppData\Roaming\temp.ini deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 deleted

C:\Users\van iersel\Searches deleted

C:\Users\van iersel\AppData\LocalLow\ADSRemoval deleted

C:\Windows\wininit.ini deleted

C:\Users\van iersel\dfsetup104.exe deleted

C:\Users\van iersel\IE8-WindowsVista-x86-NLD.exe deleted

C:\Users\van iersel\PureText.exe deleted

C:\Users\van iersel\setup_Kruidvat_fotoservice.exe deleted

"C:\Users\van iersel\AppData\Roaming\Static Library" deleted

"C:\ProgramData\String Ensemble" deleted

"C:\ProgramData\TEMP" deleted

==== System Specs ======================

Windows: Windows Vista Home Premium Edition Service Pack 2 (Build 6002)

Memory (RAM): 2046 MB

CPU Info: AMD Athlon 64 X2 Dual Core Processor 5200+

CPU Speed: 2558,2 MHz

Sound Card: Luidsprekers (Realtek High Defi |

Apparaat voor digitale uitvoer |

Display Adapters: ATI Radeon HD 2600 PRO | ATI Radeon HD 2600 PRO | RDPDD Chained DD | RDP Encoder Mirror Driver

Monitors: 1x; Algemeen PnP-beeldscherm |

Screen Resolution: 1024 X 768 - 32 bit

Network: Network Present

Network Adapters: Realtek PCIe GBE Family Controller

CD / DVD Drives: 2x (D: | E: | ) D: Optiarc DVD RW AD-7191S | E: TOSHIBA DVD/HD SD-H802A

Ports: COM1 LPT1

Mouse: 5 Button Wheel Mouse Present

Hard Disks: C: 241,7GB | F: 106,1GB | G: 106,2GB

Hard Disks - Free: C: 93,1GB | F: 10,8GB | G: 59,7GB

Manufacturer *: Phoenix Technologies, LTD

BIOS Info: AT/AT COMPATIBLE | 02/04/08 | TGAOEM - 42302e31

Time Zone: West-Europa (standaardtijd)

Motherboard *: ASUSTeK Computer INC. M2A-VM HDMI

Country: Nederland

Language: NLD

==== System Specs (Software) ======================

Anti-Virus: ESET NOD32 Antivirus 7.0 On-access scanning disabled (Outdated)

Anti-Spyware: Windows Defender disabled (Outdated)

Anti-Spyware: Spybot - Search and Destroy disabled (Outdated)

Anti-Spyware: ESET NOD32 Antivirus 7.0 disabled (Outdated)

Internet Explorer Version: 9.0.8112.16421

Mozilla Firefox version: 30.0 (x86 en-US)

Google Chrome version: 36.0.1985.125

Adobe Reader version: 10.1.10.18

Flash Player version: 14.0.0.145

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2014-07-28 09:46:41 3BD7FC1DD97F9B4271CA88C5D3EAAE53 249838830 ----a-w- C:\Windows\MEMORY.DMP

====== C:\Users\VANIER~1\AppData\Local\Temp ====

2014-07-27 19:28:44 406B6A2F01D5F7D39A94E0C19E8D1DA4 37944 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\nsak.sys

2014-07-27 19:28:43 A496F1DFC34EEDF8FD34F7739A184787 1767720 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\NSE_W32.DLL

2014-07-27 19:28:43 6CFFA27F0256C43E853375C5749C576A 217272 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\statslib.dll

2014-07-27 19:27:59 A8235D366029C2F1FCDAD5481122C16B 427368 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\ncl.dll

2014-07-27 19:27:59 2AB5CC762B0AF715DAE408CFB20C59BB 530712 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0001\nse\bin\ncm3.dll

2014-07-27 18:24:09 406B6A2F01D5F7D39A94E0C19E8D1DA4 37944 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\nsak.sys

2014-07-27 18:24:08 A496F1DFC34EEDF8FD34F7739A184787 1767720 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\NSE_W32.DLL

2014-07-27 18:24:08 6CFFA27F0256C43E853375C5749C576A 217272 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\statslib.dll

2014-07-27 18:22:48 A8235D366029C2F1FCDAD5481122C16B 427368 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\ncl.dll

2014-07-27 18:22:48 2AB5CC762B0AF715DAE408CFB20C59BB 530712 ----a-w- C:\Users\van iersel\AppData\Local\Temp\nmc_temp\0000\nse\bin\ncm3.dll

2014-07-27 15:57:37 DAC43BD33E1B5794F02B6C909845F384 36352 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\x64\wmi64.exe

2014-07-27 15:57:36 D554F6B51A0EEC6E78B9778C65F3BE47 31424 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\ushata.dll

2014-07-27 15:57:36 B5A992A036116061750DDF083BD2BD73 852160 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\updater.dll

2014-07-27 15:57:16 58AF6D1A8A43E91B70542D73CF1F5131 98496 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\prremote.dll

2014-07-27 15:57:15 F09A564C63ED8A059A9EE0F63871C091 172224 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\prloader.dll

2014-07-27 15:57:14 A5F16EE2F52072230969E437AC12F978 557248 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\msvcp80.dll

2014-07-27 15:57:14 4A0406AF98A5A881D607E19D33962786 635072 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\msvcr80.dll

2014-07-27 15:57:13 4C74880A2682C6902468E0D7DBBB029A 487616 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\msvcm80.dll

2014-07-27 15:57:12 E1B9E729502A0F0B8714394DD5DFE761 18112 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\memmng.dll

2014-07-27 15:57:12 2D9B4793B614073C0DEDC3EE033610AC 19328 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\kldw.exe

2014-07-27 15:57:11 D48B256B3E99347B4795414DABD09D1D 94400 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\fssync.dll

2014-07-27 15:57:10 6148A0773EB03035119384CBE35A38FE 135360 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\diffs.dll

2014-07-27 15:57:10 5D1B5C206B7AC0461962DBF43A7EE495 1093808 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\dbghelp.dll

2014-07-27 15:57:09 B27D76751A9878DA5D76A3DAE5C5DD89 17088 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\clldr.dll

2014-07-27 15:54:01 A4E6C7E79AA4D313A3936D2D00E87EC8 2115264 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\avzkrnl.dll

2014-07-27 15:52:40 00E4D2AB7FF210B6EC2B497A2C7D161A 457520 ----a-w- C:\Users\van iersel\AppData\Local\Temp\4791921\9528799.exe

2014-07-27 15:48:09 C7D4F357C482DD37E2B05F34093B7B0C 615728 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win64\2\600\9528799drv.sys

2014-07-27 15:48:09 2434D3BC1C4876D53BFBCF4AD1A2D2E3 180528 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\helper64.exe

2014-07-27 15:48:08 B86A9608C9E07CAF205D44D53182E5F5 616752 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win64\2\501\9528799drv.sys

2014-07-27 15:48:07 795EC29BA21F1D948FD6FD740C00B599 458336 ------w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win64\1\kl1.sys

2014-07-27 15:48:06 AF04D0CE7939324E9A605B159295706C 570160 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win32\2\600\9528799drv.sys

2014-07-27 15:48:05 5D92A03045A6A98708975B3D77B39A36 565552 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win32\2\501\9528799drv.sys

2014-07-27 15:48:04 871C226234A48C24DFE7478F36C0050C 135776 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\Drivers\Win32\1\51280745.sys

2014-07-27 15:47:48 9DE53344DA73B22CD37D8A307741C69D 147103680 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\9528799rar.exe

2014-07-27 15:47:45 70098BF9832ABDCFC8486E23E84F3DA8 820080 ----a-w- C:\Users\van iersel\AppData\Local\Temp\RarSFX0\9528799.exe

====== Java Cache =====

====== C:\Windows\system32 =====

2014-07-24 07:46:23 2628B4077A3DAB70B60AC50B8AC9A415 8192 ----a-w- C:\Windows\System32\WDPABKP.dat

====== C:\Windows\system32\drivers =====

2014-07-28 11:26:28 12E71DA845D76665B56753AD149E32B3 110296 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys

2014-07-28 11:26:00 8683C1B450F4B3872839308D836E0F92 23256 ----a-w- C:\Windows\System32\drivers\mbam.sys

2014-07-28 11:26:00 799613BA73D25641402AA81B6403EFF8 51928 ----a-w- C:\Windows\System32\drivers\mwac.sys

2014-07-28 11:26:00 1AA835E8A0B8EDF3D676B4ED4BF5EF07 74456 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys

2014-07-27 15:48:04 871C226234A48C24DFE7478F36C0050C 135776 ----a-w- C:\Windows\System32\drivers\51280745.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-07-28 11:29:52 -------- d-----w- C:\Program Files\FileASSASSIN

2014-07-28 06:52:08 -------- d-----w- C:\Program Files\KPN

2014-07-08 14:24:26 -------- d-----w- C:\Program Files\iPod

2014-07-08 14:24:19 -------- d-----w- C:\Program Files\iTunes

2014-07-08 12:11:59 -------- d-----w- C:\Program Files\Bonjour

2014-07-08 12:01:40 -------- d-----w- C:\Program Files\Apple Software Update

2014-07-08 11:56:15 -------- d-----w- C:\Program Files\Common Files\Apple

======= C: =====

====== C:\Users\van iersel\AppData\Roaming ======

2014-08-01 15:37:01 -------- d-----w- C:\Users\van iersel\AppData\Local\KPN

2014-07-27 18:22:18 -------- d-----w- C:\Users\van iersel\AppData\Local\Norman Malware Cleaner

====== C:\Users\van iersel ======

2014-07-28 13:15:15 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\van iersel\Downloads\RSIT.exe

2014-07-28 11:29:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileASSASSIN

2014-07-28 09:39:15 3C7707013DEEA5ED7F68A29A007A7D57 321848 ----a-w- C:\Users\van iersel\Downloads\mbam-clean-2.1.1.1001.exe

2014-07-28 06:52:50 -------- dc-h--w- C:\ProgramData\{65645173-D674-42EE-9CA4-E050D7BF480F}

2014-07-28 06:49:30 788AF35B6CF836DD14B737E8F8F2C574 82947248 ----a-w- C:\Users\van iersel\Downloads\setup_kpn_assistent (1).exe

2014-07-28 06:41:41 788AF35B6CF836DD14B737E8F8F2C574 82947248 ----a-w- C:\Users\van iersel\Downloads\setup_kpn_assistent.exe

2014-07-27 20:24:34 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (7).exe

2014-07-27 20:24:05 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (6).exe

2014-07-27 18:02:00 5A10D178B48EB4AC51B1FC1F61D2E0CD 348195264 ----a-w- C:\Users\van iersel\Downloads\Norman_Malware_Cleaner.exe

2014-07-27 17:05:29 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (5).exe

2014-07-27 17:05:00 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (4).exe

2014-07-27 16:44:35 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (3).exe

2014-07-27 16:39:18 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (2).exe

2014-07-27 16:38:54 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\van iersel\Downloads\mbam-setup-2.0.2.1012 (1).exe

2014-07-27 16:25:07 6060B035E967BCDBA7070153522CAACF 148868920 ----a-w- C:\Users\van iersel\Downloads\setup_11.0.3.7.x01_2014_07_27_15_57 (1).exe

2014-07-27 16:22:32 F12FE98405679BDAD148C491D98E5166 38824552 ----a-w- C:\Users\van iersel\Downloads\FileFormatConverters (2).exe

2014-07-27 16:22:32 A416FCEACC08E8458E01E8422A7D0A2A 28694720 ----a-w- C:\Users\van iersel\Downloads\Windows-KB890830-V5.14 (1).exe

2014-07-27 16:10:59 F12FE98405679BDAD148C491D98E5166 38824552 ----a-w- C:\Users\van iersel\Downloads\FileFormatConverters (1).exe

2014-07-27 16:10:59 A416FCEACC08E8458E01E8422A7D0A2A 28694720 ----a-w- C:\Users\van iersel\Downloads\Windows-KB890830-V5.14.exe

2014-07-27 14:33:54 AB6EE305F8244999BD6D48C2D61D23E6 189320 ----a-w- C:\Users\van iersel\Downloads\kss12.0.1.881de_en_es_fr_it_ja_ko_pl_pt_ru_zh_6227.exe

2014-07-27 14:33:00 6060B035E967BCDBA7070153522CAACF 148868920 ----a-w- C:\Users\van iersel\Downloads\setup_11.0.3.7.x01_2014_07_27_15_57.exe

2014-07-27 13:12:46 BA0779E3B99F372413C350232DFD92EE 7747104 ----a-w- C:\Users\van iersel\Downloads\mbam-rules.exe

2014-07-27 13:12:36 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\van iersel\Downloads\adwcleaner_3.216 (1).exe

2014-07-27 12:09:16 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\van iersel\Downloads\adwcleaner_3.216.exe

2014-07-27 11:42:05 AD259EB7710431CDC30FF4093AF3FAE2 14094456 ----a-w- C:\Users\van iersel\Downloads\Glary_Utilities_v5.4.0.11.exe

2014-07-08 14:24:19 -------- d-----w- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1

====== C: exe-files ==

2014-07-28 11:29:52 0D4D1BA51BF0C1480AEAAF79E0EBE995 69223 ----a-w- C:\Program Files\FileASSASSIN\uninst.exe

2014-07-28 06:52:36 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG123g\DeviceInst.exe

2014-07-28 06:52:36 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG123g\DevInst.exe

2014-07-28 06:52:35 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\DeviceInst.exe

2014-07-28 06:52:35 82862B768A80880A2F22C44C96C20596 544736 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST122g\DPInst.exe

2014-07-28 06:52:35 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\DevInst.exe

2014-07-28 06:52:34 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\TG123g\DeviceInst.exe

2014-07-28 06:52:34 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\TG123g\DevInst.exe

2014-07-28 06:52:32 82862B768A80880A2F22C44C96C20596 544736 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST122g\DPInst.exe

2014-07-28 06:52:31 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\DeviceInst.exe

2014-07-28 06:52:31 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\DevInst.exe

2014-07-28 06:52:28 43276FCED673D6E582473B8F3F6A7278 385110 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\PRISMSVR.exe

2014-07-28 06:52:27 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\DeviceInst.exe

2014-07-28 06:52:27 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\DevInst.exe

2014-07-28 06:52:27 189C45918CFF2ED9A45AFBE5A955906D 377856 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WIN64\PRISMSVR.exe

2014-07-28 06:52:26 6E28823F4E56F3D492DD4B6A0A3751E1 52736 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WIN64\installInf.exe

2014-07-28 06:52:26 43276FCED673D6E582473B8F3F6A7278 385110 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\PRISMSVR.exe

2014-07-28 06:52:25 E4BC542FF24623169822DD3CD66A0018 46528 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\DeviceInst.exe

2014-07-28 06:52:25 4B248EAE4B5D206D111B71B982EA8A2E 504832 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\DevInst.exe

2014-07-28 06:52:25 189C45918CFF2ED9A45AFBE5A955906D 377856 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WIN64\PRISMSVR.exe

2014-07-28 06:52:24 6E28823F4E56F3D492DD4B6A0A3751E1 52736 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WIN64\installInf.exe

2014-07-28 06:52:21 1FD6A2C5F4794F35F86F1400B33B5F81 37272728 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\KPN_WNA.exe

2014-07-28 06:52:14 9D30D5BF3E5AE346927852A90565986B 25097624 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\KPN_IA.exe

2014-07-28 06:52:11 68B6CD67C8D9171D6CE70B532BFC83CD 1749880 ------w- C:\Program Files\KPN\KPN Assistent\M2Updater.exe

2014-07-28 06:52:08 C569A94A80EAA945975D9EADDE222125 40873088 ------w- C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe

2014-07-28 06:52:08 B572A46F4354F8D900C2266B2E33EC30 42496 ------w- C:\Program Files\KPN\KPN Assistent\KKA.exe

=== C: other files ==

2014-07-28 06:52:36 710A4420F8E4A2AEE0D3259D00F5CDF2 289792 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG123g\rtl8187B.sys

2014-07-28 06:52:36 0797877413D3225700D94488F06273A8 541800 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\TG122n\rtl8192su.sys

2014-07-28 06:52:35 73C18A2C69DFAB351FF0D6C0E69474B6 870400 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\athrusb.sys

2014-07-28 06:52:35 4BC451A93DB4915569C97FDAB020E6E7 1037312 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\Gigaset108\athrxusb.sys

2014-07-28 06:52:35 206CE7DF21B29332B66E8D0DFCAD643F 30 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST122g\Uninstall.bat

2014-07-28 06:52:35 15E6A5A0650B500F63F33C5C0FD021ED 217600 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST122g\SiS163u.sys

2014-07-28 06:52:34 710A4420F8E4A2AEE0D3259D00F5CDF2 289792 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\TG123g\rtl8187B.sys

2014-07-28 06:52:33 0797877413D3225700D94488F06273A8 541800 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\TG122n\rtl8192su.sys

2014-07-28 06:52:32 206CE7DF21B29332B66E8D0DFCAD643F 30 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST122g\Uninstall.bat

2014-07-28 06:52:32 15E6A5A0650B500F63F33C5C0FD021ED 217600 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST122g\SiS163u.sys

2014-07-28 06:52:29 4BC451A93DB4915569C97FDAB020E6E7 1037312 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\athrxusb.sys

2014-07-28 06:52:28 73C18A2C69DFAB351FF0D6C0E69474B6 870400 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\Gigaset108\athrusb.sys

2014-07-28 06:52:27 7A5341D3D77D54FFA4E743FC6EE91ACA 364001 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\PRISMA02.sys

2014-07-28 06:52:27 3B3B9321E764D415F2D05AD50417FC68 357472 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WINXP\PRISMA02.sys

2014-07-28 06:52:26 7A5341D3D77D54FFA4E743FC6EE91ACA 364001 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\PRISMA02.sys

2014-07-28 06:52:26 0E849BCC9C717770EF0A5D7F1EC35EAD 460544 ------w- C:\Program Files\KPN\KPN Assistent\KPN Draadloos Netwerk Assistent\Drivers\ST121g\WIN64\PRISMA02.sys

2014-07-28 06:52:25 3B3B9321E764D415F2D05AD50417FC68 357472 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WINXP\PRISMA02.sys

2014-07-28 06:52:25 0E849BCC9C717770EF0A5D7F1EC35EAD 460544 ------w- C:\Program Files\KPN\KPN Assistent\KPN Installatie Assistent\Drivers\ST121g\WIN64\PRISMA02.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"GUDelayStartup"="C:\Program Files\Glary Utilities 5\StartupManager.exe -delayrun"

"ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

"IntelliPoint"="c:\Program Files\Microsoft IntelliPoint\ipoint.exe"

"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe /hide /waitservice"

"SDTray"="C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"

"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"

"KPN Assistent"="C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe /auto"

"emsisoft anti-malware"="C:\Program Files\Emsisoft Anti-Malware\a2guard.exe /d=60"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"GUDelayStartup"="C:\Program Files\Glary Utilities 5\StartupManager.exe -delayrun"

"ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="c:\\progra~1\\google\\google~4\\goec62~1.dll "

==== Startup Folders ======================

2014-07-27 15:57:40 808 ----a-w- C:\Users\van iersel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_51280745.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-07-2014 21:16]

C:\Windows\tasks\Check for updates (Spybot - Search & Destroy).job --a------ [undetermined Task]

C:\Windows\tasks\GlaryInitialize 5.job --a------ [undetermined Task]

C:\Windows\tasks\GlaryInitialize.job --a------ [undetermined Task]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [undetermined Task]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [19-03-2010 11:37]

C:\Windows\tasks\Refresh immunization (Spybot - Search & Destroy).job --a------ C:\Program Files\Spybot - Search Destroy 2\SDImmunize.exe []

C:\Windows\tasks\Scan the system (Spybot - Search & Destroy).job --a------ C:\Program Files\Spybot - Search Destroy 2\SDScan.exe []

C:\Windows\tasks\SmartDefrag.job --a------ C:\Program Files\IObit\Smart Defrag\IObit SmartDefrag.exe []

C:\Windows\tasks\User_Feed_Synchronization-{842611C1-8F92-4041-BDFE-CBD99EE5923D}.job --ah----- C:\Windows\system32\msfeedssync.exe [16-03-2011 12:50]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\system32\tasks\Check for updates (Spybot - Search & Destroy)" [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe]

"C:\Windows\system32\tasks\GlaryInitialize" [C:\Program Files\Glary Utilities\initialize.exe]

"C:\Windows\system32\tasks\GlaryInitialize 5" [C:\Program Files\Glary Utilities 5\Initialize.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUser" [C:\Users\van iersel\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GU5SkipUAC" [C:\Program Files\Glary Utilities 5\Integrator.exe]

"C:\Windows\system32\tasks\Refresh immunization (Spybot - Search & Destroy)" [C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe]

"C:\Windows\system32\tasks\Scan the system (Spybot - Search & Destroy)" [C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe]

"C:\Windows\system32\tasks\SmartDefrag" [C:\Program Files\IObit\Smart Defrag\IObit SmartDefrag.exe]

"C:\Windows\system32\tasks\User_Feed_Synchronization-{842611C1-8F92-4041-BDFE-CBD99EE5923D}" [C:\Windows\system32\msfeedssync.exe]

"C:\Windows\system32\tasks\User_Feed_Synchronization-{B979B6EE-95D4-49E7-9392-99C5939E1F91}" [C:\Windows\system32\msfeedssync.exe]

"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"{20a82645-c095-46ed-80e3-08825760534b}"="C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [28-02-2014 15:43]

==== Firefox Extensions ======================

AppDir: C:\Program Files\Mozilla Firefox

- Undetermined - %AppDir%\extensions\{129b29a3-f554-444b-aa12-8ead59836cc8}

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\van iersel\AppData\Roaming\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271

4390CCD3790F8D9C427C0C29590C62D7 - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash

FB5621842FDABF9F8359775573498FBC - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll - Google Update

893BF7D2261C56C24F813405D9D018E0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In

1E5E8C84DE796A01D1D46E3A660690F1 - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat

F055C91A961601B8D50EF2976145AEE6 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat

B5371D2C9017EEE216B5361D600B3543 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector

5B4DA1113F240C3F06FFF9D52761528B - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa

5B92CB0A3EEE50F6B9AE036B4F9B0F0C - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll - Google Earth Plugin

AB87C54CA19675880B0CAE65B8AF140C - C:\Windows\system32\npdeployJava1.dll - Java Deployment Toolkit 7.0.70.11

C517E5EA7CEE783F3681F62D2A362E5B - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery

24E990B1E6D55428001843CF7217DD81 - C:\Program Files\Microsoft\Office Live\npOLW.dll - Microsoft Office Live Plug-in for Firefox / Microsoft Office Live Plug-in for Firefox

8BA469072B5A692B659F856C7E97A230 - C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll - NPCIG.dll

625D0A824F513CE1CABB8861E97F2142 - C:\Program Files\Google\Picasa3\npPicasa2.dll - Picasa

AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation

99F97C9FE748C37528C338A423577FCB - C:\Users\van iersel\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin

8DA2ED6B04EA33F2EAE8BA883F903729 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight

DFCAB29E8FD38F95650CC1E203E8D318 - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

fheoggkfdfchfphceeifdbepaooicaho - No path found[]

Google Docs - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

Consumentenbond InformBar - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbcomninkjloljbaklalcpcnacnognje

YouTube - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Calendar - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn

SiteAdvisor - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho

http //ns.nl/reisplanner-v2/index.shtml?langu - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcfdgelgjihaljccpfgepccfoobflekl

Google Wallet - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\van iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://altatuscia.nl"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"SearchAssistant"="http://www.google.com/ie"

"Default_Search_URL"="http://www.google.com/ie"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://altatuscia.nl"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"

"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{A2EFD4E9-0080-4B75-AB5D-16837516BAE7}"

{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found"

{A2EFD4E9-0080-4B75-AB5D-16837516BAE7} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}&rlz=1I7IRFC_nl"

{c1d89ae7-449d-4929-b24b-fded04adbe06} Unknown Url="Not_Found"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Internet Explorer\SearchScopes\{c1d89ae7-449d-4929-b24b-fded04adbe06} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully

==== HijackThis Entries ======================

C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe

R3 - Default URLSearchHook is missing

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,C:\Program Files\Soluto\soluto.exe /userinit,,

O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll

O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll

O2 - BHO: Consumentenbond InformBar - {5A355B83-4C09-4D4C-B798-FCAB42ED8C63} - C:\Program Files\InformBar\InformBar.dll

O2 - BHO: Afmelden voor advertentiecookie - {8E425EB4-ADBD-4816-B1E8-49BB9DECF034} - C:\Program Files\Google\Advertising Cookie Opt-out\opt_out.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Office14\URLREDIR.DLL

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [intelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

O4 - HKLM\..\Run: [sDTray] "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [KPN Assistent] C:\Program Files\KPN\KPN Assistent\KPN_Assistent.exe /auto

O4 - HKLM\..\Run: [emsisoft anti-malware] "C:\Program Files\Emsisoft Anti-Malware\a2guard.exe" /d=60

O4 - HKCU\..\Run: [GUDelayStartup] "C:\Program Files\Glary Utilities 5\StartupManager.exe" -delayrun

O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - Startup: _uninst_51280745.lnk = C:\Users\van iersel\AppData\Local\Temp\_uninst_51280745.bat

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\van iersel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

O9 - Extra button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll

O9 - Extra 'Tools' menuitem: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll

O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll

O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll

O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\OFFICE11\REFIEBAR.DLL

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted Zone: http://*.mcafee.com

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - AppInit_DLLs: c:\progra~1\google\google~4\goec62~1.dll

O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)

O21 - SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll

O23 - Service: Emsisoft Protection Service (a2AntiMalware) - Emsisoft GmbH - C:\Program Files\Emsisoft Anti-Malware\a2service.exe

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files\Browny02\BrYNSvc.exe

O23 - Service: dlcc_device - - C:\Windows\system32\dlcccoms.exe

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe

O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: PDFProFiltSrvPP - Nuance Communications, Inc. - C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe

O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe

O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe

O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe

O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe

O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe

O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe

O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\tomtomnieuw\TomTomHOMEService.exe

O23 - Service: UPnPService - Magix AG - C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe

O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe

O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\van iersel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\van iersel\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\van iersel\Favorites\Documents\altatuscia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\van iersel\Favorites\Documents\altatuscia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\van iersel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\van iersel\AppData\Local\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\van iersel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=59 folders=14 15927128 bytes)

==== Empty Temp Folders ======================

C:\Users\Gast\AppData\Local\Temp emptied successfully

C:\Users\van iersel\AppData\Local\Temp will be emptied at reboot

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\VANIER~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\van iersel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on vr 01-08-2014 at 20:51:55,42 ======================

28 juli 2014

het is toch nog gelukt via firefox om een log te produceren:

Zoek.exe v5.0.0.0 Updated 28-07-2014

Tool run by van iersel on ma 28-07-2014 at 21:26:39,32.

Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\VANIER~1\AppData\Local\Temp\zoek\zoek.scr [scan all users] [script inserted]

==== System Restore Info ======================

28-7-2014 21:45:35 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\Convar deleted successfully

C:\Program Files\Dell PC Fax deleted successfully

C:\Program Files\G Data deleted successfully

C:\Program Files\Oracle deleted successfully

C:\Program Files\TomTom DesktopSuite deleted successfully

C:\Program Files\VideoLAN deleted successfully

C:\Users\van iersel\AppData\Roaming\CameraWindowDC deleted successfully

C:\Users\van iersel\AppData\Roaming\HpUpdate deleted successfully

C:\Users\van iersel\AppData\Roaming\IrfanView deleted successfully

C:\Users\van iersel\AppData\Roaming\McAfee deleted successfully

C:\Users\van iersel\AppData\Roaming\Opera deleted successfully

C:\Users\van iersel\AppData\Roaming\PeerNetworking deleted successfully

C:\Users\van iersel\AppData\Roaming\Soluto deleted successfully

C:\Users\van iersel\AppData\Roaming\Spotify deleted successfully

C:\Users\van iersel\AppData\Roaming\svBuilder deleted successfully

C:\Users\van iersel\AppData\Local\albelli photo book creator Extra deleted successfully

C:\Users\van iersel\AppData\Local\CutePDF Writer deleted successfully

C:\Users\van iersel\AppData\Local\Hema Album Software Advanced deleted successfully

C:\Users\van iersel\AppData\Local\KPN deleted successfully

C:\Users\van iersel\AppData\Local\MailStore Home deleted successfully

C:\Users\van iersel\AppData\Local\Opera deleted successfully

C:\Users\van iersel\AppData\Local\Secunia PSI deleted successfully

C:\Users\van iersel\AppData\Local\Spotify deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-501\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully

HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-501\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully

HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully

HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-501\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully

HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-501\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully

HKEY_USERS\S-1-5-21-1272023406-3516950109-4133430306-1000\Software\Microsoft\Internet Explorer\Explorer Bars\{555D4D79-4BD2-4094-A395-CFC534424A05} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{555D4D79-4BD2-4094-A395-CFC534424A05} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{4ED1F68A-5463-4931-9384-8FFF5ED91D92} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{81559C35-8464-49F7-BB0E-07A383BEF910} deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Gast\AppData\Roaming\Thunderbird\Profiles\7g111ren.default

user.js not found

---- FireFox user.js and prefs.js backups ----

prefs_28-07-2014_2203_.backup

ProfilePath: C:\Users\VANIER~1\AppData\Roaming\Mozilla\Firefox\Profiles\40q1dw1m.default-1389221119271

user.js not found

---- Lines {4ED1F68A-5463-4931-9384-8FFF5ED91D92} modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}\":{\"descriptor\":\"C:\\\\

---- FireFox user.js and prefs.js backups ----

prefs_28-07-2014_2203_.backup

ProfilePath: C:\Users\VANIER~1\AppData\Roaming\Thunderbird\Profiles\0umcwpzx.default

user.js not found

---- FireFox user.js and prefs.js backups ----

prefs_28-07-2014_2203_.backup

ProfilePath: C:\Users\VANIER~1\AppData\Roaming\Thunderbird\Profiles\xweu8423.default

user.js not found

---- FireFox user.js and prefs.js backups ----

prefs_28-07-2014_2203_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MVT]

==== Deleting Files \ Folders ======================

C:\Program Files\McAfee deleted

C:\Windows\system32\appdata deleted

"C:\Windows\tasks\vtscheduletask.job" deleted